Fortinet 299 FortiWeb 5.0 Patch 6 Administration Guide
8. In the Name field, type the name the end-user on behalf of which the client certificate
request is being made. This will be the Subject: field in the certificate. Other fields are
optional.
9. Click Submit.
The certificate signing request (CSR) is submitted to the CA.
10.If a message appears, warning you that the web site is requesting a new certificate on your
behalf, click Yes to proceed.
Once the CA server generates the requested certificate, the Certificate Issued window
appears.
11.Click the Install this certificate link.
Your browser downloads the certificate, including its private key, and installs it in its trust
store. The certificate’s name is the one you specified in step 8.
12.If a message appears, warning you that the web site is adding one or more certificates to
your computer, click Yes to proceed.
The Certificate Installed window appears.
13.Return to the Microsoft Certificate Services (MSCS) home page for your local CA and repeat
steps 4 through 12 for each end-user that will use PKI authentication.
To export and transmit a personal certificate from the trust store on Microsoft Windows 7
1. Start Microsoft Internet Explorer 9.
Transmit and store any private key backups securely, just as you would for passwords. Failure
to store them securely and restrict the private key solely to its intended end-user could allow
others to authenticate as that person, compromising the security of your web sites. In the event
of potential private key compromise, immediately revoke the corresponding personal
certificate. See “Revoking certificates” on page 318.