General Info

In order for the Fortigate generated Deep Scanning certs to not generate an SSL warning you must import and Trust the REMC1 certificate authority cert.
All Fortigate SSL certificates are dynamically generated from this certificate for Deep Scanning web filter/firewall profiles
To quickly deploy the certificate push it out in the Machine section of Active Directory Group Policy under the Trusted CA authorities section.
Firefox needs to have the certificate individually imported for each user. Firefox is not going to be feasible for deep scanning firewalls (all of them not just Fortigate). Uninstall firefox.
Chrome, IE, Safari are feasible options.
If you are REMC1 staff and are looking for methods to deploy the certificate please read this page: /wiki/spaces/NET/pages/16908942

iOS (iPad, iPod, iPhone)

Connect them to GUEST if no LTE signal but remember to FORGET THE GUEST NETWORK as the last step or it will endlessly try to connect to it forever and pop up guest login prompts.
OR Connect to LTE internet if possible, alternatively download the certificate onto a laptop and connect the phone with a USB cable.
Download REMC1.cer and copy it to a secure location on the phone
- IMPORTANT: We recommend moving this to a folder other than downloads. If you delete the above file, you will lose your connection to the wifi and have to do this process again.
Follow the directions on Connect Device to Wireless to complete the connection

NOTE: You may need to turn wifi off and back on for the settings to take effect.

Download: REMC1.cer
Open up the certificate by double clicking on the downloaded file and choosing Open
On the Certificate information window that opens up choose Install Certificate... at the bottom of the window
Go through the wizard, accepting the default options
Follow the directions on Connect Personal Machine to Wireless to complete the connection

Download: REMC1CertSFX.exe
Copy REMC1CertSFX.exe onto the computer missing the certificate
Run: REMC1CertSFX.exe
When asked to extract, pick a place on your hard disk
Navigate to that location and run "InstallREMC1CertVersion6.exe"
When finished press enter:
Follow the directions on Connect Personal Machine to Wireless to complete the connection

Download REMC1.cer
Run the downloaded file
In the window that pops up, change "Keychain" to "System"
OSX may ask for a password before it will install
Follow the directions on Connect Personal Machine to Wireless to complete the connection

Import the pem or cer file into your group policy to push out to windows clients. You can use the crt or pem on linux as well etc..
- REMC1.crt
- REMC1.cer
- remc-cert-authority-cert.pem