Hi,
Some of you might be interested that the default CA certificate generated by UCS is causing problems in Fortinet environment. We found that the CN = Univention Corporate Server Root CA (ID=<install ID>) is detected as having characters susceptible to XSS and thus not accepted as a valid certificate.
We had to recreate our CA certificate, changing the default value and then recreate all related certificates to sort this issue out.
If you are starting with a fresh installation of UCS make sure to change the default value to something unique, it could save you hours of work later on.
@scheinig Any chance this note could be added to the 3.5. SSL certificate management — Univention Corporate Server - Manual for users and administrators