Technical Tip: How to configure SAML SSO login for FortiWeb Administrators with Microsoft Active Directory Federation Services (ADFS)
| Description | This article describes how to configure SAML SSO login for FortiWeb Administrators with Microsoft ADFS. It may be necessary to preconfigure other respective Microsoft Windows Server and ADFS setup. This articles does not covers details configurations for the ADFS. |
| Scope | FortiWeb and FortiWeb VM. |
| Solution | Microsoft ADFS.
Step 1: Configure the respective SP information (AD FS -> Relying Party Trusts -> Select the respective Relying Party -> Properties).
SP Entity ID.
SP ACS.
Step 2: Download the IdP certificate (AD FS -> Certificates).
Step 3: Configure Username Attributes (AD FS -> Relying Party Trusts -> Select the respective Relying Party -> Edit Claim Issuance Policy).
Note: The GUI shown above is from Microsoft Windows Server 2022, and it may differ from other versions.
FortiWeb. Step 1: Configure Single Sign-On Settings (Security Fabric -> Fabrics Connectors -> Single Sign-On Settings).
IdP Entity ID.
Step 2: Upload the IdP certificate (the certificate downloaded from Microsoft ADFS Step 2 above).
Step 3: Log in via Single Sign-On on the FortiWeb.
Note: The GUI shown above is from FortiWeb v7.6.X, and it may differ from other versions. |
