Azure SAML request shown twice

Forum|Forum|2 years ago
August 31, 2023
1 reply
1504 views

We are running a Fortigate 60F 7.2.5., configured with SSL VPN using Azure SAML for MFA.

Whenever our users try to connect (Forticlient 7.0.7.), the Azure browser login request is shown twice. The user then has to gamble which one is the correct one. If they choose the wrong one, they can close that window and refresh the other for a new code.

Does anyone know why it's shown twice and how i can resolve this?

srajeswaran

Staff

Can you try the below setting?

config vpn ssl settings set saml-redirect-port 0 end
Could be same as https://community.fortinet.com/t5/Support-Forum/Forticlient-on-mobile-redirects-to-error-page-during-SSL-VPN/m-p/269953#M218747

Knuppel1983Author

New Member

I have this set to 8040, port 8020 was in use:

set saml-redirect-port 8040

But the external browser is required because i need Azure to do a device compliance check. The internal Forticlient browser does not support this. You have planted a seed here. Could it be not using the default 8020 port that makes the request show twice?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded