Skip to main content
aabee
aabee
New Member
September 14, 2025
Question

SAML for forticlient

  • September 14, 2025
  • 2 replies
  • 464 views

Hi All,

We have Azure SAMl configured for VPN client and has a conditional policy as well to only allow login from domain joined devices.

This is working as expected, how ever the auto connect with azure ad option is not working.

Tried with different documentation and articles still same, logs also doesn’t have much info.

2 replies

kiri
Staff & Editor
kiri
Staff & Editor
September 16, 2025

hi there,

 

conditional policies need an external browser:

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Implementing-device-based-Conditional-Access/ta-p/267878

 

Is this what you're after?

 

- Have you found a solution? Then give your helper a "Like" and mark the solution.

funkylicious
SuperUser
funkylicious
SuperUser
September 16, 2025

hi,

last i checked the documentation for autoconnect this was available from EMS.

do you have a EMS or just using FortiClient VPN only/unmanaged ?

"jack of all trades, master of none"
kiri
Staff & Editor
kiri
Staff & Editor
September 17, 2025

all the results I found in fortinet docs have ems as component to autoconnect solution
it looks like ems is mandatory

Terms & ConditionsAccessibility statement