New Member

Question

SSO authentication with SAML, Azure entra ID with FortiGate

Forum|Forum|10 months ago
July 16, 2025
3 replies
1200 views

I have done the configurations to SSO authenticate users with Microsoft Entra ID with Fortigate on SAML.
I tried the Fortinet documentation and all the configurations were done as same.

https://docs.fortinet.com/document/fortigate/7.6.3/administration-guide/33053/outbound-firewall-authentication-with-microsoft-entra-id-as-a-saml-idp

Once we attempt to authenticate, the user is taken to the authentication site (login.microsoft.com). After entering the user credentials, it will load for a long time without any response.

SuperUser

hi,

try increasing the timer of the command below if not done already. ( def is 5s )

config system global
set remoteauthtimeout <1-300s>
end

"jack of all trades, master of none"

ryldAuthor

New Member

SSL VPN is working without any issues.
Now I need internet users to authenticate with SAML with Azure Entra ID.

Staff

Hi @ryld ,

Are you using IPsec VPN to connect? If yes, can you try to check the configuration parts, especially on phase1 interface "eap enable" .
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-Microsoft-Entra-ID-SAML/ta-p/307457

ryldAuthor

New Member

SSL VPN is working without any issues.
Now I need internet users to authenticate with SAML with Azure Entra ID.

Please follow the article for the configuration

https://docs.fortinet.com/document/fortigate-public-cloud/7.6.0/azure-administration-guide/584456/configuring-saml-sso-login-for-ssl-vpn-with-entra-id-acting-as-saml-idp