Vote up SAML support for SSLVPN.

Forum|Forum|6 years ago
October 9, 2019
2 replies
3739 views

SAML is a supported auth method for the Fortigate/FortiAuthenticator, but NOT for the SSLVPN web portal.

I've heard this is coming...

romanr

New Member

There would be a huge usecase for this - espacially in hybrid cloud scenarios.

So I hope you are right!

James_Hayes

New Member

Same requirement here

pmitAuthor

New Member

SSLVPN SAML is working in 6.4 with Google.

config user saml edit "Google" set entity-id "https://gateway.xxxxx.com/remote/saml/metadata" set single-sign-on-url "https://gateway.xxxxx.com/remote/saml/login" set single-logout-url "https://gateway.xxxxx.com/remote/logout" set idp-entity-id "https://accounts.google.com/o/saml2?idpid=C011xxxxx" set idp-single-sign-on-url "https://accounts.google.com/o/saml2/idp?idpid=C011xxxxx" set idp-single-logout-url "https://accounts.google.com/o/saml2/idp?idpid=C011xxxxx" set idp-cert "REMOTE_Cert_1" set user-name "Email" set group-name "Memberof" next end

Make sure you have local users with full email address for user name in Fortigate.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded