Created on
03-17-2025
11:30 PM
Edited on
10-03-2025
07:47 AM
By
Jean-Philippe_P
Description | This article describes the troubleshooting steps when the captive portal with SAML authentication with the WiFi users failed to load with the error 'Firewall Authentication Failed'. |
Scope | FortiGate. |
Solution |
When connecting to the WiFi SSID and trying to access the captive portal page with SAML authentication, the page gets redirected but gives the error 'Firewall Authentication Failed':
This happens because of the mismatch between the User group ID in FortiGate and Azure.
This can also be verified with the following SAML debugs:
diagnose debug console timestamp enable
As a solution, make sure the group ID is the same on FortiGate and Azure, as shown below:
Alternatively, it can also be edited through the CLI:
Note: Related documents: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.