Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mle2802
Staff
Staff

Created on ‎10-03-2023 09:30 PM Edited on ‎12-18-2024 02:01 AM By Community Manager

Article Id 277235

Troubleshooting Tip: SAML SSO VPN does not stay signed in

Description

This article describes how to troubleshoot SAML SSO VPN that does not stay signed in.
Scope FortiGate, FortiClient.
Solution

When logging into a VPN using SAML SSO, when users choose yes to 'Stay signed in' it is still necessary to re-input the credentials every time they disconnect and reconnect.


saml_azure_AD_stay-signed-in.png
To address this issue, enable/check the option 'Do not modify internal browser cookies' under FortiClient -> Settings -> VPN Options. After that, re-login again with 'stay signed in' enabled.

fct_dont-modify-internal-browser-cookies (1).png

 

Note:

If the above option is greyed out, the user needs to remove the 'lock' from the FortiClient and this option can be enabled:

 

kb_20803_1.png
3130
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.