Help
FortiSASE
FortiSASE delivers both a consistent security posture and an optimal user experience for users working from anywhere. Secure your hybrid workforce by closing security gaps, plus simplify operations.
sjoshi
Staff
Staff

Created on ‎04-22-2025 12:35 AM

Article Id 388456

Troubleshooting Tip: Resolving VPN Connectivity Issues with Azure Active Directory Integration

Description

 

This article describes the error 'AADSTS76023: The signature of the received authentication request is invalid, please contact the administrator to resolve the issue' when connecting to the FortiSASE VPN.

 

Scope

 

FortiSASE.

 

Solution

 

The users may encounter issues when attempting to connect to the VPN, receiving the following error:

 

abc.PNG

 

The Signature element in AuthnRequest is optional. If 'Require verification certificates' is not enabled, Microsoft Entra ID will not validate signed authentication requests, even if a signature is included.'

 

Solution:

 

  • Sign in to the Microsoft Entra admin center.

  • Go to Identity -> Applications -> Enterprise applications -> All applications.

  • In the search bar, type the name of the existing application, then select it from the search results.

  • Navigate to the Single Sign-On section.

  • On the Single Sign-On page, scroll to the Verification certificates subsection under SAML Certificates.

  • Select Edit.

  • Deselect the Require verification certificates option.

342
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.