Help
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
Khidzir_MN
Staff
Staff

Created on ‎08-20-2024 12:21 AM

Article Id 334550

Technical Tip: How to show Username for FortiWeb Site Publish using SAML Authentication with Microsoft Entra ID in the Traffic Log

Description

This article describes how to show the Username for FortiWeb Site Publish using SAML Authentication with Microsoft Entra ID in the Traffic Log.

 

It is ONLY focusing on the needed setup for the Microsoft Entra ID SSO Attributes & Claims.
It may maybe necessary to preconfigure other respective FortiWeb Site Publish and Microsoft Entra ID setups and refer to the documentation at the end of this article for more information on the setup.
Scope FortiWeb and FortiWeb VM.
Solution

Step 1: Go to the respective Microsoft Entra ID SSO SAML configuration.
Step 2: Edit the Attributes & Claim and add new claim as below.

 

manage_claim.png

 

Name: urn:oid:1.3.6.1.4.1.5923.1.1.1.6.
Source: Attribute.
Source attribute: user.userprincipalname.

 

entra_id_saml_sso_attribute.png

 

Step 3: Retry the website access again and verify the respective FortiWeb Traffic Log Username information.

 

tlog.png

 

Related documents:
Tutorial: Microsoft Entra SSO integration with FortiWeb Web Application Firewall
158
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.