Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Knuppel1983
New Contributor

Created on ‎08-30-2023 11:38 PM

Azure SAML request shown twice

We are running a Fortigate 60F 7.2.5., configured with SSL VPN using Azure SAML for MFA.

Whenever our users try to connect (Forticlient 7.0.7.), the Azure browser login request is shown twice. The user then has to gamble which one is the correct one. If they choose the wrong one, they can close that window and refresh the other for a new code.

 

Does anyone know why it's shown twice and how i can resolve this?

Labels:
836
0 Kudos
2 REPLIES 2
srajeswaran
Staff
Staff

Created on ‎08-30-2023 11:41 PM

Can you try the below setting?

config vpn ssl settings
set saml-redirect-port 0
end
Could be same as  https://community.fortinet.com/t5/Support-Forum/Forticlient-on-mobile-redirects-to-error-page-during...

Regards,
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
831
0 Kudos
Knuppel1983
New Contributor
In response to srajeswaran

Created on ‎08-31-2023 12:03 AM Edited on ‎08-31-2023 12:16 AM

I have this set to 8040, port 8020 was in use:

set saml-redirect-port 8040

 

But the external browser is required because i need Azure to do a device compliance check. The internal Forticlient browser does not support this. You have planted a seed here. Could it be not using the default 8020 port that makes the request show twice?

820
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.