Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
sunio
New Contributor

CyberInsurance, IPSec VPN, and MFA

CyberInsurance is requiring MFA on all remote connections.

We are currently using IPSec VPN for all remote connections.

Aside from Fortitoken, what other MFA options might I have have with IPSec VPN connections? Ideally I would to configure SAML to EntraID and let that handle the MFA, but all the documentation and posts I find are related to configuring that for SSL VPN... which we are not and do not want to use.

Is SAML an option for IPSec VPN and if so, is there a straight-forward guide for configuring it?

10.0.0.0.1 192.168.1.254
1 REPLY 1
hbac
Staff
Staff

Hi @sunio,

 

SAML authentication for dialup VPN is not supported at this time. It is still under development. You can consider using certificate authentication: https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/443323/dialup-ipsec-vpn-with...

 

Regards, 

Top Kudoed Authors