Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
sunio
New Contributor

Created on ‎10-27-2023 01:52 AM

CyberInsurance, IPSec VPN, and MFA

CyberInsurance is requiring MFA on all remote connections.

We are currently using IPSec VPN for all remote connections.

Aside from Fortitoken, what other MFA options might I have have with IPSec VPN connections? Ideally I would to configure SAML to EntraID and let that handle the MFA, but all the documentation and posts I find are related to configuring that for SSL VPN... which we are not and do not want to use.

Is SAML an option for IPSec VPN and if so, is there a straight-forward guide for configuring it?

10.0.0.0.1 192.168.1.254
10.0.0.0.1 192.168.1.254
Labels:
778
0 Kudos
2 REPLIES 2
hbac
Staff
Staff

Created on ‎10-27-2023 09:10 AM

Hi @sunio,

 

SAML authentication for dialup VPN is not supported at this time. It is still under development. You can consider using certificate authentication: https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/443323/dialup-ipsec-vpn-with...

 

Regards, 

750
0 Kudos
rsinha
New Contributor

Created on ‎03-18-2024 09:45 AM

This might help. Let me know how this goes IPsec VPN SAML-based authentication | FortiClient 7.2.4 | Fortinet Document Library

523
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.