Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Infotech22
Contributor

Created on ‎05-30-2024 12:35 AM

FortiClient - SAML Login with Azure MFA

Hello People,

I would need assistance with configuring SAML for FortiClient's.

Already created it on one FortiGate and tested it with one user, work's perfectly.

Now the question is how would I do it for Production where we have 4 branch offices:

  • We have  4 SSL-VPN Tunnels, to the HQ and Secondary Branch Office (Main and Failover WAN Connections)
  • In Azure Enterprise Applications > FortiGate SSL VPN > SAML configuration > I just add multiple tunnels in configurations?
  • How to approach creating same configurations across FortiGate's, do I need to do it manually or I can just push it via FortiManager?
  • Groups are not available for assignment since we don't have the right plan in Azure. I need to assign users individually.

    Did somebody of you already configure this and what was your approach?
Labels:
428
0 Kudos
1 REPLY 1
dbhavsar
Staff
Staff

Created on ‎05-30-2024 05:21 AM

Hi @Infotech22 ,

 

- You can first try to push SAML config it to one FortiGate, if that works fine push it to another devices. And about the SSL VPN config you can do it manually if the interface it's listening to, [port and IP] are different across the devices. if you want to keep the group name same as other device you can push that from FortiManager and also the policy package.

DNB
389
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.