I am trying to set up two-factor authentication using SAML for my ZTNA server. I am using Fortigate as the SP SAML and Fortiauthenticator as the SAML idP. The private address of my Fortiauthenticator is 10.1.1.2. The same ip address I use as the SAML idP.
I configured the VIP to Fortigate VIP 126.96.36.199:11443->10.1.1.2:443 so that the client can access the SAML idP from the internet. When I try to connect from the internet, I get to the Fortiauthenticator login page and not the SAML idP authorization page.
Can I use the same IP address 10.1.1.2 for Fortiauthenticator, both the management IP and the SAML idP?
FortiAuthenticator FortiGate #SAML #ZTNA