Hi Team,
SAML authentication is not working. We have integrated Azure IdP with on-prem Active Directory and called the Azure IdP on the Fortigate Firewall. We are using SSL VPN and when we dial up the remote connection, its getting stuck at 40%.
Can someone help out on this.
Thanks
Solved! Go to Solution.
Team, the issue gets resolved after making some port changes and re-entering of entity id
Thanks for assistance.
Appreciated.
Hi Muhammadsaad,
As you mentioned, VPN stuck at 40%. This may occur when FortiClient generates a new pop-up window verifying whether the user wishes to proceed with a non-trusted TLS/SSL certificate.
Can you please run the below debug commands and try to connect the VPN and share us the output to check further
diagnose debug reset
diagnose debug console timestamp enable
diagnose debug application samld -1
diagnose debug application sslvpn -1
diagnose debug enable
Regards!
well due to some restrictions and secure environment, output can't be shared. Is there any other way
Run the diagnose commands and facing the below error:
Error: 'The identifier of a provider is unknown to #LassoServer'
We have also followed the required steps in order to overcome the error but no luck
If you are ob 7.6.x maybe the issue is another Agentless VPN (formerly SSL VPN web mode) not supported on FortiGate 40F, 60F, and 90G series models...
Outside of that with FortiAuthenticator you can have it SAML IdP proxy and if SAML has issues then Oauth OpenID connect could be used.
SAML IdP proxy for Azure | FortiAuthenticator 6.5.0 | Fortinet Document Library
FortiGate SSL VPN Authentication with FortiAuthenticator as IdP Proxy for Azure AD
Team, the issue gets resolved after making some port changes and re-entering of entity id
Thanks for assistance.
Appreciated.
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2678 | |
| 1412 | |
| 810 | |
| 703 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.