Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ssan239
New Contributor III

SAML Login

Hi Team,

We have configured SAML authentication for SSL VPN. Everything works. But Fortigate with os version v7.2.7 works with Forticlient inbuilt Embedded browser but Forti OS v7.4.3 works only when we change the settings to External browser. Please suggest how we can use the Embedded browser itself? 

We dont use EMS to make changes in XML file :(

 

Regards,

Sanjay S

6 REPLIES 6
Quint021
Staff
Staff

Hello @ssan239

What version of Forticlient do you use with FortiOS 7.4.3?


The debugs as explained in the following article will be required when replicating the issue to gain further insights:

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Companion-for-troubleshooting-SSL-VP...

*Replicate the issue to see if any errors are present in either logs*

Kind Regards,

ssan239
New Contributor III

Hi @Quint021 

Thank you for the response. Forticlient version is 7.4.0.

Here the problem is it is not working with inbuilt embedded browser but working with the external browser,

Shashwati
Staff
Staff

Please refer to the following document regarding the issue FortiClient will not prompt for credentials after first successful login using SAML method

https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiClient-Caching-SSL-VPN-SAML-Authentic...

https://community.fortinet.com/t5/FortiClient/Technical-Tip-Disabling-auto-caching-on-VPN-login-usin...

ssan239
New Contributor III

Hi @Shashwati 

Thanks for your response. It is something to do with External browser why it is working with that and not with the inbuilt browser :(

Quint021

Hello @ssan239,

As mentioned previously, the debugs from forticlient as well as the fortigate should provide further details as to why it is failing. Can you also test with the setting "Do not modify internal cookies" enabled/disabled as well?

Feel free to post the logs after replication.

Kind Regards,

Shashwati

Hi 

Forti client is cached the login credentials sometimes 

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors