- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
SAML SSO option missing in the GUI
We would like to use Office 365 for SSO. This document describes how to use Azure as an SSO Identity Provider: https://kb.fortinet.com/kb/documentLink.do?externalID=FD45699
The document instructs to go to "SAML SSO", however I do not see "SAML SSO" under the "User and Device" section of the GUI. Running 6.2.2 and as far as I can tell it's not an option under feature visibility that is turned off. Any ideas?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
It is under Security Fabric > Security Settings > Enable Telemetry, set FortiGate as root,
It will ask you for IP of FortiAnalyzer > use 0.0.0.0. Rest can be configured there as it is in: https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/952688/manual-saml-sso-configuration
Best Regards,
Alivo
livo
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Under Security Fabric -> Settings, I only have options for FortiAnalyzer (which we have our Fortianalyzer server setup there) and Cloud Logging. I do not have a Telemetry setting. Please note this is under a VDOM.
If I go to the Global VDOM, then I also see "Central Management" which we have setup for the FortiManager, "Sandbox Inspection", "Fabric Devices" and "Forticlient Enpoint Management System".
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Pavel_Livonec_FTNT wrote:Hello,
It is under Security Fabric > Security Settings > Enable Telemetry, set FortiGate as root,
It will ask you for IP of FortiAnalyzer > use 0.0.0.0. Rest can be configured there as it is in: https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/952688/manual-saml-sso-configuration
Best Regards,
Alivo
I've done this but I'm still not seeing SAML SSO under User & Device. 101F in HA, no VDOM, 6.2.3.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I don't think the Telemetry answer is related to the OP.
I also would like to configure SAML for admin SSO and do not have the option in Users & devices.
Please advise.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
@chrismo16
I think that the telemetry answer is definitely in response to OP's question. I think there's a dependency on having it set up for SSO to work.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Anybody has definitive answer to get it to show GUI: User & Device -> SAML SSO
Seb
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
depending on your FortiOS version you won't be able to get it and if you do you will loose it with an upgrade. as people mentioned the SAML config moved to the Security Fabric section and that menu option is gone. this was confirm by Fortinet support.
the work around mentioned here didn't quite work for me, i just set it up via the CLI (6.2.4) and then was able to see it when enabling Security Fabric / Telemetry. In 6.4.2 it worked better as described above.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
It is under Security Fabric > Security Settings > Fabric Connectors