Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ryld
New Contributor

SSO authentication with SAML, Azure entra ID with FortiGate

I have done the configurations to SSO authenticate users with Microsoft Entra ID with Fortigate on SAML.
I tried the Fortinet documentation and all the configurations were done as same.


https://docs.fortinet.com/document/fortigate/7.6.3/administration-guide/33053/outbound-firewall-auth...


Once we attempt to authenticate, the user is taken to the authentication site (login.microsoft.com). After entering the user credentials, it will load for a long time without any response.

5 REPLIES 5
funkylicious
SuperUser
SuperUser

hi,

try increasing the timer of the command below if not done already. ( def is 5s ) 

 

config system global
set remoteauthtimeout <1-300s>
end

"jack of all trades, master of none"
"jack of all trades, master of none"
ryld

SSL VPN is working without any issues.
Now I need internet users to authenticate with SAML with Azure Entra ID.

smkml
Staff
Staff

Hi @ryld ,

 

Are you using IPsec VPN to connect? If yes, can you try to check the configuration parts, especially on phase1 interface "eap enable" .
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-Microsoft-Entra-ID-SAML/t...

ryld
New Contributor

SSL VPN is working without any issues.
Now I need internet users to authenticate with SAML with Azure Entra ID.

VinayHM
Staff
Staff
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors