Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
rafaelrosseto88
New Contributor

Created on ‎08-09-2024 09:28 AM

Track username via SAML Fortiweb

Hello,

 

Is there a way to track the username from a session authenticated through SAML Azure IDP when accessing a specific VIP using Site Publish?

 

Should the username be automatically received via Site Publish, or do I need to create a tracking rule for this purpose?

Labels:
433
0 Kudos
1 Solution
Khidzir_MN
Staff
Staff

Created on ‎08-19-2024 02:05 AM

Hi rafaelrosseto88,

 

Hope you're doing well.

 

You may need to add below Attributes mapping (UPN - EPPN) in the SAML Azure IdP. Below sample is for SAML Microsoft Entra ID.

 

entra_id_saml_sso_attribute.png

 

The FortiWeb will show the respective Username for the respective Traffic Log.

 

tlog.png

You may also enable the Alert Type option for the respective Site Publish Rule to show the respective Username in the Event Log.

Offloaded authentication and optional SSO configuration

 

elog.png

 

Hope this helps.

 

Thank you.
Khidzir

..looks good to me, but someone else must approve..

View solution in original post

278
5 REPLIES 5
Jean-Philippe_P
Moderator
Moderator

Created on ‎08-11-2024 10:46 PM

Hello rafaelrosseto88, 

 

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible. 

 

Thanks, 

Jean-Philippe - Fortinet Community Team
392
Jean-Philippe_P
Moderator
Moderator

Created on ‎08-14-2024 12:13 AM

Hello,

 

We are still looking for an answer to your question.

 

We will come back to you ASAP.

 

 

Thanks,

Jean-Philippe - Fortinet Community Team
349
Jean-Philippe_P
Moderator
Moderator

Created on ‎08-14-2024 04:58 AM

@AEK @sw2090 @pminarik @ebilcari do you have an idea about this issue, please?

Jean-Philippe - Fortinet Community Team
334
Khidzir_MN
Staff
Staff

Created on ‎08-19-2024 02:05 AM

Hi rafaelrosseto88,

 

Hope you're doing well.

 

You may need to add below Attributes mapping (UPN - EPPN) in the SAML Azure IdP. Below sample is for SAML Microsoft Entra ID.

 

entra_id_saml_sso_attribute.png

 

The FortiWeb will show the respective Username for the respective Traffic Log.

 

tlog.png

You may also enable the Alert Type option for the respective Site Publish Rule to show the respective Username in the Event Log.

Offloaded authentication and optional SSO configuration

 

elog.png

 

Hope this helps.

 

Thank you.
Khidzir

..looks good to me, but someone else must approve..
279
Jean-Philippe_P
Moderator
Moderator

Created on ‎08-20-2024 12:23 AM

Hello,

 

The full KB article for this topic can be found there: https://community.fortinet.com/t5/FortiWeb/Technical-Tip-How-to-show-Username-for-FortiWeb-Site-Publ...

 

Thanks a lot, @Khidzir_MN for this good job! ;)

Jean-Philippe - Fortinet Community Team
261
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.