Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
pmit
New Contributor III

Vote up SAML support for SSLVPN.

SAML is a supported auth method for the Fortigate/FortiAuthenticator, but NOT for the SSLVPN web portal.

 

I've heard this is coming...

3 REPLIES 3
romanr
Valued Contributor

There would be a huge usecase for this - espacially in hybrid cloud scenarios.

 

So I hope you are right!

James_Hayes

Same requirement here

pmit
New Contributor III

SSLVPN SAML is working in 6.4 with Google.

 

config user saml edit "Google" set entity-id "https://gateway.xxxxx.com/remote/saml/metadata" set single-sign-on-url "https://gateway.xxxxx.com/remote/saml/login" set single-logout-url "https://gateway.xxxxx.com/remote/logout" set idp-entity-id "https://accounts.google.com/o/saml2?idpid=C011xxxxx" set idp-single-sign-on-url "https://accounts.google.com/o/saml2/idp?idpid=C011xxxxx" set idp-single-logout-url "https://accounts.google.com/o/saml2/idp?idpid=C011xxxxx" set idp-cert "REMOTE_Cert_1" set user-name "Email" set group-name "Memberof" next end

 

Make sure you have local users with full email address for user name in Fortigate.

 

 

Labels
Top Kudoed Authors