Hello
I have configured a Wifi access with Single Sign-ON (SSO) connection.
The connection is successful after login.
I have created some firewall policies with Azure AD groups.
The problem I have is that to test the accesses of these groups I have to disconnect the wifi session and re-authenticate, but I don't know how to force the disconnection because every time I connect again to the wifi it doesn't ask me for the username/password.
How can I force the user to disconnect from the wifi?
Note: I have tried forgetting the wifi network and restarting, but it continues to log in automatically.
Thanks
Translated with DeepL.com (free version)
Hi @guchinife
Did you try from Dashboard > Users & Devices, then in the user list right-click on the user and click De-authenticate.
Hi, this option does not work for me, as the users are in Azure AD.
I guess you have configured portal authentication with SAML as described on this article here. Since the user session will remain until it's timed out, in order to trigger a new login you can try deleting the host in Dashboard> Users & Devices.
Here they don't tell you how to force disconnect users from Azure AD which is what I need.
Thanks
If the problem is that the IdP (Azure/Entra) cookie is cached and the authentication just "fast-forwards" through, just delete the cookies on the endpoint. The FortiGate can't influence what happens with these cookies, that's business between the endpoint and the IdP.
Hi @guchinife,
Please refer to this article: https://community.fortinet.com/t5/FortiGate/Technical-Tip-SAML-de-authentication-Outbound-SAML-polic...
Regards,
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.