Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
chang0986
New Contributor

Created on ‎02-15-2025 04:22 AM

testing / setting up ipsec vpn remote access

I already have SSL-VPN running with SAML enabled and it works fine..
I'm starting to setup IPSEC-VPN and it's configured to work with a local group and local account, just to get it running.

If I want to start using Azure SAML with IPSec-VPN, can I use the same samluser/saml remote group I have for SSL-VPN or do I need to setup a new one for IPSEC-vpn in parallel, including the Azure side of it.

should the ipsec-vpn also be setup on a loopback interface ? (my ssl isn't, currently) are the steps the same ?

https://9apps.ooo/
https://9apps.ooo/
Labels:
152
0 Kudos
2 REPLIES 2
salodjo2
New Contributor

Created on ‎02-15-2025 08:03 AM

You should be able to use the same group from the Entra side.

Don't put IPSec VPN on a loopback - you will lose offloading/hardware acceleration.

https://vlc.onl/
https://vlc.onl/
127
0 Kudos
jiahoong112
Staff
Staff

Created on ‎02-15-2025 08:11 AM

Kindly refer to this document as a guide for saml ipsec dialup vpn: https://docs.fortinet.com/document/fortigate/7.2.8/administration-guide/951346/saml-based-authentica...

https://docs.fortinet.com/document/fortigate/7.6.2/administration-guide/432396/configuring-microsoft... 

Yes, on Azure you can use the same sslvpn remote group enterprise application for the ipsec dialup vpn. Loopback interface creation is not required.

**If you come across a resolution, kindly show your appreciation by liking and accepting it, ensuring its accessibility for others**
121
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.