Importing the IdP certificate and metadata on the FortiAuthenticator
- To import the Google IdP data, on the FortiAuthenticator, go to Fortinet SSO Methods > SSO > SAML Authentication and import the IdP metadata and certificate downloaded during the Google IdP Information step earlier.
- Create a new FortiGate filter for FSSO Push. Go to Fortinet SSO Methods > SSO > FortiGate Filtering and select Create New.
This automatically fills the IdP fields. Make sure to select OK to save these changes.
Enter a name and the FortiGate’s wan-interface IP address. Select OK and then enable Fortinet Single Sign-On (FSSO).
Select Create New to create an SSO group filtering object. The group filtering object name must once again match the original SAML group user name (saml_users).
Select OK to apply all changes.