Configuring SAML IdP settings
Configuring SAML IdP settings
To configure general settings:
- Go to Authentication > SAML IdP > General.
- Enable the SAML identity provider portal and enter the following:
- Server address: Enter the FortiAuthenticator FQDN.
- Realms: Add the realm associated with the remote server for Azure IdP.
- Default IdP certificate: Select a default certificate to use.
- Click OK to save your changes.
To configure service provider settings:
- Go to Authentication > SAML IdP > Service Providers and create a new reference for the service provider that you will be using as your SAML client.
The name can be anything you want.
- Enter the SP information from the client you will be using as the SAML service provider.
- Download the IdP metadata.
This can be used to set up the SAML IdP configuration in your SAML SP client (if allowed by your client).
- Under SAML Attribute click Create New, and enter a SAML Attribute name that your SAML SP is expecting to identify the user. Select a User Attribute for this selection. If you're unsure of which attribute to pick, select SAML Username.
- Click OK to save your changes.
Configuring SAML IdP settings
To configure general settings:
- Go to Authentication > SAML IdP > General.
- Enable the SAML identity provider portal and enter the following:
- Server address: Enter the FortiAuthenticator FQDN.
- Realms: Add the realm associated with the remote server for Azure IdP.
- Default IdP certificate: Select a default certificate to use.
- Click OK to save your changes.
To configure service provider settings:
- Go to Authentication > SAML IdP > Service Providers and create a new reference for the service provider that you will be using as your SAML client.
The name can be anything you want.
- Enter the SP information from the client you will be using as the SAML service provider.
- Download the IdP metadata.
This can be used to set up the SAML IdP configuration in your SAML SP client (if allowed by your client).
- Under SAML Attribute click Create New, and enter a SAML Attribute name that your SAML SP is expecting to identify the user. Select a User Attribute for this selection. If you're unsure of which attribute to pick, select SAML Username.
- Click OK to save your changes.