Fortinet black logo

Cookbook

Home FortiAuthenticator 6.3.0 Cookbook

Configuring IdP settings

6.3.0
6.5.0
6.4.0
6.3.0
6.2.0
6.1.0
6.0.0
5.5.0
Copy Link
Copy Doc ID 23809264-eafe-11eb-97f7-00505692583a:707793
Download PDF

Configuring IdP settings

To configure general settings:
  1. Go to Authentication > SAML IdP > General.
  2. Enable the SAML identity provider portal and enter the following:
    1. Server address: Enter the FortiAuthenticator FQDN.
    2. Realms: Add the realm associated with the remote server for G Suite.
    3. Default IdP certificate: Select a default certificate to use.

  3. Click OK to save your changes.
To configure service provider settings:
  1. Go to Authentication > SAML IdP > Service Providers and create a new reference for the service provider that you will be using as your SAML client.
    The name can be anything you want.
  2. Enter the SP information from the client you will be using as the SAML service provider.
  3. Download the IdP metadata.
    This can be used to set up the SAML IdP configuration in your SAML SP client (if allowed by your client).
  4. Under SAML Attribute click Create New, and enter a SAML Attribute name that your SAML SP is expecting to identify the user. Select a User Attribute for this selection. If you're unsure of which attribute to pick, select SAML Username.

  5. Click OK to save your changes.
Previous
Next

Configuring IdP settings

To configure general settings:
  1. Go to Authentication > SAML IdP > General.
  2. Enable the SAML identity provider portal and enter the following:
    1. Server address: Enter the FortiAuthenticator FQDN.
    2. Realms: Add the realm associated with the remote server for G Suite.
    3. Default IdP certificate: Select a default certificate to use.

  3. Click OK to save your changes.
To configure service provider settings:
  1. Go to Authentication > SAML IdP > Service Providers and create a new reference for the service provider that you will be using as your SAML client.
    The name can be anything you want.
  2. Enter the SP information from the client you will be using as the SAML service provider.
  3. Download the IdP metadata.
    This can be used to set up the SAML IdP configuration in your SAML SP client (if allowed by your client).
  4. Under SAML Attribute click Create New, and enter a SAML Attribute name that your SAML SP is expecting to identify the user. Select a User Attribute for this selection. If you're unsure of which attribute to pick, select SAML Username.

  5. Click OK to save your changes.
Previous
Next