Fortinet black logo

Cookbook

Home FortiAuthenticator 6.4.0 Cookbook

Uploading SAML IdP certificate to the FortiGate SP

6.4.0
6.5.0
6.4.0
6.3.0
6.2.0
6.1.0
6.0.0
5.5.0
Copy Link
Copy Doc ID 52c06fe2-eb01-11eb-97f7-00505692583a:853617
Download PDF

Uploading SAML IdP certificate to the FortiGate SP

To upload SAML IdP certificate:
  1. Go to System > Certificates.
  2. From the Create/Import dropdown, select Remote Certificate.

    The Upload Remote Certificate window opens.

  3. In the Upload Remote Certificate window, select Upload, and browse to the certificate that you saved in Exporting the IdP certificate.
  4. Click Open.
  5. Click OK.

  6. Make note of the name of the certificate used. Here, REMOTE_Cert_2.

    The certificate is then referenced in Creating SAML user and server.

    Ensure that the correct certificate is uploaded to the FortiGate SP, else SAML authentication fails due to a mismatch in the certificate used by FortiAuthenticator to sign the SAML assertion.

    The FortiGate SP only trusts SAML assertions signed by the certificate selected in Creating SAML user and server.

Previous
Next

Uploading SAML IdP certificate to the FortiGate SP

To upload SAML IdP certificate:
  1. Go to System > Certificates.
  2. From the Create/Import dropdown, select Remote Certificate.

    The Upload Remote Certificate window opens.

  3. In the Upload Remote Certificate window, select Upload, and browse to the certificate that you saved in Exporting the IdP certificate.
  4. Click Open.
  5. Click OK.

  6. Make note of the name of the certificate used. Here, REMOTE_Cert_2.

    The certificate is then referenced in Creating SAML user and server.

    Ensure that the correct certificate is uploaded to the FortiGate SP, else SAML authentication fails due to a mismatch in the certificate used by FortiAuthenticator to sign the SAML assertion.

    The FortiGate SP only trusts SAML assertions signed by the certificate selected in Creating SAML user and server.

Previous
Next