Fortinet black logo

Administration Guide

Home FortiAuthenticator 6.6.1 Administration Guide
6.6.1
6.6.1
6.6.0
6.5.4
6.5.3
6.5.2
6.5.1
6.5.0
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.3.4
6.3.3
6.3.2
6.3.1
6.3.0
6.2.2
6.2.1
6.2.0
6.1.3
6.1.2
6.1.1
6.1.0
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.5.0
5.4.0
5.3.0
5.2.0
5.1.0
5.0.0
4.3.0
4.2.1
4.2.0

Remote user sync rules- SAML

Remote user sync rules- SAML

The SAML user synchronization rule list shows the following options:

Create New

Select to create new remote SAML user synchronization rule.

Delete

Select to delete the selected remote SAML user synchronization rules.

Manual Sync

Select to manually sync the selected remote SAML user synchronization rule.
To create a new remote SAML user synchronization rule:
  1. From the Remote User Sync Rules page, select SAML, select Create New.
  2. Configure the following settings:
    NameEnter a name for the synchronization rule.
    Remote SAML serverSelect a remote SAML server from the dropdown menu. To configure a remote SAML server, see SAML.
    SAML groupSelect a group from the SAML server. SAML groups are retrieved dynamically from the server.
    Token-based authentication sync priorities

    Select the required authentication synchronization priorities.
    Drag the priorities up and down in the list change the priority order.

    When editing/creating a remote user synchronization rule with Provision mode set to Offline in Tokens, FortiToken Mobile (assign an available token) cannot be enabled.

    Sync every

    Select the amount of time between synchronizations.

    Group to associate users withOptionally, select a group from the dropdown menu with which to associate the users with. See User groups.
    FortiToken Logo

    Optionally, select a logo from the FortiToken Logo dropdown menu to associate the imported users with the specified logo. This logo is displayed beside the one-time password in FortiToken. See FortiTokens for more information.

    Do not delete synced users when they are no longer found on the remote server

    Select to ensure that synchronized users are not deleted when they are no longer found on the remote server. This option is only available when Proceed with rule even when response empty is disabled.

    SAML User Mapping AttributesOptionally, edit the remote SAML user mapping attributes.
  3. Select Save to create the new SAML synchronization rule.
Previous
Next

Remote user sync rules- SAML

The SAML user synchronization rule list shows the following options:

Create New

Select to create new remote SAML user synchronization rule.

Delete

Select to delete the selected remote SAML user synchronization rules.

Manual Sync

Select to manually sync the selected remote SAML user synchronization rule.
To create a new remote SAML user synchronization rule:
  1. From the Remote User Sync Rules page, select SAML, select Create New.
  2. Configure the following settings:
    NameEnter a name for the synchronization rule.
    Remote SAML serverSelect a remote SAML server from the dropdown menu. To configure a remote SAML server, see SAML.
    SAML groupSelect a group from the SAML server. SAML groups are retrieved dynamically from the server.
    Token-based authentication sync priorities

    Select the required authentication synchronization priorities.
    Drag the priorities up and down in the list change the priority order.

    When editing/creating a remote user synchronization rule with Provision mode set to Offline in Tokens, FortiToken Mobile (assign an available token) cannot be enabled.

    Sync every

    Select the amount of time between synchronizations.

    Group to associate users withOptionally, select a group from the dropdown menu with which to associate the users with. See User groups.
    FortiToken Logo

    Optionally, select a logo from the FortiToken Logo dropdown menu to associate the imported users with the specified logo. This logo is displayed beside the one-time password in FortiToken. See FortiTokens for more information.

    Do not delete synced users when they are no longer found on the remote server

    Select to ensure that synchronized users are not deleted when they are no longer found on the remote server. This option is only available when Proceed with rule even when response empty is disabled.

    SAML User Mapping AttributesOptionally, edit the remote SAML user mapping attributes.
  3. Select Save to create the new SAML synchronization rule.
Previous
Next