Fortinet black logo

Version:

6.2.15
6.2.14
6.2.13

Version:

6.2.12
6.2.11
6.2.10

Version:

6.2.9
6.2.8
6.2.7

Version:

6.2.6
6.2.5
6.2.4

Version:

6.2.3
6.2.2
6.2.0

Version:

6.0.0
5.6.0
5.4.0

Table of Contents

Cookbook

6.2.2
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.0
6.0.0
5.6.0
5.4.0
Download PDF
Copy Doc ID 3c219ad1-1ba7-11ea-9384-00505692583a:977906
Copy Link

Configuring single-sign-on in the Security Fabric

SAML SSO enables a single FortiGate device to act as the identify provider (IdP), while other FortiGate devices act as service providers (SP) and redirect logins to the IdP.

Note

Only the root FortiGate can be the identity provider (IdP). The downstream FortiGates can be configured as service providers (SP).

The process is as follows:

  1. Configuring the root FortiGate as the IdP
  2. Configuring a downstream FortiGate as an SP
  3. Verifying the single-sign-on configuration

You can also use the CLI. See CLI commands for SAML SSO.

Previous
Next

Configuring single-sign-on in the Security Fabric

SAML SSO enables a single FortiGate device to act as the identify provider (IdP), while other FortiGate devices act as service providers (SP) and redirect logins to the IdP.

Note

Only the root FortiGate can be the identity provider (IdP). The downstream FortiGates can be configured as service providers (SP).

The process is as follows:

  1. Configuring the root FortiGate as the IdP
  2. Configuring a downstream FortiGate as an SP
  3. Verifying the single-sign-on configuration

You can also use the CLI. See CLI commands for SAML SSO.

Previous
Next