Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 8.0.3
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiWeb 8.0.3 Administration Guide
    8.0.3
    8.0.4
    8.0.3
    8.0.2
    8.0.1
    8.0.0
    7.6.7
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.12
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.3
    6.3.23
    6.2.8
    6.1.4
    5.7.0
    5.6.1
    5.6.0
    5.6.0

    Custom Username Source Support for SAML Assertions (8.0.3)

    Custom Username Source Support for SAML Assertions (8.0.3)

    FortiWeb 8.0.3 adds new options to control how usernames are extracted from SAML assertions in Site Publishing. Administrators can now choose whether FortiWeb retrieves the username from the NameID field or from a specified SAML Attribute, instead of relying on the previously fixed EPPN field. This provides greater flexibility for deployments where the identity provider (IdP) uses different fields or formats to represent the username.

    Enhancements

    • A new Custom Username Source option in the SAML Server configuration.

    • Username extraction can now use either the NameID field or a specified SAML Attribute.

    • Built-in support for common NameID and Attribute formats removes the need for IdP-side remapping.

    Configuration Updates

    FortiWeb 8.0.3 introduces several updates to the SAML Server configuration to support customizable username extraction and improve the overall setup flow. The section previously labeled Identity Provider Metadata has been renamed to Identity Provider, reflecting that the configuration now covers broader IdP settings rather than just metadata upload. This updated layout provides a clearer place to introduce the new controls for selecting how FortiWeb retrieves the username from a SAML assertion.

    • Custom Username Source — Enables the new method for selecting how the username is extracted.

    • Source — Lets you choose whether the username should come from NameID or from a SAML Attribute.

    • Attribute Name — Appears when Attribute is selected and specifies which attribute contains the username.

    When the Custom Username Source feature is disabled, FortiWeb continues using its existing username extraction method.

    Previous
    Next

    Custom Username Source Support for SAML Assertions (8.0.3)

    Custom Username Source Support for SAML Assertions (8.0.3)

    FortiWeb 8.0.3 adds new options to control how usernames are extracted from SAML assertions in Site Publishing. Administrators can now choose whether FortiWeb retrieves the username from the NameID field or from a specified SAML Attribute, instead of relying on the previously fixed EPPN field. This provides greater flexibility for deployments where the identity provider (IdP) uses different fields or formats to represent the username.

    Enhancements

    • A new Custom Username Source option in the SAML Server configuration.

    • Username extraction can now use either the NameID field or a specified SAML Attribute.

    • Built-in support for common NameID and Attribute formats removes the need for IdP-side remapping.

    Configuration Updates

    FortiWeb 8.0.3 introduces several updates to the SAML Server configuration to support customizable username extraction and improve the overall setup flow. The section previously labeled Identity Provider Metadata has been renamed to Identity Provider, reflecting that the configuration now covers broader IdP settings rather than just metadata upload. This updated layout provides a clearer place to introduce the new controls for selecting how FortiWeb retrieves the username from a SAML assertion.

    • Custom Username Source — Enables the new method for selecting how the username is extracted.

    • Source — Lets you choose whether the username should come from NameID or from a SAML Attribute.

    • Attribute Name — Appears when Attribute is selected and specifies which attribute contains the username.

    When the Custom Username Source feature is disabled, FortiWeb continues using its existing username extraction method.

    Previous
    Next