Fortinet black logo

Administration Guide

22.4.1
24.1.1
23.4.1
23.3.1
22.4.2
22.4.1
22.3.0
22.2.0

Authentication - Configuring SAML2 single sign on

Authentication - Configuring SAML2 single sign on

Note

You must complete the domain configuration and validation steps before completing this configuration.

Once you have configured your Single Sign On (SSO) solution, students must use single sign on in order to log into the Learning Application.

Users must have a configured account in your Single Sign On solution in order to access the Learning Application.

The Security Awareness and Training Service allows Customers and Partners to share metadata to establish a baseline of trust and interoperability using the XML based Security Assertion Markup Language (SAML) standard.

To configure SSO:

  1. Download and provide the SP (Service Provider) metadata to your IdP (Identity Provider).

    You can either view and copy, or download the SP data from the tenant. You can also provide the entityID to the Identity Provider. To view the SP metadata, click on View SP Metadata.

    The metadata entityID link is highlighted in the following example:

  2. The Identity Provider vendor must map the Identity Provider SAML Attributes to the Admin Portal User Profile Fields (which the tenant displays). The IdP provider will have fields in their system that must map to the SAML Attributes (they will need to use the exact attributes and case in the SAML Attributes highlighted below).

    Note

    Assume case sensitivity when mapping the SAML Attributes.

  3. Paste the Identity Provider (IdP) metadata XML/public XML URL information into the Identity Provider (IdP) metadata XML / public XML URL field and select Save Changes.

Previous
Next

Authentication - Configuring SAML2 single sign on

Note

You must complete the domain configuration and validation steps before completing this configuration.

Once you have configured your Single Sign On (SSO) solution, students must use single sign on in order to log into the Learning Application.

Users must have a configured account in your Single Sign On solution in order to access the Learning Application.

The Security Awareness and Training Service allows Customers and Partners to share metadata to establish a baseline of trust and interoperability using the XML based Security Assertion Markup Language (SAML) standard.

To configure SSO:

  1. Download and provide the SP (Service Provider) metadata to your IdP (Identity Provider).

    You can either view and copy, or download the SP data from the tenant. You can also provide the entityID to the Identity Provider. To view the SP metadata, click on View SP Metadata.

    The metadata entityID link is highlighted in the following example:

  2. The Identity Provider vendor must map the Identity Provider SAML Attributes to the Admin Portal User Profile Fields (which the tenant displays). The IdP provider will have fields in their system that must map to the SAML Attributes (they will need to use the exact attributes and case in the SAML Attributes highlighted below).

    Note

    Assume case sensitivity when mapping the SAML Attributes.

  3. Paste the Identity Provider (IdP) metadata XML/public XML URL information into the Identity Provider (IdP) metadata XML / public XML URL field and select Save Changes.

Previous
Next