Fortinet black logo

Cookbook

5.5.0
6.5.0
6.4.0
6.3.0
6.2.0
6.1.0
6.0.0
5.5.0

Configuring SAML on G Suite

Configuring SAML on G Suite

  1. To configure SAML, log in to your G Suite administrator account.

    2. From the Admin console,select Apps > SAML apps > Add a service/App.

  2. In the Enable SSO for SAML Application page, select to SETUP MY OWN CUSTOM APP.

  3. In the Google IdP Information page, download the Certificate and IDP metadata. Select Next.

  4. In the Basic information for your Custom App page, enter an Application Name, and optionally provide a Description and Upload logo. Select Next.

  5. In the Service Provider Details page, set the ACS URL, Entity ID, and Start URL – these are the ACS (login) url, Entity id, and Portal url (respectively) from the FortiAuthenticator Edit SAML Portal Settings window. Select Next.

  6. In the Attribute Mapping page, add the FirstName, LastName, Email, and Memberof user attributes.

    7. The Department setting for Memberof must match the FortiAuthenticator saml_users group.

    Select Finish.

  7. Finally, make sure the application is ON for everyone, and go to your user’s Account information and make sure that Employee details show as Department. Set Department to the same FortiAuthenticator saml_users user group name.

Previous
Next

Configuring SAML on G Suite

  1. To configure SAML, log in to your G Suite administrator account.

    2. From the Admin console,select Apps > SAML apps > Add a service/App.

  2. In the Enable SSO for SAML Application page, select to SETUP MY OWN CUSTOM APP.

  3. In the Google IdP Information page, download the Certificate and IDP metadata. Select Next.

  4. In the Basic information for your Custom App page, enter an Application Name, and optionally provide a Description and Upload logo. Select Next.

  5. In the Service Provider Details page, set the ACS URL, Entity ID, and Start URL – these are the ACS (login) url, Entity id, and Portal url (respectively) from the FortiAuthenticator Edit SAML Portal Settings window. Select Next.

  6. In the Attribute Mapping page, add the FirstName, LastName, Email, and Memberof user attributes.

    7. The Department setting for Memberof must match the FortiAuthenticator saml_users group.

    Select Finish.

  7. Finally, make sure the application is ON for everyone, and go to your user’s Account information and make sure that Employee details show as Department. Set Department to the same FortiAuthenticator saml_users user group name.

Previous
Next