- Go to Authentication > User Management > Remote User Sync Rules, choose SAML and then click Create New.
- Configure the following settings:
- Name: Enter a name for the sync rule (e.g. SAML Users).
- Remote SAML server: Select the previously configured remote SAML server.
- Configure the token-based sync priority settings under Synchronization Attributes by enabling and ordering the authentication sync priorities.
- Select or create a user group to associate users with from the dropdown menu.
- In SAML User Mapping Attributes, set the Username field to
- The remaining settings can be configured to your preference or left in their default state.
- Click OK to save your changes when completed.
This example scenario uses FortiToken Cloud for two-factor authentication, so the priority is FortiToken Cloud followed by None (users are synced explicitly with no token-based authentication).
- Go to Authentication > User Management > Remote Users and Import users from the remote SAML account.
- Edit a user and enable One-Time Password (OTP) authentication, and select FortiToken > Cloud as the delivery method.
- Click OK to save your changes.