Fortinet black logo

Identity & Access Management (IAM)

Selecting IdP roles

24.1.0
Copy Link
Copy Doc ID cb035e9b-aa60-11ee-8673-fa163e15d75b:685252
Download PDF

Selecting IdP roles

An external user can be assigned to more than one IdP role. When a user logs into a cloud portal through a third-party ID provider, their user account is mapped to their IdP roles in the portal.

After the user logs in with the third-party ID provider, the roles connected to the user's account determines their access to the portal.

  • If no roles are assigned to the account, a blocker message appears.

  • If only one role is assigned to the account, the user proceeds directly to the portal.

  • If multiple roles are assigned to the account, the Your Roles page opens, and the user must select a role before proceeding to the portal.

    Note

    The Your Roles page appears as a pop-up window in the Account menu of the Asset Management portal.

Logging into an IdP role

Users can access FortiCloud using external IdP roles when logging in with their company's ID provider.

To access the external IdP role:
  1. Log in using your company's ID provider. The log in portal opens.

  2. Select the Service Provider.

  3. Select External IDP Role. The roles available based on your credentials are displayed.

  4. Hover over the role you want to choose and click Select.

    The Dashboard is displayed.

Switching from an IdP role

If you are logged into an external IdP role, you can switch to another linked role.

To switch to an IdP role:
  1. Click the profile menu in the top right.

  2. Select Switch Roles. The Switch Accounts dialog is displayed.

  3. Select the External IDP Role tab. A list of linked roles is displayed.

  4. Hover over the role you want to change to and click Select.

    You will be redirected to the Dashboard of the selected account.

Selecting IdP roles

An external user can be assigned to more than one IdP role. When a user logs into a cloud portal through a third-party ID provider, their user account is mapped to their IdP roles in the portal.

After the user logs in with the third-party ID provider, the roles connected to the user's account determines their access to the portal.

  • If no roles are assigned to the account, a blocker message appears.

  • If only one role is assigned to the account, the user proceeds directly to the portal.

  • If multiple roles are assigned to the account, the Your Roles page opens, and the user must select a role before proceeding to the portal.

    Note

    The Your Roles page appears as a pop-up window in the Account menu of the Asset Management portal.

Logging into an IdP role

Users can access FortiCloud using external IdP roles when logging in with their company's ID provider.

To access the external IdP role:
  1. Log in using your company's ID provider. The log in portal opens.

  2. Select the Service Provider.

  3. Select External IDP Role. The roles available based on your credentials are displayed.

  4. Hover over the role you want to choose and click Select.

    The Dashboard is displayed.

Switching from an IdP role

If you are logged into an external IdP role, you can switch to another linked role.

To switch to an IdP role:
  1. Click the profile menu in the top right.

  2. Select Switch Roles. The Switch Accounts dialog is displayed.

  3. Select the External IDP Role tab. A list of linked roles is displayed.

  4. Hover over the role you want to change to and click Select.

    You will be redirected to the Dashboard of the selected account.