This example shows you how to provide a Security Assertion Markup Language (SAML) FSSO cloud authentication solution using FortiAuthenticator with Centrify Identity Service, a cloud-based or on-premises service. This solution can mitigate one of the leading points of attack in data breaches: compromised credentials. FortiAuthenticator acts as the service provider (SP) and Centrify acts as the identity provider (IdP).
Centrify Identity Service improves end-user productivity and secures access to cloud, mobile, and on-premise apps via SSO, user provisioning, and multi-factor authentication.
Before you begin:
- Create a Centrify tenant admin account.
- On the FortiAuthenticator, create two user groups (one local user group and one SSO user group). These groups must have identical names, in this example, saml_users.