Configuring SSO on FortiMail
This section configures generates a certificate and configures the secure connection between Azure and FortiMail so that the FortiMail can use SSO to authenticate webmail users.
-
In FortiMail, go to System > Customization > Single Sign On. Enable SSO for both Webmail and Admin.
-
From the Azure portal, under SAML Signing Certificate, copy the App Federation Metadata URL. Then on FortiMail, paste it into the URL field under Identity Provider (IDP) Metadata.
-
Click Retrieve from URL. This will populate the IdP metadata Certificate field.
-
Select Apply to enable and finish configuring SSO authentication on the FortiMail unit.
Users logging into FortiMail can now click Single Sign On to be redirected to Azure for authentication.