Fortinet black logo

Administration Guide

Home FortiPortal 7.0.0 Administration Guide
7.0.0
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.0.15
6.0.14
6.0.13
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.3.8
5.3.7
5.3.6
5.3.5
5.3.4
5.3.3
5.3.2
5.3.0
5.2.0
4.1.0
4.0.3
4.0.2
4.0.1
4.0.0

Authentication

Authentication

The Authentication tab allows organizations to use separate SSO authentication servers for improved security.

To configure authentication settings for an organization:
  1. When creating or editing an Organization, go to Authentication.
  2. In the Authentication tab, enter the following information:

    Settings

    Guidelines

    Override Authentication Settings

    Enable to override authentication settings set up in Authentication.

    Note: This option is disabled by default.

    Enable Two-factor Authentication

    Enable two-factor authentication for the organization.

    See Enable Two-factor Authentication.

    SSO IDP Entity URL

    Required. IDP Entity URL (ID) or URN for SAML provided by IDP server.

    IDP Sign On Service Endpoint URL

    Required. Endpoint URL for IDP (Post) provided by IDP server.

    IDP Sign On Service Redirect Endpoint URL

    Required. Endpoint URL for IDP (Redirect) provided by IDP server.

    IDP Logout Service Endpoint

    Required. IDP logout URL provided by IDP.

    SSO Certificate

    Required. Certificate provided by IDP used by SP to decrypt the signed response.

    View/Change SSO Roles

    Select to map the SSO roles with the local roles. See SSO Roles.
  3. Click Save.

Click the Reset button to reset entries in the table.
Previous
Next

Authentication

The Authentication tab allows organizations to use separate SSO authentication servers for improved security.

To configure authentication settings for an organization:
  1. When creating or editing an Organization, go to Authentication.
  2. In the Authentication tab, enter the following information:

    Settings

    Guidelines

    Override Authentication Settings

    Enable to override authentication settings set up in Authentication.

    Note: This option is disabled by default.

    Enable Two-factor Authentication

    Enable two-factor authentication for the organization.

    See Enable Two-factor Authentication.

    SSO IDP Entity URL

    Required. IDP Entity URL (ID) or URN for SAML provided by IDP server.

    IDP Sign On Service Endpoint URL

    Required. Endpoint URL for IDP (Post) provided by IDP server.

    IDP Sign On Service Redirect Endpoint URL

    Required. Endpoint URL for IDP (Redirect) provided by IDP server.

    IDP Logout Service Endpoint

    Required. IDP logout URL provided by IDP.

    SSO Certificate

    Required. Certificate provided by IDP used by SP to decrypt the signed response.

    View/Change SSO Roles

    Select to map the SSO roles with the local roles. See SSO Roles.
  3. Click Save.

Click the Reset button to reset entries in the table.
Previous
Next