Fortinet black logo

Administration Guide

Home FortiSASE Administration Guide

Enterprise mobility management

Enterprise mobility management

FortiClient on different platforms supports integration with enterprise mobility management or mobile device management software. You can use this software to onboard endpoints to successfully connect to and be managed by FortiSASE.

Configuring Microsoft Intune integration with FortiClient (iOS)

You can find details for configuring Microsoft Intune integration with FortiClient iOS in Configuring Microsoft Intune integration.

Configuring the FortiSASE invitation code

Since FortiSASE uses an invitation code instead of a direct IP address or hostname and port, ensure that cloud_invite_code is configured in one of the following locations in Intune:

  • In the Create app configuration policy window on the Settings tab
  • For an existing configuration policy, click Properties and check under Settings. In the example, you can see that cloud_invite_code is configured.

Deploying trusted certificates

When FortiSASFortiSASE security components are configured to use SSL deep inspection, then the certificate authority (CA) certificate is automatically installed on desktop FortiClient endpoints. However, for mobile endpoints such as Apple devices running FortiClient iOS, then enterprise mobility management software must be used to install such CA certificates.

You can find details on deploying a trusted root certificate such as the CA certificate configured on FortiSASE for SSL deep inspection in Trusted root certificate profiles for Microsoft Intune.

Previous
Next

Enterprise mobility management

FortiClient on different platforms supports integration with enterprise mobility management or mobile device management software. You can use this software to onboard endpoints to successfully connect to and be managed by FortiSASE.

Configuring Microsoft Intune integration with FortiClient (iOS)

You can find details for configuring Microsoft Intune integration with FortiClient iOS in Configuring Microsoft Intune integration.

Configuring the FortiSASE invitation code

Since FortiSASE uses an invitation code instead of a direct IP address or hostname and port, ensure that cloud_invite_code is configured in one of the following locations in Intune:

  • In the Create app configuration policy window on the Settings tab
  • For an existing configuration policy, click Properties and check under Settings. In the example, you can see that cloud_invite_code is configured.

Deploying trusted certificates

When FortiSASFortiSASE security components are configured to use SSL deep inspection, then the certificate authority (CA) certificate is automatically installed on desktop FortiClient endpoints. However, for mobile endpoints such as Apple devices running FortiClient iOS, then enterprise mobility management software must be used to install such CA certificates.

You can find details on deploying a trusted root certificate such as the CA certificate configured on FortiSASE for SSL deep inspection in Trusted root certificate profiles for Microsoft Intune.

Previous
Next