Configuring SAML settings for the FortiSASE application in Azure

In Basic SAML Configuration, enter the values that you copied in the FortiAuthenticator Cloud Remote SAML Server in these fields:

Microsoft Entra ID > Basic SAML Configuration	FortiAuthenticator Cloud > Edit Remote SAML Server
Identifier (Entity ID)	Entity ID
Reply URL (ACS URL)	ACS (login) URL
Sign on URL	Portal URL
Logout URL	SLS (logout) URL

While still in the SAML-based Sign-on page for the enterprise application you created, in the SAML certificates box, do the following:

Download the Certificate (Base64) by clicking Download and selecting a file location for downloading the certificate file.
Download the Federation Metadata XML by clicking Download and selecting a file location for downloading the XML file.

To configure SAML settings for the FortiSASE application in Azure:

Log into the Azure portal.

Go to Microsoft Entra ID > Enterprise applications.

Select the enterprise application you created previously.

Go to Set up single sign on.

For the SSO method, select SAML.

In Basic SAML Configuration, enter the values that you copied in the FortiAuthenticator Cloud Remote SAML Server in these fields:

Microsoft Entra ID > Basic SAML Configuration	FortiAuthenticator Cloud > Edit Remote SAML Server
Identifier (Entity ID)	Entity ID
Reply URL (ACS URL)	ACS (login) URL
Sign on URL	Portal URL
Logout URL	SLS (logout) URL

Click Save and click X to close the window.

To collect SAML IdP URL information:

While still in the SAML-based Sign-on page for the enterprise application you created, in the SAML certificates box, do the following:

Download the Certificate (Base64) by clicking Download and selecting a file location for downloading the certificate file.

Download the Federation Metadata XML by clicking Download and selecting a file location for downloading the XML file.