Configuring FortiAuthenticator Cloud - III

Go to the open web browser and continue configuring Edit SAML Service Provider in FortiAuthenticator Cloud.
In the SP Metadata pane, enter the SP information from FortiSASE, which you will use as the SAML SP:
FortiSASE > Configuration > VPN User SSO FortiAuthenticator Cloud > Edit SAML Service Provider
Entity ID SP entity ID
ACS URL SP ACS (login) URL
SLS URL SP SLS (logout) URL
In Assertion Attribute Configuration, configure the following:
1. Select Username from the Subject NameID dropdown list.
2. Select urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified in Format.
In Assertion Attributes, select Add Assertion Attribute and add the following attributes:
1. SAML attribute: username
  User attribute: SAML username
2. SAML attribute: groups
  User attribute: SAML group membership
Click OK to save changes.

To fully configure a SAML SP entry for FortiSASE in FortiAuthenticator Cloud:

Go to the open web browser and continue configuring Edit SAML Service Provider in FortiAuthenticator Cloud.

In the SP Metadata pane, enter the SP information from FortiSASE, which you will use as the SAML SP:

FortiSASE > Configuration > VPN User SSO	FortiAuthenticator Cloud > Edit SAML Service Provider
Entity ID	SP entity ID
ACS URL	SP ACS (login) URL
SLS URL	SP SLS (logout) URL

In Assertion Attribute Configuration, configure the following:

In Assertion Attributes, select Add Assertion Attribute and add the following attributes:

Click OK to save changes.