Fortinet black logo

Administration Guide

Home FortiSASE Administration Guide

Configuring FortiAuthenticator Cloud - I

Configuring FortiAuthenticator Cloud - I

To create a remote OAuth server:
  1. In FortiAuthenticator Cloud, Go to Authentication > Remote Auth. Servers > OAUTH and select Create New.
  2. Enter a name for the remote OAuth server.
  3. In the OAuth source dropdown list, select Azure Directory.
  4. In the Client ID field, enter the Entra enterprise application ID that you saved previously.
  5. In the Client Key field, enter the Client secrets Value created previously.
  6. Select OK to add the remote OAuth server.
To partially configure the remote SAML server on FortiAuthenticator Cloud:
  1. In FortiAuthenticator Cloud, go to Authentication > Remote Auth. Servers > SAML, and click Create New. In the Create New Remote SAML Server page, configure the following:
    1. Select Proxy as the Type.
    2. For the Entity ID, click the dropdown menu and select the Azure identity provider (IdP) option.
    3. Under Single Logout, ensure Enable SAML single logout is checked.
    4. Copy these SAML fields:

      • Portal URL

      • Entity ID

      • ACS (login) URL

      • SLS (logout) URL

  2. Keep this page open in your web browser since you will continue configuring it after configuring Entra ID.

Previous
Next

Configuring FortiAuthenticator Cloud - I

To create a remote OAuth server:
  1. In FortiAuthenticator Cloud, Go to Authentication > Remote Auth. Servers > OAUTH and select Create New.
  2. Enter a name for the remote OAuth server.
  3. In the OAuth source dropdown list, select Azure Directory.
  4. In the Client ID field, enter the Entra enterprise application ID that you saved previously.
  5. In the Client Key field, enter the Client secrets Value created previously.
  6. Select OK to add the remote OAuth server.
To partially configure the remote SAML server on FortiAuthenticator Cloud:
  1. In FortiAuthenticator Cloud, go to Authentication > Remote Auth. Servers > SAML, and click Create New. In the Create New Remote SAML Server page, configure the following:
    1. Select Proxy as the Type.
    2. For the Entity ID, click the dropdown menu and select the Azure identity provider (IdP) option.
    3. Under Single Logout, ensure Enable SAML single logout is checked.
    4. Copy these SAML fields:

      • Portal URL

      • Entity ID

      • ACS (login) URL

      • SLS (logout) URL

  2. Keep this page open in your web browser since you will continue configuring it after configuring Entra ID.

Previous
Next