Fortinet black logo

SIA Agent-based Deployment Guide

Home FortiSASE SIA Agent-based Deployment Guide

Finding the group ID for SAML group matching

Finding the group ID for SAML group matching

Enable and configure SAML group matching if you only want to allow Microsoft Entra ID users of a certain group to authenticate. Otherwise, leave this setting disabled. You can define more granular groups when you configure user group settings.

To find the Entra ID Group ObjectId in Entra ID:
  1. In the left pane of the Azure portal (three horizontal lines), select Entra ID. Under Manage, select Groups.
  2. The default view shows all groups. Find the desired group and note the Object Id.

For details on creating a new security group, see Create a security group for the test user in Tutorial: Microsoft Entra SSO Integration with FortiGate SSL VPN.

You can find the full list of group claims in Configure group claims for applications by using Microsoft Entra ID.

Previous
Next

Finding the group ID for SAML group matching

Enable and configure SAML group matching if you only want to allow Microsoft Entra ID users of a certain group to authenticate. Otherwise, leave this setting disabled. You can define more granular groups when you configure user group settings.

To find the Entra ID Group ObjectId in Entra ID:
  1. In the left pane of the Azure portal (three horizontal lines), select Entra ID. Under Manage, select Groups.
  2. The default view shows all groups. Find the desired group and note the Object Id.

For details on creating a new security group, see Create a security group for the test user in Tutorial: Microsoft Entra SSO Integration with FortiGate SSL VPN.

You can find the full list of group claims in Configure group claims for applications by using Microsoft Entra ID.

Previous
Next