Versions Compared

Old Version 20

changes.mady.by.user Adam Darwin

Saved on

compared with

New Version Current

changes.mady.by.user Adam Darwin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Section
bordertrue


Column

In the SAML SSO Window Specify the SP address.  This is essentially the URL or the IP address of the Fortinet UI you wish to log onto.


Expand SP details


Column
width50%


Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

 

Log back in to the DualShield Admin Console

...

bordertrue
Column

Go to SSO>Service Providers

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

Click on Image Removed on the top right.

...

bordertrue
Column

Fill in the details as per screenshot on right and make sure you select SAML 2.0(Without Metadata) as Type.

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue

...

Copy and Paste the Entity ID, ACS and Logout URL  from the SP details on the Fortinet UI (see above)

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Click on Attributes at the top

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue

...

Click Create

Use the following Values:

...

Click Save

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Click on General Settings at the top

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Set NameID Format to Map to the following Attribute

Select Username in the Attribute dropdown

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue

...

The completed Service Provider dialogue box will look like this:

Click Save

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Go to SSO>SSO Servers

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Select the drop-down menu corresponding to the SSO server you will be using and click on View

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Click on Display Metadata at the bottom

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

...

bordertrue
Column

Search through the metadata for the Entity ID, Single Sign-On URL and Single Logout URL

...

width50%
Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed

Image Removed

...

bordertrue

...

Go back to the Fortinet Ui to IdP Settings.  Set the IdP type to Custom.

Select the Remote Certificate you uploaded earlier (Refer to Import IdP Certificate onto Fortinet)

Copy and out Entity ID, Single Sign-On URL and Single Logout URL from the IdP metadata on Dualshield and past them into the corresponding fields under IdP Settings on Fortinet

Click OK

...

width50%

...

borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Image Removed