Enhance your FortiGate security with SSO integration
Single Sign-On (SSO) simplifies user authentication, allowing users to access multiple systems with one set of credentials. This guide will demonstrate how to integrate SSO into FortiGate using Security Fabric (SAML) with Identity, an identity management solution. This guide is suitable for IT administrators and tech-savvy individuals.
Why SSO with FortiGate?
SSO in FortiGate offers benefits such as:
- Streamlined Access: Single login for multiple applications.
- Improved Security: Centralized authentication supports multi-factor authentication (MFA), enhancing security.
- Simplified Management: Easier user access control from a single platform.
Prerequisites
Before you start, ensure you have:
- An active Identity administrator account.
- FortiGate with administrative access.
- A basic understanding of SAML.
Step 1: Access the Identity Provider Server Profile
- Log in to the Identity Admin Console with admin credentials.
- Navigate to SAML Configuration: Go to "SAML IdP Profile" under SAML 2.0.
- View Identity Provider Server Profile: Keep this information handy as you'll need it to configure FortiGate.
Step 2: Configure Identity as the Identity Provider
- Log in to FortiGate with admin credentials
- Import a new Remote Certificate (Identity Certificate) under System > Certificates
- Navigate to Security Fabric > Fabric Connectors
- Edit the Security Fabric Setup and click on Single Sign On Settings.
- Input Identity's details such as the SSO URL, Entity ID, and map the imported certificate.
Step 3: Configure FortiGate as the Service Provider
- Access the Identity Admin Console: Navigate to "Service Providers" under "SAML 2.0".
- Add FortiGate as a Service Provider: Enter details like the Entity ID and Assertion Consumer URI found in FortiGate's SSO settings.
- Map an additional claim i.e. Username
- Save the new service provider
Step 4: Test the Integration
- Initiate the SSO flow from FortiGate login page
- Click on Sign in with Security Fabric
- Enter your Identity credentials, which has a corresponding user in FortiGate
- On successful authentication, you will be navigated to the FortiGate dashboard
Video Tutorial
Watch our detailed video tutorial on YouTube, guiding you through each step of the SSO setup process in FortiGate using Identity.
Conclusion
Integrating FortiGate with Identity via SAML secures your authentication processes and simplifies user management, providing a streamlined user experience. Follow these steps to ensure a successful SSO integration.