Follow the steps below to configure single sign-on with Google Workspace.
- Log in to Google Workspace admin account (https://admin.google.com)
- Go to Apps > Web and mobile apps
- Click on Add app, then select Add custom SAML app
- Name the app "Fortinet Security Awareness and Training Service" then click Continue
- Click Continue again
- In your Fortinet app, copy the ACS URL, then paste the value in the ACS URL field in Google
- Then copy the SP Entity ID URL from Fortinet, and paste the value in the ‘Entity ID’ field in Google
- Start URL is not required
- Select the Name ID format dropdown and select Email
- Ensure that the Name ID field is displaying Basic Information > Primary email
- Click Continue
- Add attribute mappings and edit them as shown in the screenshot below
- Click Finish
- On the home page for the new custom app, click on Download Metadata
- Under Option 1, click on Download Metadata. This will now download an XML metadata file
- In your Fortinet Authentication settings, under Step 3, click the radio button for XML File
- Drag and drop the downloaded ‘GoogleIDPMetadata.xml’ file
- Click on Save Changes
NOTE: In Google, you may need to enable user access to the new app. This can be done by going to “User access” and enabling access for all users.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article