RFE: Fortinet SSO (SAML) support
I need to use a Fortinet SSL VPN for work, using SAML authentication. It works fine on the command line if I do a series of manual steps:
- open https://my-vpn-server.example.com:10443/remote/saml/start in a web browser
- log in by using username, password, and a TOTP token
- open dev tools and copy the SVPNCOOKIE
- run
sudo openconnect --protocol=fortinet --server=my-vpn-server.example.com:10443 --cookie="SVPNCOOKIE=<paste the value of the cookie>"
(there was a bug with --cookie-on-stdin
that would truncate the cookie, but it's been fixed upstream a while ago)
I would prefer to use Network Manager instead, however I don't see a way to ask for SAML authentication in the configuration GUI. (When I don't specify it, I get a dialog that asks for me username and password, and then rejects them with a 405 error from the server.)