Skip to content

bartosz-antosik/forti-vpn-helper

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
README.md
README.md
 
 
forti-vpn
forti-vpn
 
 

Repository files navigation

Fortigate VPN with SAML SSO helper script

A helper script to integrate start/stop of Fortigate VPN with SAML single sign-on.

Prerequisites

These two binaries, compiled for appropriate platform, are required to use the script:

openfortivpn version 1.18 or newer (--cookie option is required).

openfortivpn-webview version 1.0.1 or newer, or fortitude-webview which works under WSL2.

Configuration

These variables, located inside the forti-vpn script, have to be set to provide locations of the binary utilities used by the script:

VPN_LOGIN=/opt/openfortivpn-webview/openfortivpn-webview
VPN_TOOL=/usr/local/bin/openfortivpn

Another three variables have to be set to provide appropriate URL, realm and routes for the VPN that the script is going to be used with. These can also be set in the configuration file forti-vpn.conf located (by default) in /etc directory:

FORTIVPN_URL={vpn.host:port}
FORTIVPN_REALM={realm}
FORTIVPN_ROUTES="123.0.0.4/16 123.0.0.5/16"

if FORTIVPN_ROUTES is left empty no routes are established by the script and default routes provisioned by the connection server are used.

Usage

To start the VPN connection:

forti-vpn up

To finish the VPN connection:

forti-vpn down

To check status of the VPN connection:

forti-vpn status

About

Fortigate VPN with SAML SSO helper script

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages