Feature Explorer AI 
×
You can authenticate via SAML-based access profiles using your organization's identity provider (IdP) for firewall authentication. This method generates SAML requests and processes SAML assertions, enhancing the security and flexibility of user authentication. The integration supports single sign-on (SSO) using HTTP Redirect and HTTP POST SAML bindings, providing benefits such as improved security, and reduced password management. Use the command access-profile profile-name under set security policies from-zone zone-name to-zone zone-name policy policy-name then permit firewall-authentication user-firewall to enable SAML based captive portal authentication.
Use the command set access firewall authentication user-firewall default-ssl-termination-profile default-ssl-termination-profile to apply a default SSL termination profile. Enable this configuration to enforce security for all access profiles.
| Product / Application | Software | Introduced Release |
|---|---|---|
| vSRX | Junos OS | 25.2R1 |
| cSRX | Junos OS | 25.2R1 |
| SRX300 | Junos OS | 25.2R1 |
| SRX320 | Junos OS | 25.2R1 |
| SRX340 | Junos OS | 25.2R1 |
| SRX345 | Junos OS | 25.2R1 |
| SRX380 | Junos OS | 25.2R1 |
| SRX1500 | Junos OS | 25.2R1 |
| SRX1600 | Junos OS | 25.2R1 |
| SRX2300 | Junos OS | 25.2R1 |
| SRX4100 | Junos OS | 25.2R1 |
| SRX4120 | Junos OS | 25.2R1 |
| SRX4200 | Junos OS | 25.2R1 |
| SRX4300 | Junos OS | 25.2R1 |
| SRX4600 | Junos OS | 25.2R1 |
| SRX4700 | Junos OS | 25.2R1 |
| SRX5400 | Junos OS | 25.2R1 |
| SRX5600 | Junos OS | 25.2R1 |
| SRX5800 | Junos OS | 25.2R1 |