We are trying to configure our Drupal 8 instance for SAML to integrate with CA SiteMinder for Single Sign On.

Can anyone please assist with precise step by step instructions to perform this integration?

Many Thanks !!

John

Comments

Chiran’s picture

Hi morjo02,

This is something very interesting integration, I can help you in setup this from CA Single Sign-On side if you're CA SSO Admin.
If you're Drupal application developer or app owner, then please follow the below link. which guides you to configure SAML in Drupal and export Drupal app SP Metadata.
Follow the steps below to setup this integration,
1. Configure SAML in Drupal using simpleSAMLphp module & activate it. look at this https://www.drupal.org/project/simplesamlphp_auth
2. Configure SimpleSAMLphp Service Provider (follow this link https://simplesamlphp.org/docs/stable/simplesamlphp-sp)
3. Export the Drupal SP Metadata and share it CA SSO Administrator(Metadata should contain Drupal certificate(self-signed also works) which can be used as signing SAML request)
4. Now CA SSO Admin create SP Remote Entity by imports Drupal SP Metadata (configure Drupal as SP in CA SSO)
5. Creates the CA SSO IdP Entity(Should contain IdP Certificate which used to sign SAML responses)
6. Creates Partnership using CA SSO IdP and Drupal SP entities(Has to check with Drupal team to which are the user attributes app expecting)
7. Activate the Partnership and test the partnership using SSO Service URL in a partnership which is IdP initiated test(Not required of SAML request in idp intiated)
6. Export the CA SSO IdP Metadata and share it with the Drupal Developer.
7. Now Drupal Developer need to import it and configure as IdP
8. And then test the application.

Regards,
Chiranjeevi