Advertising sustains the DA. Ads are hidden for members. Join today

On this page

Set up SSO with Salesforce

Last updated on
25 February 2026

This document will help you in configuring SAML Single Sign-On (SSO) between Salesforce and your Drupal site. By following this guide, you can enable users to log in to your Drupal site using their Salesforce credentials, making it an Identity Provider.

The Drupal SAML SSO - Service Provider module is compatible with Drupal 7, Drupal 8, Drupal 9, Drupal 10, and Drupal 11.

 Download  Know more

Prerequisite:

Setup Video: 

Setup Video for integration between Drupal and Salesforce

Drupal SAML SP Metadata:

  • After installing the module on your Drupal site, go to the Administration menu and navigate to Configuration → People → miniOrange SAML SP (/admin/config/people/miniorange_saml/idp_setup). 

  • Copy the SP Entity ID/Issuer and SP ACS URL from the Service Provider Metadata tab and keep them handy. These details are required to configure Salesforce as an IdP.

    Drupal SAML SP - Copy SP Entity ID and ACS URL

Configure SAML Single Sign-On Application in Salesforce:

  • Login into your Salesforce account.

  • In the top right corner, click on the setting Icon. Expand it and click on Setup.

    Salesforce-Single-Sign-On-navigate-to-setting-icon-then-click-on-setup

  • Navigate to the Quick Find box from the left side.

  • Enter Identity Provider, then select Identity Provider.

    Salesforce-Single-Sign-On-Search-for-Identity-Provider

  • Click on Enable Identity Provider button.

    Salesforce-Single-Sign-On-Enable-Identity-Provider.

  • Then, click on Save button to proceed.

    Salesforce-Single-Sign-On-Click-on-Save-button

  • Click the Download Metadata button and keep the downloaded file handy. This file will be required to configure Drupal as a SAML Service Provider (SP).

  • Now, click on the Service Providers are now created via Connected Apps. Click here link. You will be redirected to the New Connected App configuration page.

    Salesforce-Single-Sign-On-Click-on-Download-Metadata-button

  • On the New Connected App, provide the following information.

    • In Basic Information:
      • Enter the name of the application in Connected App Name text field.
      • After you enter the Connected App Name the API Name will be automatically generated.

      • Enter your current email address in the Contact Email text field.

        Salesforce-Single-Sign-On-enter-basic-profile-info

    • Under the Web App Settings section, check the Enable SAML checkbox and enter the required information in the corresponding fields from the Service Provider Metadata tab of the module.

      Salesforce Field Service Provider Information (Drupal)
      Entity ID SP Entity ID / Issuer
      ACS URL SP ACS URL
      Subject Type Username
      Name ID Format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent

      Salesforce-Single-Sign-On-Web-App-Settings

  • Scroll down and click on the Save button to save your configuration.

Assign a profile to your Salesforce Application:

  • Navigate to the Quick Find box from the left navigation panel.
  • Search for Manage Connected Apps, then select Manage Connected Apps.

  • Select the application that you have created on Salesforce. For example, Drupal.

    Salesforce-Single-Sign-On-Search-for-Manage-Connected-Apps

  • Scroll down to Profiles and click on the Manage Profiles button.

    Salesforce-Single-Sign-On-Profile-Manage-Profiles

  • Select the profiles you want to give access to login through this app. Click on the Save button.

    Salesforce-Single-Sign-On-Assign-profile

The profile has been successfully assigned to your application.

Configure Drupal as SAML Service Provider:

  • Go to your Drupal site. Navigate to the Service Provider Setup tab of the module and click on the Upload IdP Metadata.

  • In the Upload Metadata File field, select the XML metadata file you downloaded from Salesforce, and then click the Upload File button.

    Drupal-SAML-Single-Sign-On-Upload-Salesforce-IdP-metadata

    If you need to update your Identity Provider Name, follow these steps:

    • Under Action, select the Edit link.
    • Enter Salesforce as the name of the Application in the Identity Provider Name text field.
    • After you have updated your Identity Provider Name, scroll to the bottom and click on the Save Configuration button.

  • After successfully saving the configurations, click on the Test link to test the connection between Drupal and Salesforce.

    Drupal-SAML-Single-Sign-On-Click-on-Test-link-to-verify-the-connection

  • On the Test Configuration pop-up, if you don’t have an active session in the same browser, you will be prompted to sign in to Salesforce. After successfully logging in, a list of attributes received from Salesforce will be displayed.

  • Scroll down and click on the Done button.

    Drupal-and-Salesforce-Received-Attribute

Congratulations! You have successfully configured Salesforce as the identity provider and Drupal as the Service Provider.

If you face any issues in test configuration, you can reach out to us at drupalsupport@xecurify.com with a screenshot of the test configuration window.

How does SAML SSO login work?

  • Open a new browser/private window and navigate to the Drupal site login page.
  • For SP-initiated SSO on your Drupal, click on the Login using Identity Provider (Salesforce) link.

  • You will be redirected to the Salesforce login page, where users can enter their Salesforce credentials. Once successfully logged in, Salesforce users will be able to access your Drupal site within seconds.

Request a Demo

Explore all the features the module has to offer in a sandbox environment.

Go to Sandbox

Contact our 24*7 support team

Feel free to reach out to our Drupal experts if you need any sort of assistance in setting up SAML Single Sign-On (SSO) on your Drupal site.   

 Get In Touch With Us Join Our Slack Channel

back to top Back to top

Help improve this page

Page status: No known problems

You can: