SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider

SAML 2.0 SP Single Sign On (SSO) - Service Provider allows users residing at a SAML 2.0 compliant Identity Provider to login to your Drupal website. We support all known IdPs –
Google Apps, ADFS, Azure AD, Okta, Salesforce, Centrify, Bitium, miniOrange IdP, OneLogin, Oracle Access Manager, Jboss Keycloak, OpenAM, Shibboleth 2, Shibboleth 3, Ping Federate, SimpleSAMLphp, Edugate, DUO, SecureAuth, RSA, IBM, WSO2, Feide, NetIQ Access Manager and many more..

SAML 2.0 SP Single Sign On (SSO) - Service Provider module acts as a SAML 2.0 Service Provider which can be configured to establish trust between the Drupal site and a SAML 2.0 compliant Identity Providers to securely authenticate the user to the Drupal site.

SAML 2.0 SP Single Sign On (SSO) - Service Provider module helps to secure Drupal site through force login on every attempt (In case you enable this feature) and provide features like Attribute Mapping & Group Mapping which helps to map users. Also, we provide customization in the module depending on the Client's requirements.

Our module can help you configure SAML based SSO with a Headless / Decoupled Drupal Website.
This module can also be used with our other modules like SAML IDP module. To know more, you can read this case study.

Know more Setup Guides Our unique case-studies

We also provide a separate module that enables Drupal to act as an Identity Provider. It supports authentication with Drupal, user management, session management, change passwords, etc. You can configure any service provider with your Drupal site with the help of this module. Contact us at drupalsupport@xecurify.com to inquire about our Drupal IDP module.

Dependencies

- NONE

Step-by-step guides to configure different Identity Providers (IdPs)

Free version features

• Login Using IDP Credentials – SAML SP helps login to your Drupal site using SAML 2.0 compliant Identity Providers.
• Unlimited Authentication – Unlimited Authentication with your SAML 2.0 compliant Identity Providers
• Automatic User Registration – The user will auto-register after login if the user is not already registered with your site.
• Upload IDP Metadata – SAML SP provides easy configuration with the Identity Provider by simply uploading the IDP metadata file/url.
• Basic Attribute Mapping – Feature to map Drupal user profile attributes like username and email to the attributes provided by your IDP.
• Basic Role Mapping – Select default role to assign to users on auto registration.
• Export Configuration – Download module configuration file to transfer your module configurations when you change your Drupal instance.
• Step-by-step Guides – SAML SP provides step-by-step guides for configuring the Identity Provider.

Upgraded version features – SEE ALL VERSIONS

• All the Free version features.
• SAML Single Logout(SLO) – Support for SAML Single Logout (Make sure your IdP also supports SLO)
• Auto-redirect to IDP – Auto-redirect to your IDP for authentication if an anonymous user tries to access the Drupal site’s login page.
• Advanced Attribute Mapping – Use this feature to map your IDP attributes to your Drupal site attributes like Username, Email, First Name, Last Name, Group/Role, and Display Name.
• Advanced Role Mapping – Use this feature to assign Drupal roles to your users based on the group/role sent by your IDP.
• Force Authentication – Use this feature if you want to force authentication to anonymous user before accessing the Drupal site ( entire site )
• Multiple SAML IDPs Support – We support the configuration of Multiple IDPs in the module to authenticate the different groups of users with different IDPs. You can give access to users by users to IDP mapping (which IDP uses to authenticate a user) is done based on the domain name in the user’s email. (This feature is with separate licensing. Contact us at info@xecurify.com to get licensing plans for this feature.)
• Integrated Windows Authentication – Support for Integrated Windows Authentication (With ADFS)
• Binding Type – Select HTTP-Post or HTTP-Redirect binding type to use for sending SAML Requests.
• Customize module depending upon requirement.
• If you are looking for an Identity Provider, you can try out miniOrange On-Premise IdP.

Website

Check out our website for other modules https://plugins.miniorange.com or Click here to see all our listed Drupal modules. For more support or info email us at info@xecurify.com or Contact us. You can also submit your query from the module’s configuration page.

Installation:

• Using Composer:

  1. composer require drupal/miniorange_saml
  2. Go to the Drupal site and run the update script using this URL {BaseURL}/update.php

• Using Drush:

  1. Download the module: drush dl miniorange_saml
  2. Install the module: drush en miniorange_saml
  3. Clear the cache: drush cr
  4. Go to the Drupal site and run the update script using this URL {BaseURL}/update.php

• Manual installation:

  1. Go to Extend menu on your Drupal admin console and click on Install new module.
  2. Install the Drupal SAML 2.0 Single Sign On – Service Provider module either by downloading the zip or from the URL of the package(tar/zip).
  3. Click on Enable newly added modules.
  4. Enable this module by checking the checkbox and click on install button.
  5. Configure the module at {BaseURL}/admin/config/people/miniorange_saml/idp_setup