miniOrange provides a ready to use solution for Wordpress. This solution ensures that you are ready to roll out secure access to Wordpress for your employees using ADFS within minutes.
Follow the Step-by-Step Guide given below for Wordpress Single Sign On (SSO) using ADFS as IdP
STEP 1: Configuring ADFS as IdP
In ADFS, click on Add Relying party Trust. Then click on Start.
In Select Data Source: Select Import data about the relying party published online or on a local network and enter the metadata URL provided in the Configure IDP tab of the plugin. Click Next.
In Specify Display name: Enter Display name. Click Next.
In Configure Multi-factor Authentication Now, select I do not want to configure multi factor authentication settings for this relying party trust. Click Next.
In Choose Issuance Authorization Rules, select Permit all users to access this relying party. Click Next.
In Ready to Add Trusts, select click Next.
Check Open the Edit Claim Rules dialog and click close. Click Add rule and then select Send LDAP Attributes as Claims. Enter the following:
Claim rule name:
Outgoing Claim Type:
STEP 2: Configuring Wordpress as SP
In miniOrange SAML plugin, go to Service Provider tab and enter the following details:
Identity provider Name:
SAML Login URL:
IdP Entity ID or Issuer:
Paste the certificate value you copied from the Metadata file.
In miniOrange SAML plugin, go to Attribute/RoleMapping tab. Enter the following values:
Name of the username attribute from IdP (Keep NameID by default)
Name of the email attribute from IdP (Keep NameID by default)
Name of the firstname attribute from IdP
Name of the lastname attribute from IdP
Name of the Role attribute from IdP
You can check the Test Configuration Results to get a better idea of which values to map here.
Under the Role Mapping section, configure which GROUP value coming in the SAML response needs to be mapped to which role in WordPress. The Group value coming in the SAML response will be mapped to the Role assigned here and the user will be assigned that role in WordPress.
Go to SSO Login Settings tab. Enable auto-redirect to IDP using Redirect to IdP if user not logged in option.