Need Help? We are right here!
BigCommerce + Azure AD solution by miniOrange allows a seamless Single Sign-On solution for BigCommerce. Since BigCommerce doesn’t support SSO via Azure, miniOrange provides an interface to generate JWT token and log users into BigCommerce using their Azure AD credentials without migrating the users from their existing directory.
miniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Shibboleth, Ping, Okta, OneLogin, KeyCloak), Databases (like MySQL, Maria DB, PostgreSQL) and many more.
|Custom Application Name||Choose appropriate name according to your choice.|
|Description||Add appropriate description according to your choice.|
|Redirect-URL||Front-end URL, e.g. https://my-store.mybigcommerce.com/login/token/|
|Policy Name||Add policy name according to your Preference.|
|Attribute Name||Attribute Value|
|store_hash||You got in this step.|
|redirect_to||Endpoint where you wish to redirect the user to after sso. For e.g. /account.php|
3.a. Configuring miniOrange as Service Provider (SP) in Azure AD
|Identifier (Entity ID)||Entity ID or Issuer copied from the miniOrange metadata section mentioned in the previous step.|
|Reply URL (Assertion Consumer Service URL)||ACS URL copied from the miniOrange metadata section mentioned in the previous step.|
|Logout URL||Single Logout URL copied from the miniOrange metadata section mentioned in the previous step.|
3.b. User/Group Assignment
3.c. Configure Azure AD as Identity Provider (IDP) in miniOrange
|Domain Mapping||Enable to redirect domain specific user to a specific IDP|
|Show IdP to Users||Enable this option if you wish to show this IDP as a button on the login page. Eg : Login with Azure AD.|
|Send Configured Attributes||Enable this option if you wish to send user attributes from the IDP to BigCommerce while SSO.|
3.d. Test IDP Connection
Yes, our scripts are completely customizable and you can restrict page access based on memberships, groups, company . domain or any other custom attribute of your choice.
Our Other Identity & Access Management Products