Need Help? We are right here!
Ecwid SSO by miniOrange is a cloud-based Single Sign-On solution for Ecwid that allows Organization's or users to use same login credentials that they use cross there services and sites in order to access Ecwid account. Along with Ecwid, miniOrange also provides secure SSO access to other integrated apps configured with Ecwid. miniOrange Ecwid SSO can be easily configured with any of the Directory like Active Directory, LDAP or any of your directory in the cloud. Ecwid SSO solution helps you to integrate with any IDP (Identity Provider) of your choice ADFS, Azure AD, Okta, Onelogin, AWS Cognito, GSuite/Google Apps etc.
Ecwid users want a continuous and seamless access to their portal through their existing accounts. They don't wish for their users to have a separate set of credentials for logging in to Ecwid. Ecwid provides a way for its users to allow their users to log in to the platform seamlessly. But, an interface needs to be created which would allow this.
miniOrange provides an integrated SSO solution where a logged in user's existing session can be used to log the users into Ecwid by creating a valid JSON Web Token ( JWT ). Ecwid user is relieved from maintaining separate user credentials for its users.
As a result, miniOrange Single Sign-On (SSO) solution is implemented. Ecwid users can now login into Ecwid platform using their existing credentials.
miniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Shibboleth, Ping, Okta, OneLogin, KeyCloak), Databases (like MySQL, Maria DB, PostgreSQL) and many more.
|Custom Application Name||Choose appropriate name according to your choice.|
|Description||Add appropriate description according to your choice.|
|Redirect-URL||Endpoint of Ecwid, which will receive the JSON Web token and process it.|
|Policy Name||Add policy name according to your Preference.|
|Signature Algorithm||Choose RSA-SHA256|
miniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Okta, Shibboleth, Ping, OneLogin, KeyCloak), Databases (like MySQL, Maria DB, PostgreSQL) and many more. You can configure your existing directory/user store or add users in miniOrange.
1. Create User in miniOrange
2. Bulk Upload Users in miniOrange via Uploading CSV File.
Here's the list of the attributes and what it does when we enable it. You can enable/disable accordingly.
|Activate LDAP||All user authentications will be done with LDAP credentials if you Activate it|
|Sync users in miniOrange||Users will be created in miniOrange after authentication with LDAP|
|Fallback Authentication||If LDAP credentials fail then user will be authenticated through miniOrange|
|Allow users to change password||This allows your users to change their password. It updates the new credentials in your LDAP server|
|Enable administrator login||On enabling this, your miniOrange Administrator login authenticates using your LDAP server|
|Show IdP to users||If you enable this option, this IdP will be visible to users|
|Send Configured Attributes||If you enable this option, then only the attributes configured below will be sent in attributes at the time of login|
Refer our guide to setup LDAPS on windows server.
miniOrange integrates with various external user sources such as directories, identity providers, and etc.
Our Other Identity & Access Management Products