SAML Single Sign On Plugin
- miniOrange SAML SSO Plugin acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and various SAML 2.0 supported Identity Providers to securely authenticate the user to the Joomla site.
- We Support plethora of SAML 2.0 Compliant Identity Providers like Shibboleth, SimpleSamlPhp, Okta, ADFS, Salesforce, OpenAM, Centrify, Ping, IBM Tivoli Identity Manager, RSA FIM (Federated Identity Manager), Oracle Identity Manager, miniOrange etc.
- Easily Configure the Identity Provider by providing just the SAML login URL, IDP Entity ID and Certificate.
- Use the Attribute Mapping feature to map joomla user profile attributes to your IdP attributes.
- Use the Role Mapping feature to assign roles in your IdP to your joomla users during auto registration.
- Automatic user registration after login if the user is not already registered with your site.
- Backend and Frontend Login Supported for Super User. If user is Super User, the user will be logged into both frontend and backend of the site.
No need to sign in again in the admin panel (backend) for Super User, once he is logged into frontend of the site via Single Sign On. [Premium Feature]
- We provide active support. If you require any Single Sign On application or need any help with installing this plugin, please feel free to email us at firstname.lastname@example.org or Contact us.
- We have thousands of happy customers using this, click here to have a look.
In order to setup SAML Single Sign On(SSO), you need to follow these 4 steps:
- Download the plugin from miniOrange and Install it in Joomla.
- Configure Single Sign-On Settings in your Idp.
- Configuring the plugin.
- Adding SAML login link in Joomla.
Follow the Step-by-Step Guide given below for Joomla Single Sign On (SSO) for SAML.
Step 1: Download the plugin from miniOrange and Install it in Joomla
- You can download the plugin zip file from the download link given at top of this page.
- Login as administrator in Joomla.
- Go to Extensions->Manage->Install.
Here you have three options to choose from to install your extension. In most cases, you should go with the 'Upload Package File' option. The three options are:
Choose miniOrange Joomla plugin file to install.
Install the plugin.
- Upload Package File
- Install from Directory
- Install from URL
Step 2: Register/Login into miniOrange account.
- In My Account tab, under 'Register with miniOrange', enter your email id and password to create an account.
If an account already exists, you will be asked to login into your account.
Step 3: Configure Single Sign-On Settings in your Idp.
- In administrator interface, go to Components->Miniorange Saml Single Sign-On
- Register/Login in Miniorange account.
- Go to 'Description' tab.
Here you will find all the relevant details that you would need to configure your IDP.
Step 4: Configuring the plugin
After the Idp Settings are done. You can go to Attribute Mapping Tab to map user attributes from idp to your joomla user attributes.
Go to Group Mapping Tab if you want to map groups from your idp to Joomla user group when auto creating the user in joomla.
- In the Joomla admin interface, go to Extensions->Manage->Manage.
Here you can enable and disable Joomla plugins and edit plugin details and options. It is also useful for quickly enabling or disabling multiple plugins at the same time.
- Search for miniorange in plugins.
- Enable all the extensions of the plugin.
- Go to Components->Miniorange SAML Single Sign-On
- Click on 'Identity Provider Settings' tab.
- Copy the following data from your Idp setup:
1. Idp Entity ID
2. Saml Login Url
3. X.509 Certificate
and save it here in the plugin Identity Provider Settings.
X.509 Certificate -
- Open your Idp certificate in a notepad and copy its contents here. For Example-
Step 5: Adding SAML login link in Joomla
The SAML login link can be added to Joomla main login form as follows:
- Login as administrator in Joomla.
- Go to Components->Miniorange SAML Single Sign-On.
- Click on 'SSO Login Settings' tab.
Here you will get a link which you can assign to a button on your login screen.
- When you click on the link you will be redirected to your Idp login page.
- Login to your idp with username / password. Once you are authenticated, you will be logged in to joomla site.
miniOrange supports both SAML based Single Sign On into Joomla as well as OpenID connect based Single Sign On. This guide explains SAML based Single Sign On into Joomla.
In SAML SSO, miniOrange supports both IdP (Identity Provider) and SP (Service Provider) initiated Single Sign On (SSO) for Joomla.
IdP Initiated Single Sign On (SSO)
In IdP Initiated Login, SAML request is initiated from any Third Party Identity Provider like Shibboleth, SimpleSaml, Salesforce, Okta, ADFS, etc.