Hello there!

Need Help? We are right here!

support
miniOrange Email Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

================================================== -->
Single Sign On for nopCommerce
miniOrange provides a ready to use Single Sign-On (SSO) solution for nopCommerce. This solution ensures that you are ready to roll out secure access to nopCommerce to your employees within minutes.

        Setup guide contact us

nopCommerce


The nopCommerce Single Sign-On (SSO) solution provides SAML Single Sign-On (SSO) capability to your nopCommerce site, converting it to a SAML compliant Service Provider which can be configured with any SAML compliant Identity Provider. nopCommerce SAML SP Single Sign On (SSO) allows SSO login with Azure AD, Azure AD B2C, Keycloak, ADFS, Okta, Shibboleth, Salesforce, GSuite / Google Apps, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ and all SAML 2.0 capable Identity Providers. Contact us to know more about our Service Provider plugin which lets users login into nopCommerce with an any SAML 2.0 compliant IDP.

nopCommerce As Service Provider Use Case

You can enable the SAML SSO login for your nopCommerce site using nopCommerce SAML Single Sign-On (SSO) plugin which can be integrated with any SAML 2.0 compliant identity provider. When a user requests access for a resource, nopCommerce SAML SSO plugin sends a SAML authentication request to your SAML 2.0 IdP and the user has to login with their identity provider's account. On successful authentication, the user is provided access to the nopCommerce resources.

nopcommerce Single Sign On (SSO) service provider workflow
Workflow:

1. An unknown user tries to access nopCommerce resources.

2. nopCommerce SAML Single Sign-On (SSO) plugin creates a SAML authentication Request and sends it to the configured Identity Provider. The user     is prompted to log in with their Identity Provider account.

3. The SAML Identity Provider sends back a SAML Response to the application. This response contains the user’s information as well as the     authentication status, based on which the user is given access to the resource.

4. Upon successful authentication, the user is given access to the site.


Benefits

Single Sign On

Easy and seamless access to all resources. Single Sign On (SSO) into your nopCommerce site via any existing SAML 2.0 Identity Provider (IdP).

Easy Configuration

Easily configured with any Identity Provider by providing just the Issuer, SSO URL / Provider Login URL & SAML X509 certificate.


More Secure

Make user login more secure with the support for signed and encrypted SAML responses.


User Auto-Registration

Users will be auto-created in nopCommerce after SSO.


SAML Single Logout

Allows a user to logout from all server sessions established via SAML SSO by initiating the logout process once.


Attribute Mapping

Offers you to map the attributes from your IdP to your nopCommerce site.


Role Mapping

Map your Identity Provider roles to your nopCommerce site roles and restrict resources to specific roles.


Custom Certificate

Add your own custom X.509 Certificate for sending signed SAML Request and verification of signed SAML Response.


Auto-sync IdP Configuration from metadata

Keep your IDP SAML Configuration and Certificates updated and in sync.


Federation’s Support

Allows users to Single Sign On into the site via their institution that is affiliated with InCommon Federation.


Follow the Step-by-Step Guide to enable nopCommerce SAML Plugin

Step 1: Download and install nopCommerce SAML Plugin

    A) Download from nopCommerce Dashboard

  • To download the plugin zip, login as admin into your nopCommerce store. In the admin dashboard, go to Configuration Tab > All Plugins and Themes or search for All Plugins and Themes in the Admin search bar.
  • Search for the SAML Single Sign-On (SSO) - miniOrange plugin and click the Download button to get the zip.
  • nopcommerce Single Sign On (SSO) service provider install plugin

    B) From nopCommerce marketplace

  • You can download the plugin zip file from nopCommerce store - SAML Single Sign-On (SSO) - miniOrange - nopCommerce
  • To install the plugin, login as admin into your nopCommerce website. In the admin dashboard, go to Configuration Tab >> Local plugins.
  • On the top right corner of the page select the Upload plugin or theme button to upload the downloaded plugin zip. Follow the instructions further to install the plugin.

Step 2: Configure your Identity Provider

  • For SP metadata, use the SP metadata URL or download the SP metadata as a .xml file and upload it at your IdP end. You can find both these options under the Service Provider Metadata tab.
  • nopcommerce Single Sign On (SSO) service provider spmetadata

  • Alternatively, you can manually add the SP Entity ID and ACS URL from Service Provider metadata tab in the plugin to your IdP configurations.
  • nopcommerce Single Sign On (SSO) service provider sptable

Step 3: Configure your Service Provider

There are two methods to achieve this:

  • To upload IdP's metadata, you can use the Upload IdP metadata button, if you have the IdP metadata URL or the IdP metadata .xml file.
  • nopcommerce Single Sign On (SSO) service provider uploadidpmetadata

  • Alternatively, you can copy the IDP Entity ID and Single Sign-On Url values from the IdP and fill them up under the Identity Provider Settings tab.
  • nopcommerce Single Sign On (SSO) service provider idpsettings

Step 4: Test Configuration

  • Click the Test Configuration button to verify if you have configured the plugin correctly.
  • On successful configuration, you will get Attribute Name and Attribute Values in Test Configuration window.
  • nopcommerce Single Sign On (SSO) service provider testconfig

Step 5: Attribute Mapping

  • Map Attribute Names provided by your IdP with your store attributes, under Attribute/Role Mapping tab.
  • Click on Save button.
  • nopcommerce Single Sign On (SSO) service provider attrmappings

Step 6: Enabling SSO in your nopCommerce store

  • Under the Redirection & SSO link tab, use the URL labeled as Your Store SSO Link in your store to initiate the SSO.
  • Please make sure the Enable SSO checkbox is enabled under the Identity Provider Tab.
  • nopcommerce Single Sign On (SSO) service provider addsso

miniOrange Identity Management Features

  • Single Sign-On

    miniOrange Single Sign-On (SSO) Solution provides easy and seamless access to all enterprise resources with one set of credentials. miniOrange also provides secure authentication by establishing a trust relationship between the Service Provider and Identity Provider. miniOrange Single Sign-On supports SSO to any type of device or application whether they are in the cloud or on-premise. Learn More

  • Multi-factor Authentication

    Secure your application from password theft using multi-factor authentication methods with 15+ authentication types provided by miniOrange. Our multi-factor authentication methods prevent unauthorized users from accessing information and resources having passwords alone as an authentication factor. Enabling second-factor authentication for protects you against password thefts. Learn More

  • IP Blocking

    miniOrange provides IP blocking/IP restriction for login which adds security to Gmail, Web, and other applications. In this, we provide you option for IP blocking which includes both automatic (based on user behavior) and manual IP blocking which includes blacklisting and whitelisting of IP addresses to provide access restriction, the office only access, intranet access & network restriction. Learn More

  • Adaptive Authentication

    miniOrange Adaptive Authentication aims to provide a better experience to reduce the authentication burden on users while enforcing strong authentication where it is needed the most. For example, when a user attempts to access an application via an unregistered device then they may be prompted to register it. If the user logs in from a geographical location other than their office, they may be asked to answer security questions. Learn More

  • User Provisioning

    miniOrange User Provisioning provides an easy way of creation, management, and maintenance of end-users especially for large enterprises to reduce the risk for unauthorized access of information. User provisioning includes the creation, updating and deletion of user accounts. User provisioning makes life easier for admins because they do not have to manually arrange access for each user. Learn More

We can connect with any External IDP/Directory

miniOrange provides user authentication from external directories like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc. It also provides user authentication with other IDPs like Shibboleth, PING, Okta, OneLogin, KeyCloak and many more.

Can't find your IDP ? Contact us on idpsupport@xecurify.com. We'll help you set it up in no time.



More Secure authentication with Two-Factor Authentication

The most practical way to strengthen authentication is to require a second factor after the username/password stage. Since a password is something that a user knows, ensuring that the user also has something or using biometrics thwarts attackers that steal or gain access to passwords.

Traditional two-factor authentication solutions use hardware tokens (or "fobs") that users carry on their keychains. These tokens generate one-time passwords for the second stage of the login process. However, hardware tokens can cost up to $40 each. It takes time and effort to distribute them, tracks who has which one, and replace them when they break. They're easy to lose, hard to use, and users consistently report high levels of frustration with token-based systems.


Your choice of the second factor

miniOrange authentication service has 15+ authentication methods.

You can choose from any of the above authentication methods to augment your password based authentication. miniOrange authentication service works with all phone types, from landlines to smart-phone platforms. In the simplest case, users just answer a phone call and press a button to authenticate. miniOrange authentication service works internationally and has customers authenticating from many countries around the world.


miniOrange helps you with adding login/authentication into your nopCommerce site using OAuth, OpenID, ADFS, SAML and WSFED protocols. Looking for site integration with legacy apps such as Active Directory, SiteMinder, Radius, Unix and so on, we can help you with that.

Why Our Customers choose miniOrange Secure Identity Solutions ?


24/7 Support

miniOrange provides 24/7 support for all the Secure Identity Solutions. We ensure high quality support to meet your satisfaction.

Try Now

Affordable Pricing

miniorange provides most affordable Secure Identity Solutions for all type of use cases and offers different packages based on customer's requirement.

Request A Quote


We offer Secure Identity Solutions for Single Sign-On, Two Factor Authentication, Adaptive MFA, Provisioning, and much more. Please contact us at -

   +1 978 658 9387 (US)   ,   +91 97178 45846 (India)    |       info@xecurify.com