Hello there!

Need Help? We are right here!

support
miniOrange Email Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

Single Sign On (SSO) for Joomla
miniOrange provides a ready to use solution for Joomla. This solution ensures that you are ready to roll out secure access to your Joomla site within minutes.

SETUP GUIDE FOR SIMPLESAML AS IdP

STEP 1: In config/config.php, make sure that 'enable.saml20-idp' is true. Example:

'enable.saml20-idp' => true

STEP 2: In metadata/saml20-idp-hosted.php, configure SimpleSAML as an Identity Provider like this:

 $metadata['__DYNAMIC:1__'] = array(
 'host' => '__DEFAULT__',
 /* X.509 key and certificate. Relative to the cert directory. (Create a cert directory in SimpleSAML root folder 
	and place you certificates there.)*/
 'privatekey' => '', // eg. RSA_Private_Key.pem
 'certificate' => '', // eg. RSA_Public_Key.cer
 /*Authentication source to use. Must be one that is configured in config/authsources.php. This Auth Source is used for 
	authenticating yourusers.*/
 'auth' => '',);

STEP 3: In metadata/saml20-sp-remote.php, register your Servider Provider like this:

 $metadata['https://<path-to-joomla-site>/plugins/authentication/miniorangesaml/'] = array(
 'AssertionConsumerService' => 'https://<path-to-joomla-site>/plugins/authentication/miniorangesaml/saml2/acs.php',
 'NameIDFormat' => 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress',
 'simplesaml.nameidattribute'=> 'mail', // This is your user's Email attribute name
 'simplesaml.attributes' => true, // Set this to false if you do not want to send attributes in SAML response
 'attributes' => array('mail', 'firstName', 'lastName'), // Provide comma separated list of attribute names);
  /*NOTE: 'NameIDFormat' & 'simplesaml.nameidattribute' are important for returning user's Email in SAML Response.*/
 

STEP 4: In miniOrange SAML plugin, go to IDENTITY PROVIDER SETTINGS tab and enter the following details:

Single SignOn Service Url https://<your domain>/simplesaml/saml2/idp/SSOService.php
IDP Entity ID https://<your domain>/simplesaml/saml2/idp/metadata.php
X.509 Certificate Your public key certificate that you configured in metadata/saml20-idphosted.php file.

We offer Security Solutions of Single Sign-On, Two Factor Authentication, Fraud Prevention and much more.

Please call us at +1978 658 9387 (US), +91 77966 99612 (India) or email us at info@xecurify.com