miniOrange provides solutions to enable SSO for the users residing in WordPress by acting as a broker between WordPress and the application or through the plugin to log in to your SAML 2.0 or WS-FED compliant Service Provider. miniOrange also provides SAML Single Sign on (SSO) plugin for Wordpress to act as a SAML Service Provider which can be configured to establish the trust between the plugin and a SAML capable Identity Providers to securely authenticate the user to the WordPress site.
miniOrange Supports the following Usecases for WordPress
miniOrange provides solution to enables SSO into WordPress through various IDPs. Wordpress can be configured as Service Provider for various different Identity Providers using miniOrange plugin.
miniOrange enables SSO with any of the SSO Protocols (SAML 2.0, OAuth 2.0, OpenID Connect, etc) using WordPress as an Identity source. This allows a user to access the application using their WordPress credentials.
WordPress can be configured to use any SAML Identity Provider. miniorange SAML Identity Provider for user authentication. When a user requests access for a resource, WordPress sends a SAML authentication request to miniOrange IdP and the user has to login with their miniOrange account. On successful authentication, the user is provided access to the resource.
1. An unknown user tries to access Wordpress Application.
2. Wordpress creates a SAML authentication Request and sends it to the configured Identity Provider. The user is prompted to log in with their Identity Provider account.
3. The SAML Identity Provider sends back a SAML Response to the application. This response contains the user’s information as well as the authentication status, based on which the user is given access to the resource.
4. Upon successful authentication, the user is given access to the site.
miniOrange provides multiple solutions to enable SSO for the users residing into WordPress
WordPress as IDP Using Identity Broker Service
WordPress as IDP Using SSO Connector
|Protocols supported||SSO can be done using protocols such as SAML, OAuth/OIDC, External/JWT/PwdLess, WS-Fed, RADIUS.||SSO can be done using protocols such as SAML, WS-Fed, JWT.|
|2FA / MFA support||It supports various MFA methods such as OTP over SMS, Email, PUSH, Soft Token, Security Questions, Google Authenticator.||X|
|Adaptive Authentication||Supports Restrict Access based on Location (IP based restriction), Time Based Access Restriction, Device-Based Access Restriction, Idle Session timeout, etc.||X|
|Multiple IDP Support||Multiple IDPs can be configured along with different User Stores.||X|
|SSO Audit||Audit of SSO users is available.||X|
|End User Dashboard||A single dashboard for end-user where the user can see all the apps configured for him, and he can log in into the SP using a single click.||Short-codes for WordPress sites are available that can be added on any page which will log in user to the SP.|
|X.509 Certificate||A unique certificate and metadata for each SP configured.||Same but configurable certificate for all of the SP configured.|
With miniOrange Identity broker service you can delegate all your single sign on requirements, user management, 2 factor authentication and even risk based access at the click of a button and focus on your business case. We can integrate with any type of app even if it does not understand any standard protocol like SAML, OpenId Connect or OAuth. miniOrange Single Sign-On Service can establish trust between two apps via secure https endpoint and automated user mapping to achieve SSO.
You can configure any User store like WordPress to single sign-on into applications which don’t support any protocol or supports protocols other than OAuth, SAML, WS-FED, JWT, etc. for single sign-on using miniOrange cross-protocol support.
1. An unknown user tries to access any external application.
2. The Application sends an authentication request to miniOrange broker service, using any protocol that the application supports.
3. User is redirected to miniOrange login page, where the user enters their credentials to authorize the application.
4. The miniOrange broker service forwards the authentication request along with the user's credentials to WordPress.
5. The WordPress Server authenticates the user and sends the response to miniOrange broker service.
6. miniOrange broker service sends an authentication response to the Application. This response contains the user’s information as well as the authentication status, based on which the user is given access to the resource.
7. Upon successful authentication, the user is given access to the resource.
miniorange Single Sign On plugin can use WordPress as Identity Provider. The miniOrange SSO plugin forwards user authentication requests to WordPress. After successful authorization using WordPress credentials, the user is given access to the requested resource.
1. User tries to access the resources on any external application.
2. The Application sends an authorization request to WordPress.
3. User is redirected to the login page of WordPress.
4. WordPress asks the user to login and authorizes the application.
5. WordPress authenticates the user and sends the authorization code to miniOrange.
6. miniOrange SSO Connector logs in the user with received attributes.
7. The user gets authenticated and logged in. Thus, the application gives access to the resources.
miniOrange provides 24/7 support for all the Secure Identity Solutions. We ensure high quality support to meet your satisfaction.Try Now
We offer Secure Identity Solutions for Single Sign-On, Two Factor Authentication, Adaptive MFA, Provisioning, and much more. Please contact us at -
+1 978 658 9387 (US) , +91 77966 99612 (India) | email@example.com