miniOrange SAML 2.0 Single Sign On

plugin banner

miniOrange SAML 2.0 SSO provides Single Sign on to your WordPress site with any SAML supported Identity Provider.

Author:miniOrange (profile at wordpress.org)
WordPress version required:3.7
WordPress version tested:5.5.1
Plugin version:4.8.96
Added to WordPress repository:17-07-2015
Last updated:01-06-2020
Rating, %:100
Rated by:83
Plugin URI:http://miniorange.com/
Total downloads:75 635
Active installs:5 000+
plugin download
Click to start download

SAML SP Single Sign On (SSO) provides SAML authentication for WordPress.

This SAML WordPress SSO solution provides SAML SSO capability to your WordPress site, converting it to a SAML compliant Service Provider which can be configured with any SAML compliant Identity Provider.

SAML SP Single Sign On (SSO) allows SSO login with Azure AD, Azure AD B2C, Keycloak, ADFS, Okta, Shibboleth, Salesforce, Google Apps, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ and all SAML 2.0 capable Identity Providers.

miniOrange SAML Single Sign on (SSO) Plugin acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and a SAML 2.0 capable Identity Providers to securely authenticate the user to the WordPress site. WordPress Multi-Site Environment and ability to configure Multiple SAML IDPs against wordpress as SAML service provider is also supported in premium SAML SP Single Sign On plugin.

The SAML SSO plugin is equipped with an ever-increasing list of very detailed SAML SSO guides which can be used to configure the plugin with SAML compliant Identity Providers such as Azure AD, Keycloak, ADFS, Okta, Shibboleth, Salesforce, Google Apps, SimpleSAMLphp, OpenAM, Centrify, Ping, Oracle, OneLogin, and many more SAML Identity Providers.

If you require any Single Sign On (SSO) application or need any help with installing this plugin, please feel free to email us at info@xecurify.com or Contact us.

List of Supported IdPs

  • Azure AD (supports SAML SSO)
  • Azure AD B2C (supports SAML SSO)
  • Keycloak (supports SAML SSO)
  • ADFS (supports SAML SSO)
  • Okta (supports SAML SSO)
  • Salesforce (supports SAML SSO)
  • Shibboleth (supports SAML SSO)
  • Google Apps (supports SAML SSO)
  • miniOrange (supports SAML SSO)
  • OneLogin (supports SAML SSO)
  • Centrify (supports SAML SSO)
  • SimpleSAMLphp (supports SAML SSO)
  • OpenAM (supports SAML SSO)
  • Ping (supports SAML SSO)
  • RSA (supports SAML SSO)
  • IBM (supports SAML SSO)
  • Oracle (supports SAML SSO)
  • Bitium (supports SAML SSO)
  • WSO2 (supports SAML SSO)
  • NetIQ (supports SAML SSO)
    and practically any SAML compliant Identity Provider.

Free Version Features

  • WordPress SAML Single Sign On supports SSO with any 3rd party SAML supported Identity Providers like ADFS, Azure AD, Azure AD B2C, Okta, Salesforce, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ etc.
  • Auto Create Users – Users will be auto-created in WordPress after SAML SSO
  • Login Widgets – Use SAML Login Widgets to easily integrate the SAML SSO link with your WordPress site.
  • Attribute Mapping – The NameID value sent by your SAML compliant Identity Provider will be mapped to the Username and Email of your WordPress users.
  • Role Mapping – Select default role to assign to SAML SSO users on auto registration.

Standard Version Features

  • Unlimited Authentications – Unlimited authentication with your SAML 2.0 compliant Identity Providers like ADFS, Azure AD, Azure AD B2C, Okta, Salesforce, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ or any SAML compliant Identity Provider.
  • Advanced Attribute Mapping – SAML SP Single Sign On provides the feature to map your SAML IDP attributes to your WordPress site attributes like Username, Email, First Name, Last Name, Group/Role, Display Name.
  • Login Widgets and Short Code – Use Widgets to easily integrate the SAML SSO link with your WordPress site. Use Short Code (PHP or HTML) generated by SAML SP Single Sign On to place the SAML login link wherever you want on the site.
  • Step-by-step Guides – Use step-by-step guide to configure your SAML compliant Identity Provider like ADFS, Centrify, Google Apps, Okta, OneLogin, Salesforce, SimpleSAMLphp, Shibboleth, WSO2, JBoss Keycloak, Oracle.
  • Auto-redirect to IDP – Users will be redirected to SAML compliant IdP for SSO when trying to access the WordPress login page.
  • Protect Site – Users trying to access WordPress will be redirected to the SAML compliant Identity Provider for SSO.
  • Customize SP Configuration – Change SAML Service Provider endpoints such as SP base URL and SP Entity ID.
  • Select Binding Type – Select HTTP-Post or HTTP-Redirect binding type to use for sending SAML Requests.
  • Integrated Windows Authentication – Support for Integrated Windows Authentication (IWA) in SAML SP Single Sign On Standard plugin.

Premium Version Features

  • Includes all the SAML STANDARD version features.
  • SAML Single Logout – Support for SAML Single Logout (Works only if your SAML IDP supports SLO).
  • Auto-redirect to IDP – Users will be redirected to SAML compliant IdP for SSO when trying to access the WordPress login page.
  • Protect Site – Users trying to access WordPress will be redirected to the SAML compliant Identity Provider for SSO.
  • Advanced Role Mapping – SAML SP Single Sign On provides the feature to assign WordPress roles to your users based on the group/role sent by your SAML compliant IDP.
  • Reverse-proxy Support – Support for sites behind a reverse-proxy in SAML SP Single Sign On Premium plugin.
  • Multiple Certificates – Store Multiple SAML IdP Certificates.
  • Custom Certificate – Add your own custom X.509 Certificate for sending signed SAML Request and verification of encrypted SAML Response.
  • WordPress Multi-site Support – Multi-Site environment is one which allows multiple subdomains / subdirectories to share a single installation. With multisite SAML premium plugin, you can configure the SAML compliant IDP in minutes for all your sites in a network. While, if you have basic SAML premium plugin, you have to do plugin configuration on each site individually as well as multiple SAML service provider configurations in the SAML compliant IDP.

    For Example – If you have 1 main site with 3 subsites. Then, you have to configure the plugin 3 times on each site as well as 3 SAML service provider configurations in your IDP. Instead, with multisite SAML premium plugin. You have to configure the plugin only once on main network site as well as only 1 SAML service provider configuration in the SAML compliant IDP.

Enterprise Version Features

  • Includes all the SAML STANDARD version features.
  • SAML Single Logout – Support for SAML Single Logout (Works only if your SAML IDP supports SLO).
  • Auto-redirect to IDP – Users will be redirected to SAML compliant IdP for SSO when trying to access the WordPress login page.
  • Protect Site – Users trying to access WordPress will be redirected to the SAML compliant Identity Provider for SSO.
  • Advanced Role Mapping – SAML SP Single Sign On provides the feature to assign WordPress roles to your users based on the group/role sent by your SAML compliant IDP.
  • Reverse-proxy Support – Support for sites behind a reverse-proxy in SAML SP Single Sign On Premium plugin.
  • Multiple Certificates – Store Multiple SAML IdP Certificates.
  • Custom Certificate – Add your own custom X.509 Certificate for sending signed SAML Request and verification of encrypted SAML Response.
  • WordPress Multi-site Support – Multi-Site environment is one which allows multiple subdomains / subdirectories to share a single installation. With multisite SAML premium plugin, you can configure the SAML compliant IDP in minutes for all your sites in a network. While, if you have basic SAML premium plugin, you have to do plugin configuration on each site individually as well as multiple SAML service provider configurations in the SAML compliant IDP.
  • Multiple SAML IDPs Support – We now support configuration of Multiple SAML compliant IDPs in the plugin to authenticate the different group of users with different SAML IDPs. You can give access to users by users to IDP mapping (which SAML compliant IDP to use to authenticate a user) is done based on the domain name in the user’s email. (This is a PREMIUM feature with separate licensing. Contact us at info@xecurify.com to get licensing plans for this feature.)
  • All SAML add-ons included.

If you are looking for a SAML compliant Identity Provider, you can try out miniOrange On-Premise IdP.

Add-ons

We have a variety of add-ons that can be integrated with the SAML SP SSO plugin to improve the SAML SSO functionality of your WordPress site.

  • Page Restriction – This add-on is basically used to protect the pages/posts of your site with SAML compliant IDP login page and also, restrict the access to pages/posts of the site based on the user roles.
  • BuddyPress Integration – This add-on maps the attributes fetched from the SAML compliant IdP with BuddyPress attributes.
  • LearnDash Integration – This add-on will map the SAML SSO user to LearnDash groups as per the attributes sent by your SAML compliant Identity Provider.
  • SSO Login Audit – SSO Login Audit captures all the SAML SSO users and will generate the reports.
  • Attribute Based Redirection – ABR add-on helps you to redirect your users to different pages after they authenticate via SAML SSO into your site, based on the attributes sent by your SAML compliant Identity Provider.

Contact us at info@xecurify.com to get SAML add-ons.

Website –

Check out our website for other plugins http://miniorange.com/plugins or click here to see all our listed WordPress plugins.
For more support or info email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.


Screenshots
FAQ
ChangeLog