WordPress SAML SP Single Sign-On plugin gives the ability to enable SAML Single Sign-On for your WordPress sites. Our plugin is compatible with all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure SSO between WordPress site and Active Directory Federation Services (ADFS) by considering ADFS as IdP.
Pre-requisites : Download And Installation
To configure ADFS as SAML IdP with WordPress, you will need to install the miniOrange WP SAML SP SSO plugin:
Follow the steps below to configure ADFS as IdP
Configure ADFS as IdP
Using Metadata URL
Using Metadata XML file
Using Manual configuration
Claim rule name: | Attributes |
Attribute Store: | Active Directory |
LDAP Attribute: | E-Mail-Addresses |
Outgoing Claim Type: | Name ID |
Follow the steps below to configure Windows SSO.
Steps to configure ADFS for Windows Authentication
setspn -a HTTP/##ADFS Server FQDN## ##Domain Service Account##
FQDN is Fully Qualified Domain Name (Example : adfs4.example.com)
Domain Service Account is the username of the account in AD.
Example : setspn -a HTTP/adfs.example.com username/domain
Set-AdfsProperties -WIASupportedUserAgents ((Get-ADFSProperties | Select -ExpandProperty WIASupportedUserAgents) + "Chrome")
Get-AdfsProperties | Select -ExpandProperty WIASupportedUserAgents