AWS SAML Single Sign-On (SSO) Integration with Drupal as IdP
Overview
This guide will help you integrate Drupal as a SAML 2.0 Identity Provider (IdP) and AWS as a Service Provider (SP) using the miniOrange SAML IDP module. This integration enables centralized user management and permission control, allowing users to access multiple applications with a single set of credentials. The module is compatible with Drupal 7, Drupal 8, Drupal 9, Drupal 10, and Drupal 11.
Installation Steps
- Using Composer
- Using Drush
- Manual Installation
Configuration Steps
Drupal SAML IdP Metadata:
- After installing the module on your Drupal site, in the Administration menu → navigate to Configuration → People → miniOrange SAML IDP Configuration. (/admin/config/people/miniorange_saml_idp/idp_setup)
- Under the IDP Metadata tab, click on the Download Metadata button. Open it on the notepad and copy the IdP information. Keep it handy. (This information is required to configure AWS as SAML SP.)
Configure AWS as Service Provider:
- Login to your Amazon Web Services (AWS) Console as an admin.
- Click on Services Tab. Click on IAM (Identity and Access Management).
- From the left-hand side list, click on Identity Providers and then click on Add Provider button in the right section.
- In the Configure Provider, select SAML as Provider type and enter Provider Name.
- Click on Choose File and choose the metadata file that you have downloaded from Drupal, then click on Next Step.
- The SAML Provider is created and it should be listed in the Provider table.
- Now click on Assign role.
- click on Create a new role and click on Next button.
- Enter the Role name and click on the Next.
- Select Trust entity type as SAML 2.0 fedration, then select SAML:aud option from the Attribute drop-down list.
- Enter the value as https://signin.aws.amazon.com/saml then, click on Next button.
- Now, click on the Identity provider from the left side.
- Download the Metadata and keep it handy.
Configuring Drupal as SAML Identity Provider (IdP):
- Head towards the Drupal site and navigate to the Service Provider Setup tab of the miniOrange SAML IDP module ( /admin/config/people/miniorange_saml_idp/sp_setup). (/admin/config/people/miniorange_saml_idp/sp_setup)
- Click on the Upload SP Metadata.
- Upload the metadata file downloaded from the AWS.
- Click on the Test button to test the SSO.
You have successfully configured the SAML SSO between AWS as SAML SP and Drupal as SAML IDP.
Related Articles
Explore the advanced features offered by the module with full-featured trial. You can initiate the trial request using Request 7-day trial button of the module or reach out to us at drupalsupport@xecurify.com for one-on-one assistance from Drupal expert.
[MO_CONTACT_US]