Classic ASP SAML Single Sign-On (SSO)

Steps to configure the Classic ASP module

Step 1: Setup Connector for application on IIS.

• Extract the downloaded classic-asp-saml-sso-connector zip file to get Classic ASP SAML 2.0 Connector.
• Add the connector as separate application on IIS
• To Add Application in IIS Manager, copy the extracted folder to the following path: C:\inetpub\wwwroot.
• Open IIS manager.In left panel right click on your site and click Add Application.

• Add Alias Name for your application. For example: ssoapp
• Give the Physical path where you have copied the Application: C:\inetpub\wwwroot\classic-asp-saml-sso-connector-xxx.

Step 2: Steps to give authority/permission to users to use SAML Connector.

• Go to this path C:\inetpub\wwwroot\
• Right click the classic-asp-saml-sso-connector-xxx and select Properties
• Select the Security tab and click the Edit button.
• Select IIS_IUSRS in under Group or Usernames option.
• Give Full Control permission for IIS_IUSRS container as shown in the figure below:

Step 3: Open miniOrange SAML Classic ASP Connector on Browser

• Open any browser and go to the following link: https://<new-application-base-url>/.
• Login or Register to SAML connector in order to access the connector's admin dashboard.

Step 4: Configure your Identity Provider

• You need to provide SP Entity ID and ACS URL values while configuring your Identity Provider. Just copy and paste the SP Entity ID and ACS URL from connector to your IdP configuration page.You can refer to the image below.

Step 5: Configure your Service Provider

• After configuring your Identity Provider, it will provide you with IDP Entity ID, IDP Single Sign On URL and x.509 Certificate. Configure these values under IDP Entity ID, Single Sign-On Url and SAML X509 Certificate fields respectively.
• Click Save to Save your IDP details.

Step 6: Test Configuration

• Click on Test Configuration button to test whether the connector is configured correctly or not.
• The below Screenshot shows a successful result.

Step 7: Attribute Mapping

• Attribute Mapping helps you to get attributes in your Classic ASP application received from your IdP and map them to your user attributes in application.
• Attributes received in successful test configuration are used for attribute mapping.
• You can refer to the below image for attribute mapping:

Step 8: Integration Code

• miniOrange SSO connector will POST a signed JWT token on this endpoint which will contain the authenticated user's info. So, first create a POST endpoint in your application.
• To create a POST endpoint in your application, you can locate the integration code under the Integration Code tab.

Step 9: Login Setup

• Provide the created endpoint URL for your Classic ASP application in Login Setup where you will read the SAML response.
• Click on the Save button.

Additional Resources:

• ASP.NET SAML Single Sign-On (SSO)
• DNN SAML Single Sign-On (SSO)
• nopCommerce SAML Single Sign-On (SSO)
• DNN REST API Authentication
• Web3 login for ASP.NET Applications