SAML Single Sign On(SSO) For Tableau As SP And Joomla As IDP

Step 1:Guide to set up Tableau as SP

  • Go to https://sso.online.tableau.com/public/idp/SSO and Log in to your Tableau Dashboard as Admin.
  • Go to Authentication Settings in the Settings menu.

    Tableau dashboard
  • Enable SAML authentication by checking the Single Sign On with SAML checkbox.

    Tableau sso checkbox
  • Note down the SP Entity ID and Assertion Consumer Service URL (ACS URL) which will be needed to configure the plugin. Note: If your SP is configured to send Signed Requests then you will need to provide the certificate in the plugin as well. You can get the certificate from the SP Metadata.

    Tableau metadata
  • You will need to configure user attributes to be sent in the SAML response which Tableau needs to log in the user. You can do this under the Attribute/Role Mapping Tab in the plugin. Note the Attributes required from Tableau.

  • Configure the plugin to send relevant user details.
    Please Note: The name you provide in the plugin for each attribute has to match the name being asked in the plugin dashboard.

    Tableau plugin dashboard
  • Select users you want to enable SSO in the Tableau dashboard.

    enable Tableau sso dashboard
  • Click on the Test Login button in the Tableau Dashboard to Test the SSO.

    Tableau dashboard for test SSO
  • You can see the following screen after a successful SSO.

    Tableau signin

Step 2: Guide to set up miniOrange SAML 2.0 IdP in Joomla

  • Download SAML 2.0 IdP FOR JOOMLA from here.

    Tableau sp joomla idp
  • Login to the administrator section of your Joomla website – [host]/[sitename]/administrator/index.php

    joomla plugins
  • From the navigation menu on top go to Extensions Manage Install.

    joomla extensions
  • Drag and drop your miniorange-joomla-saml-idp.zip file in the area indicated in the image below or browse and select the file to install the plugin.

    miniorange joomla sso
  • After the installation go to Extensions Manage Manage.

    joomla idp
  • Search for miniorange in the search box and enable the two extensions System and User that are disabled by default.

  • After enabling the extensions go to Components miniOrange Joomla IDP Account Setup.

    miniorange account setup
  • In the Account Setup tab, Register\Login with miniOrange to activate the extension. If you already have an account with miniOrange, enter your credentials from the existing account and it will be fetched automatically.

    joomla idp
  • After the successful Registration\Login, go to Service Provider tab and fill in the Service Provider Name, SP Entity ID or Issuer, ACS URL and NameID Format. Fill in the other fields according to your requirements. Click on Save.

    Enter the following values:
        
    Service Provider Name  Choose appropriate name according to your choice .
    SP Entity ID or Issuer    Tableau Entity ID .
    ACS URL                 Tableau Assertion Consumer Service URL .
    X.509 Certificate (optional)
    [For Signed Request]
    Paste certificate value you copied from the Tableau Metadata file .
    NameID Format Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress.
    Response Signed   Unchecked .
    Assertion Signed Checked .
    Encrypted Assertion Unchecked .


    miniorange joomla idp sso
    joomla idps
  • Next, go to the Identity Provider tab. You will need to upload the IdP metadata or give certain IdP information in Tableau. You can get this information from the Service Provider Tab in the plugin.

    serivice provider setup tab
  • Miniorange Joomla SAML Single sign-on(web SSO) supports multiple known SPs like Panopto, Lucid charts, Agylia LMS, Moodle, Inkling SP, Zendesk, Tableau, Owncloud, miniOrange Wordpress SAML SP, Drupal SAML SP, Workplace by Facebook, and many more.

    You have successfully completed your miniOrange SAML 2.0 IDP configurations. Still, if you are facing any difficulty please mail us on info@xecurify.com .