Drupal SAML SSO - IdP

Drupal SAML Identity Provider (IdP) ensures a centralized user management process. With this module you can Single Sign-On (SSO) to other Service Providers (SP) or applications of your choice using Drupal credentials. It comes with a range of features from 2FA to encrypted SAML assertion.

Our Trusted Customers

3 Step Process to Setup Drupal SAML IdP:

Step 01

Download and Install

Download and install the Drupal SAML IdP module from the Drupal marketplace.

Step 02

Setup Service Provider

To setup a service provider enter details - SP name, SP entity ID, and ACS URL.

Step 03

IdP Metadata

Download or copy metadata details for the service provider.

Prominent Features of the Drupal SAML IdP

Active Drupal 7 Support

IdP-initiated SSO

Supports Multiple Applications

Compatible with Major LMS

Encrypted SAML Assertion

Send Attributes from the Profile Module

Second-factor authentication with SSO

Active Drupal 7 Support

Currently, Drupal no longer supports the D7 module, but we at miniOrange continue to maintain up-to-date D7 modules. If you need help configuring or setting up D7 modules, just reach out to our team of experts.

IdP-initiated SSO

The module offers IdP-initiated SSO for an efficient login process to an application of your choice.

Drupal IdP -Multiple Applications support

Supports Multiple Applications

A must-have feature for those looking to integrate multiple SPs with your Drupal SAML IdP.

Compatible with Major LMS

A go-to feature for those looking to venture into the e-learning domain. We offer a SAML identity provider that’s compatible with key LMS (Learning Management System) like Moodle, Blackboard, Learnworlds, and more.

Encrypted SAML Assertion

This feature makes use of signature verification and assertion encryption methods for safe and secure transfer of user profiles between SPs and IdPs.

Send Attributes from the Profile Module

Along with the regular user attributes, the module sends the user profiles created using the profile module.

Second-factor authentication with SSO

Secure your Drupal SAML IdP module with second-factor authentication. This comprises OTP, TOTP, hardware token, or KBA.

Discover our wide range of integrations

Enable SSO on your SAML application with Drupal as IdP. Check out our integration guides that include popular SPs.

Moodle

Tableau Server

Shopify

WordPress

Jira

Salesforce

AWS Cognito

AWS

Pricing Plans for Everyone

Transparent, Simple Pricing

Contact us at

drupalsupport@xecurify.com

Community

Users stored in your own Drupal database

$0

per year

Only for Admin users

Enterprise

Users stored in your own Drupal database

$450

per year

$45

per month

For over 5,000 users, please get in touch with us for special discounted pricing.

No. Of User:

SAML IdP Integration Features

Features

Unlimited SSO for all user roles

You can allow all users on your Drupal site to log in using Single Sign-On (SSO) — whether they are admins, editors, members, or customers. There's no limit on the number of roles that can use SSO.

Supports multiple applications/service providers

You can connect your Drupal site to many external applications or services (like CRMs, learning portals, or cloud tools) using SSO. This means users can log in once and get access to all connected platforms without entering credentials again.

Both SP and IdP-initiated SSO

SP-initiated: User clicks login on the third-party app (Service Provider), and it redirects to Drupal for authentication.
IdP-initiated: User logs in from Drupal (Identity Provider) and is then redirected to the connected app.

Supports SAML Single Logout

When a user logs out from one application, they are automatically logged out from all connected applications at once. This is called Single Logout (SLO), and it helps in maintaining security and consistency across platforms.

Sends all user attributes and roles in SAML assertion

When a user logs in using SSO, Drupal sends their information (like name, email, and user roles) to the connected app. This is helpful for the external system to know who the user is and what permissions they have.

Can sends the constant and profile module attributes in the SAML assertion

You can also send custom values (called constants) or user profile data (like phone number or department) along with the SSO login. This allows connected apps to get additional user details during login.

Support for signed response and encrypted assertion

To make the login data safe, the SAML responses can be digitally signed (to ensure authenticity) and encrypted (to protect sensitive information). This adds a strong layer of security to the login process.

Custom certificate generation

You can create and use your own security certificates to sign or encrypt the SSO data instead of using the default ones. This helps meet specific security policies of your organization or clients.

2FA after SSO

Even after a successful SSO login, you can ask the user to complete Two-Factor Authentication (2FA) — like entering an OTP sent to their phone or email. This adds an extra step of protection against unauthorized access.

Popular Usecase

Explore real-world use cases of the Drupal SAML IDP Module to implement secure and seamless Single Sign-On (SSO).

Drupal IDP - LMS Integration

In this digitally-driven world, access to education has enhanced drastically due to availability of Learning Management Systems (LMS) such as Moodle, Udemy, Blackboard Learn, Google Classroom, and more. With the rise in the number of educational institutions, implementing varied systems for different purposes, assuring smooth integration and access is essential for both the users and the institutes.

Know More

Frequently Asked Questions

Module Inquiries

Does miniOrange store any user data?

miniOrange does not transfer any data out of your systems or store any Personal Identifiable Information (PII). All the modules are completely on premise. All the data remains within your premises / server. Only for the Drupal 2FA module - We need to store the user's email address. For Risk Based Authentication, information such as device type, location, IP address, and time are necessary to identify the user and give access based on the risk.

Does miniorange provide developer license for paid module?

We do not provide the developer license for our paid module and the source code is protected. It is strictly prohibited to make any changes in the code without having written permission from miniOrange. There are hooks provided in the module which can be used by the developers to extend the module's functionality.

Does miniOrange offer technical support?

Yes, we provide 24*7 support for all and any issues you might face while using the module, which includes technical support from our developers. You can get prioritized support based on the Support Plan you have opted for. You can check out the different Support Plans here.

How to activate the Premium Module on my Drupal Site?

Once you complete the payment, go to the miniOrange Dashboard to download your premium module or follow the Composer installation steps.
To activate the paid module, go to the Registration /Login tab and login with your miniOrange account for which you have purchased a license.
Once you are logged in, it will ask you to enter your license key. Go to miniOrange Dashboard → License → View License Key to get your license key.

How can I free up my license Key?

You can remove the license key from the module by clicking on the Remove Account button from the Register/Login tab of the module.

How Can We Help You?

Documentation

Learn how to setup the plugin

Read Docs

YouTube Videos

Watch how to setup the plugin

Watch Videos

24/7 Support

Connect with our support team

Contact Us

Want to Schedule a Demo?

Thank you for your response. We will get back to you soon.

Something went wrong. Please submit your query again

Single Sign On

SAML Service Provider

OAuth/OpenId Connect Client (SSO)

Social Login Social Sharing

Headless Single Sign-On

SAML Identity Provider

OAuth/OpenId Connect Server

Login using YourMembership

Auto Login and Register using JWT

Multi-Factor Authentication (MFA)

Two Factor Authentication

WooCommerce Password Reset Over OTP

OTP Over Phone Call

Bulk SMS/WhatsApp Notification

OTP Verification

Limit OTP Request

Receive OTP and Notifications on WhatsApp

LDAP/Active Directory Integrations

LDAP/Active Directory Integration for WordPress

WP Staff/Employee Search Directory for Active Directory

LDAP/AD Integration for Cloud & Shared Hosted WordPress

Forms Integration with Active Directory for WordPress

Office365 Integration

SharePoint WordPress

PowerBI WordPress Integration

Outlook and MS Teams Integration

Azure AD / Office 365 app Integrations

Azure AD / Entra ID WordPress Sync

Dynamics CRM 365 WordPress Integration

WooCommerce Integration

WooCommerce Product Sync

WooCommerce Integrator

Dynamics CRM 365 WordPress Integration

Salesforce WooCommerce Integrations

Decentralised ID

Digital ID Login

Web3 WordPress Authentication

WordPress Web3 Suite

WordPress NFT Marketplace

WordPress Smart Contracts

Add-Ons

Page and Post Restriction

LearnDash Integrator

WooCommerce Integrator

SSO Login Audit

Paid Membership Pro integrator

Media Restriction

BuddyPress Integrator

WordPress Discord Integrator

Guest User Login

SCIM User Provisioning

MemberPress Integrator

SSO Session Management

Attribute based redirection

Other Plugins

REST API Authentication

Custom API for WordPress

WordPress Online Proctoring for LMS

No Code Automation

Object Data Sync for Salesforce

WP User Sync Integration for Third Party Apps

WP User and Login Management

Management tool for Web Agency

Single Sign On

SAML SSO

Crowd SSO

Kerberos / NTLM SSO

Helpdesk SSO Integration

OAuth/OpenID SSO

Git Authentication

Advance SSO Option

Help & Support

User Management

SCIM Provisioning

WORD/PDF Exporter

Project Config Manager

Bulk User Management

Centralized License Manager

Custom User Profile

Help & Support