SAML Single Sign-On (SSO) into Drupal using Bitium as IdP

Overview

The Drupal SAML integration using the miniOrange SAML SP module establishes seamless SSO between Bitium and the Drupal site. The users will be able to log in to the Drupal site using their Bitium credentials. This document will walk you through the steps to configure Single Sign-On - SSO between Drupal as a Service Provider (SP) and Bitium as an Identity Provider (IdP). The module is compatible with with Drupal 7, Drupal 8, Drupal 9, Drupal 10 and Drupal 11.

Installation Steps

• Using Composer
• Using Drush
• Manual Installation

• Download the module:

  Composer require 'drupal/miniorange_saml'

• Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Service Provider using the search box.
• Enable the module by checking the checkbox and click on install button.
• Configure the module at

  {BaseURL}/admin/config/people/miniorange_saml/idp_setup

• Install the module:

  drush en drupal/miniorange_saml

• Clear the cache:

   drush cr

• Configure the module at

  {BaseURL}/admin/config/people/miniorange_saml/idp_setup

• Navigate to Extend menu on your Drupal admin console and click on Install new module button.
• Install the Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module either by downloading the zip or from the URL of the package (tar/zip).
• Click on Enable newly added modules.
• Enable this module by checking the checkbox and click on install button.
• Configure the module at

  {BaseURL}/admin/config/people/miniorange_saml/idp_setup

Configuration Steps

Drupal SAML SP Metadata

• After installing the module on the Drupal site, in the Administration menu, navigate to Configuration → People → miniOrange SAML Login Configuration. (/admin/config/people/miniorange_saml/idp_setup)

• Navigate to the Service Provider Metadata and copy the SP Entity ID/Issuer and SP ACS URL. (This is required in configuring the Bitium as a SAML IdP)

Configure SAML Single Sign-On Application in Bitium

• Sign in to the Bitium portal as an administrator.
• From the top navigation bar go to the Manage → Manage Apps

• In the top right corner, click Add More Apps then search for Drupal and add it to Bitium account.
• Choose a name for the app, then select SAML Authentication from the dropdown menu. Click on Install App.

• Enter the following details, from Drupal and click on Save.

Bitium fields (Identity Provider)	Service Provider Information (Drupal)
SAML URL	SP ACS URL
Entity ID	SP Entity ID/Issuer

• Copy the Metadata URL. (This will be required for further configuration of Drupal)

Configure Drupal as Service Provider:

• Open your Drupal site. Go to the Service Provider Setup tab of the module.
• Click on Upload IDP Metadata Section

• Now paste the metadata URL from the Bitium IdP.

• Click the Test link to verify the connection between Drupal and Bitium.

• In the test configuration window, a success message with SAML response attributes will appear if the configurations are correct; otherwise, error messages with additional troubleshooting instructions will appear. Click on Done

Congratulations! You have successfully configured Bitium as an Identity Provider and Drupal as a Service Provider.

How does SAML SSO login work?

• Open a new browser/private window and navigate to the Drupal site login page.
• Click the Login using Identity Provider (Bitium) link.
• You will be redirected to the Bitium login page. Enter the Bitium credentials. After successful authentication, the user will be redirected back to the Drupal site.