SAML Single Sign On (SSO) into Drupal using Google Apps as IDP


Drupal SAML Google Apps SSO ( Single Sign-on ) setup will allow your user to login to your Drupal site using their Google Apps Credentials. Drupal SAML module gives the ability to enable SAML Single Sign-on for Drupal. This module is compatible with all SAML Identity Providers ( IDP ). We provide Drupal SAML SP 2.0 Single Sign on (SSO) - SAML Service Provider module which is compatible with Drupal 7, Drupal 8 and Drupal 9. Here we will go through a guide to configure SAML SSO between Drupal and Google Apps Idp. By the end of this guide, users from your Identity Provider should be able to login into the Drupal site.

If you have any doubts or queries, you can contact us at drupalsupport@xecurify.com. We will help you to configure the module. If you want, we can also schedule an online meeting to help you configure the Drupal SAML SP 2.0 Single Sign On (SSO) module.

Setup Video Google Apps with Drupal SAML Single Sign On

You can refer the steps to configure Google Apps with the Drupal SAML module from the video or documentation given below


Features and Pricing

Know more about Drupal SAML Single Sign On - Service Provider module from here.

Pre-requisites: Download

You can download the SAML Single Sign On - Service Provider module from here.

1. Install Drupal SAML SP 2.0 Single Sign On (SSO) module

    1.1. Using Composer:

    • Composer require drupal/miniorange_saml
    • Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Service Provider using the search box.
    • Enable the module by checking the checkbox and click on install button.
    • Configure the module at
      {BaseURL}/admin/config/people/miniorange_saml/idp_setup

    1.2. Using Drush:

    • Download the module:
      drush dl drupal/miniorange_saml
    • Install the module:
      drush en drupal/miniorange_saml
    • Clear the cache:
       drush cr
    • Configure the module at
      {BaseURL}/admin/config/people/miniorange_saml/idp_setup

    1.3. Manual installation:

    • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
    • Install the Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module either by downloading the zip or from the URL of the package (tar/zip).
    • Click on Enable newly added modules.
    • Enable this module by checking the checkbox and click on install button.
    • Configure the module at
      {BaseURL}/admin/config/people/miniorange_saml/idp_setup

Steps to configure Google App Engine Single Sign-On (SSO) Login into Drupal website

2. Setup Drupal as Service Provider

  • In the miniOrange SAML Service Provider module, navigate to Service Provider Metadata tab. Here, you can find the SP metadata such as SP Entity ID / Issure, SP ACS URL (AssertionConsumerService) and X.509 Certificate which are required to configure the Identity Provider ( Google Apps ), Copy it and keep it handy.
  • Drupal SAML Service Provider - copy the sp entity id or issue, acs url, saml login url and certificate form service provider metadata tab
  • You can provide metadata to your IDP. This can be accomplished in two ways:
    • You are given a metadata URL that you can provide directly to your IdP.
    • You can Download XML Metadata file and upload it on your Identity Provider ( Google Apps ).
    • Drupal SAML Service Provider - copy the sp metadata url and download xml metadata
  • In the miniOrage SAML Service Provider module, go to Service Provider Setup tab of the module. There are two way to configure Drupal SAML Service Provider SSO module:
    • A. By Uploading IDP Metadata
    • Click on Upload IDP Metadata link.
    • Click on Upload Metadata File and click on Upload File to fetch your information.
    • You can either Upload Metadata URLand click on Fetch Metadata button.
    • Drupal SAML Service Provider - upload idp metadata
      B. Manual Configuartion
    • Provide the required settings (i.e. Identity Provider Name, Idp Entity ID or Issuer, SAML Login URL and X.509 Certificate ) find to your Identity Provider Google Apps and click on Save Configuration button to save your configuration.
    • Identity Provider Name Enter name of Identity Provider
      Idp Entity ID or Issuer Copy Idp Entity ID / Issuer from Google Apps Dashboard and paste it.
      SAML Login URL Copy Single Sign On URL from Google Apps Dashboard and paste it.
      X.509 Certificate Copy and Download Signing certificate from Google Apps Dashboard and paste it.
      Drupal SAML Service Provider - Manual configuartion

3. Setup Google Apps as Identity Provider

miniorange img Configure Google Apps as IdP
  • Go to https://admin.google.com and login to your Google Apps Administrator account.
  • On the Admin Home, select More Controls Apps.
  • drupal saml sp select more control apps
  • In the App Settings, select SAML apps.
  • Click on the "+" button at the bottom right corner to create a new SAML app.
  • Now select SETUP MY OWN CUSTOM APP from the popup.
  • drupal saml sp select saml apps
  • On the next screen, note down the SSO URL, Entity ID URLs and download the certificate. These will be required while configuring the Module.
  • Once you have noted the URLs and downloaded the certificate, click on Next.
  • Enter the Application Name and Description. Click on Next.
  • Configure the following things on the next screen:
    ACS URL ACS (Assertion Consumer Service) URL from the Module under Service Provider Metadata Tab.
    Entity ID SP-EntityID / Issuer from the Module under Service Provider Metadata Tab.
    Signed Response Checked
    Name ID Select Basic Information from the first dropdown. Then Primary Email from the second dropdown.
  • Google-apps_sso_Google-appsimage3
  • Click on Next. Then click on Finish.
  • Now go to SAML Apps again. Click on the menu link corresponding to your app (See the screenshot). Then select ON for everyone.
  • drupal saml sp saml apps
  • From the popup, Click on TURN ON FOR EVERYONE.

You have successfully configured Google Apps as SAML IdP (Identity Provider) for achieving Google Apps SSO login into your Drupal Site.


Conclusion:

In this Guide, you have successfully configured Google Apps SAML Single Sign-On ( Google Apps Login ) choosing Google Apps as IdP and Drupal as SP using miniOrange SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider Login module. This solution ensures that you are ready to roll out secure access to your Drupal site using Google Apps login credentials within secound.

24*7 Active Support:

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML SP 2.0 Single Sign On (SSO) login module.

Free Trial:

If you would like to test out the module to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at drupalsupport@xecurify.com requesting a trial. You can create an account with us using this link.

Additional Resources

Our Other modules:

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com