SAML Single Sign On (SSO) into Drupal using Google Apps as IDP
Drupal SAML Google Apps SSO (Single Sign-On) setup will allow your user to login to your Drupal site using their Google Apps credentials. Drupal SAML module gives the ability to enable SAML Single Sign-On for Drupal. This module is compatible with all SAML Identity Providers (IDP). We provide Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module which is compatible with Drupal 7, Drupal 8, Drupal 9, and Drupal 10. Here we will go through a guide to configure SAML SSO between Drupal and Google Apps IDP. By the end of this guide, users from your Identity Provider should be able to login into the Drupal site.
If you have any doubts or queries, you can contact us at drupalsupport@xecurify.com. We will help you to configure the module. If you want, we can also schedule an online meeting to help you configure the Drupal SAML SP 2.0 Single Sign On (SSO) module.
Pre-requisite: Download and Installation
- Download the module:
Composer require 'drupal/miniorange_saml'
- Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Service Provider using the search box.
- Enable the module by checking the checkbox and click on install button.
- Configure the module at
{BaseURL}/admin/config/people/miniorange_saml/idp_setup
- Install the module:
drush en drupal/miniorange_saml
- Clear the cache:
drush cr
- Configure the module at
{BaseURL}/admin/config/people/miniorange_saml/idp_setup
- Navigate to Extend menu on your Drupal admin console and click on Install new module button.
- Install the Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module either by downloading the zip or from the URL of the package (tar/zip).
- Click on Enable newly added modules.
- Enable this module by checking the checkbox and click on install button.
- Configure the module at
{BaseURL}/admin/config/people/miniorange_saml/idp_setup
Setup Video Google Apps with Drupal SAML Single Sign-On
You can refer the steps to configure Google Apps with the Drupal SAML module from the video or documentation given below
Steps to configure Google App Engine Single Sign-On (SSO) Login into Drupal website
1. Drupal SAML SP Metadata
- After installing the module, navigate to the Configuration tab and click on the miniOrange SAML Login Configuration module link.
- Under Service Provider Metadata tab, copy the SP Entity ID/Issuer and SP ACS URL. Keep it handy. (This is required to set up Google Apps as an IDP.)
2. Create SSO Application in Google Apps
- Go to Google Apps Console and login to your Google Administrator account.
- Navigate to the Apps tab in the left menu and click on Web and mobile apps.
- Click the Add App button and select the Add Custom SAML app from the dropdown list. To create a new SAML app in Google Application.
- Enter the details for your custom SAML app and click on the CONTINUE button.
- Click on DOWNLOAD METADATA button and keep it handy. (This is required to configure Drupal as Service Provider.)
- Click on CONTINUE button.
- Paste the copied SP Entity ID/Issuer and SP ACS URL (from Drupal) in the ACS URL and Entity ID text field, respectively. Click on the CONTINUE button.
- In the Attributes card, click the ADD MAPPING button to map additional custom attribute.
- Under the Google Directory attributes drop-down menu, select the attribute which you want to map with your Service Provider (Drupal). For example, if you want to map First name, choose it from the drop-down menu and then enter the name of attribute in App attributes text field from your Service Provider as Drupal (in this case, field_fname).
- Then, click on FINISH button.
Allow the User access to the Google Application
- In the Google Admin console, navigate to Apps from left side menu and select Web and mobile apps.
- Select you SAML app which you have created.
- Navigate to User access card and click on OFF for everyone link.
- Select the checkbox ON for everyone and click on the SAVE button.
3. Configure Drupal as Service Provider
- Go to the Drupal site. Go to the Service Provider Setup tab and click on Upload IDP Metadata link.
- Navigate to Upload Metadata File option and upload the file which you downloaded from Google Apps. Then, click on the Upload File button.
- After successfully saving the configurations, click on Test link to test the connection between Drupal and Google Apps.
- On a Test Configuration popup, if you don't have an active session in the same browser, you will be asked to sign in to Google Apps. After successfully logging into Google Apps, you will be provided with a list of attribute that's received from the Google.
- Scroll down and click on Done button.
You have successfully configured Google Apps as SAML IDP (Identity Provider) for achieving Google Apps SSO login into your Drupal Site.
Conclusion:
In this guide, you have successfully configured Google Apps SAML Single Sign-On (Google Apps Login) choosing Google Apps as IDP and Drupal as SP using miniOrange SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module. This solution ensures that you are ready to roll out secure access to your Drupal site using Google Apps login credentials within seconds.
24*7 Active Support:
If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML SP 2.0 Single Sign On (SSO) module.
Free Trial:
If you would like to test out the module to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at drupalsupport@xecurify.com requesting a trial. You can create an account with us using this link.
Additional Resources
- What is Single Sign-On (SSO)?
- What is SAML?
- What is SSO? How works SAML SSO Authentication?
- Frequently Asked Questions (FAQs)
Our Other modules:
Need Help? We are right here!
