SAML Single Sign On (SSO) into Drupal using Okta as IDP


Drupal SAML Okta SSO setup will allow your user to login to your Drupal site using their Okta Credentials. Drupal SAML module gives the ability to enable SAML Single Sign-On for Drupal. This module is compatible with all SAML Identity Providers ( IDP ). Here we will go through a guide to configure SAML SSO between Drupal and Okta Idp. By the end of this guide, users from your Identity Provider should be able to login into the Drupal site.

If you have any doubts or queries, you can contact us at drupalsupport@xecurify.com. We will help you to configure the module.


You can refer to the steps to Configure Okta with the Drupal SAML SSO from the Video or Documentation given below



1. Configuring Okta as Identity Provider

Follow the steps below to configure Okta as IdP

miniorange img Configure Okta as IdP
  • Log into Okta Admin Console.
  • Then navigate to Applications tab and select Applications.
  • drupal saml sp select aplication
  • Click on the Create App Integration button to create new app.
  • drupal saml sp create application
  • Select SAML 2.0 as Sign-On method and Click on Next button.
  • Configure Okta as IDP -SAML Single Sign-On(SSO) for drupal - Okta SSO Login - SAML 2.0 Configure
  • In General Settings tab, enter App Name and click on Next button.
  • Configure Okta as IDP -SAML Single Sign-On(SSO) for Drupal - Okta SSO Login - SAML_SETTINGS
    Single Sign On URL Enter ACS (AssertionConsumerService) URL from the Service Provider Metadata tab of the module.
    Audience URI (SP Entity ID) Enter SP Entity ID / Issuer from the Service Provider Metadata tab of the module.
    Default Relay State Enter Relay State from the Service Provider Metadata tab of the module.
    Name ID Format Select E-Mail Address as a Name Id from dropdown list.
    Application Username Okta username.
  • Enter the Single Sign On URL, Audience URI (SP Entity ID), Default Relay State , Name ID Format under the Configure SAML tab.
  • Configure Okta as IDP -SAML Single Sign-On(SSO) for Drupal - Okta SSO Login - configuration
  • Configure Group Attribute Statement (Optional) and click on Next button.
  • Configure Okta as IDP -SAML Single Sign-On(SSO) for Drupal - Okta SSO Login - Add_Attributes

2. Assigning Groups/People

  • After creating and configuring the app go to the Assignments Tab in Okta.
  • Here we select the people and groups you want to give access to login through this app. Assign this to the people/group you would to give access.
  • drupalsaml sp assign groups
  • After assigning the people/groups to your app go to Sign On tab.
  • Click on view setup instructions to get the SAML Login URL (Single Sign on URL), Single Logout URL, IDP Entity ID and X.509 Certificate.
  • drupa saml sp sign on setting

3. Configuring Drupal as Service Provider

  • In miniOrange SAML Module, go to Service Provider Setup tab. There are two ways to configure the Module:
    • miniOrange image By Uploading Okta Metadata File:

      • Click on Upload IDP Metadata.
      • Upload metadata file and click on Upload.

      miniOrange image Manual Configuration :

      • Provide the required settings (i.e. Identity Provider Name, IdP Entity ID or Issuer, SAML Login URL, X.509 Certificate) and save it.
        Identity Provider Name For Example : Miniorange
        IdP Entity ID or Issuer Identity Provider Issuer from Okta Setup Instructions
        SAML Login URL Identity Provider Single Sign-On URL from Okta Setup Instructions
        X.509 Certificate X.509 Certifiacate from Okta Setup Instructions

Additional Resources


Our Other Module

If you are looking for anything which you cannot find, please drop us an email on drupalsupport@xecurify.com

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com