Search Results :

×

Drupal Oracle SSO | SAML SSO Into Drupal Using Oracle ( OAM )


Drupal SAML Oracle SSO ( Single Sign-on ) setup will allow your user to login to your Drupal site using their Oracle Credentials. Drupal SAML module gives the ability to enable SAML Single Sign-on for Drupal. This module is compatible with all SAML Identity Providers ( IDP ). We provide Drupal SAML Single Sign on - Service Provider module which is compatible with Drupal 7, Drupal 8 and Drupal 9. Here we will go through a guide to configure SAML SSO between Drupal and Oracle Idp. By the end of this guide, users from your Identity Provider should be able to login into the Drupal site.
If you have any queries or if you need any sort of assistance in configuring the module, you can contact us at drupalsupport@xecurify.com. If you want, we can also schedule an online meeting to help you configure the Drupal SAML Single Sign on - Service Provider SSO Login module.


Pre-requisite: Download and Installation 


  • Download the module:
    Composer require 'drupal/miniorange_saml'
  • Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Service Provider using the search box.
  • Enable the module by checking the checkbox and click on install button.
  • Configure the module at
    {BaseURL}/admin/config/people/miniorange_saml/idp_setup
  • Install the module:
    drush en drupal/miniorange_saml
  • Clear the cache:
     drush cr
  • Configure the module at
    {BaseURL}/admin/config/people/miniorange_saml/idp_setup
  • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
  • Install the Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module either by downloading the zip or from the URL of the package (tar/zip).
  • Click on Enable newly added modules.
  • Enable this module by checking the checkbox and click on install button.
  • Configure the module at
    {BaseURL}/admin/config/people/miniorange_saml/idp_setup

Step by Step Configuration for Oracle OAM as IDP and Drupal as SAML SP

    1. Obtain the IdP metadata for SP configuration

    2. Obtain the SP metadata for IdP configuration

    • To obtain the Drupal SP metadata you need to provide when configuring Oracle Access Manager Suite Federation as an IdP, perform the following steps:
      • Go to the Service Provider Metadata tab of module and click on metadata URL and Save the metadata to a local file as spmeatadata.xml (you can put any name.)

      • drupal saml single sign on configure idp

    3. Enable Identity Federation in OAM Admin Console

    • Perform the following steps to enable Oracle Access Manager Federation:
    • 1) Go to the OAM Admin Console in a browser. The URL is of the form: https://adminhost:adminport/oamconsole
      2) Authenticate using OAM Admin user credentials.

      3) From the Launch pad Navigate to: Configuration -> Available Services
      4) Enable Identity Federation.
      drupal saml sp oracle access management drupal saml sp available services

    4. Configure the IDP, using Metadata from Drupal SP

    • To configure the IdP, perform the following steps:
      • 1) If necessary, copy the metadata file (spmetadata.xml) you obtained from the Drupal SP to the environment where you are configuring the IdP.
        2) Return to the browser page containing the OAM Console, where you enabled Federation.
        3) Authenticate again if necessary.
        4) Navigate to Launch Pad > Identity Federation > Identity Provider Administration
        drupal saml sp service provider administration
        5) Click on Create Service Provider Partner.
        drupal saml sp service provider partner
        6) Enter a name such as Drupal SP (You can enter any name).
        7) Ensure Enable Partner is selected.
        8) Select SAML 2.0 as the protocol (which is the default).
        9) Select Load from Provider Metadata and click Load the Metadata and upload the Drupal SP metadata (spmetadata.xml) that you copied from the Drupal SP UI.
        10) Specify the NameID Format Settings. What you specify depends on which attribute you use to define the user.

      • If you define the user by the email address, use Email Address as the format. Configure the settings as follows:
        • a) Select Email Address as the Name ID format
          b) Select User ID Store Attribute as the Name ID Value
          c) Enter the User Attribute in the LDAP user record containing the user's email address. For example, if Oracle Internet Directory or Oracle Unified Directory is the User Data Store,the attribute is mail.

          drupal saml sp loadmetadata
          d) Click on Save.
        11) Click on Identity Provider Administration tab within OAM Console and under Search Service Provider Partners click on Search to make sure you can view Drupal SP (or your SP name).
        drupal saml sp identity provider

    5. Setup Drupal as Service Provider

    • In the miniOrage SAML Service Provider module, go to Service Provider Setup tab of the module. There are two way to configure Drupal SAML Service Provider SSO module:
      • A. By Uploading IDP Metadata
      • Click on Upload IDP Metadata link.
      • Click on Upload Metadata File and click on Upload File to fetch your information.
      • You can either Upload Metadata URLand click on Fetch Metadata button.
      • Drupal SAML Service Provider - upload idp metadata
        B. Manual Configuartion
      • Provide the required settings (i.e. Identity Provider Name, Idp Entity ID or Issuer, SAML Login URL and X.509 Certificate ) find to your Identity Provider Oracle and click on Save Configuration button to save your configuration.
      • Identity Provider Name Enter name of Identity Provider
        Idp Entity ID or Issuer Copy Idp Entity ID / Issuer from Oracle Dashboard and paste it.
        SAML Login URL Copy Single Sign On URL from Oracle Dashboard and paste it.
        X.509 Certificate Copy and Download Signing certificate from Oracle Dashboard and paste it.
        Drupal SAML Service Provider - Manual configuartion

    24*7 Active Support

    If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML SP Single Sign On (SSO) module.

    Additional Resources

    Our Other modules

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com