Search Results :

×
Sign Up Contact Us

Contents

SAML Single Sign-On (SSO) into Canvas LMS using Joomla IDP Plugin

Single Sign-On in Canvas LMS using Joomla IDP allows users to log in to Canvas LMS using Joomla by configuring Canvas LMS as a Service Provider (SP) and Joomla as a SAML Identity Provider (IDP). This guide will take you through a step-by-step process to configure SSO between the two platforms.

What is Canvas LMS?
Canvas simplifies course management tasks: publishing course materials, grading, communicating with students, and more. Students can use Canvas to access course content, submit assignments anytime, anywhere and collaborate with peers and instructors.

download plugin button Download Plugin plugin pricing button plugin pricing button Pricing Plans free trial plugin free trial plugin Free Trial
  • Login into your Joomla site’s Administrator console.
  • From left toggle menu, click on System, then under Install section click on Extensions.
  • Now click on Or Browse for file button to locate and install the plugin file downloaded earlier.
Install Joomla SAML IDP Plugin

  • Installation of plugin is successful. Now click on Start Using miniOrange SAML IDP Plugin to configure miniOrange Joomla IDP plugin.
Get Started with SAML IDP Setup

  • Go to the miniOrange Joomla IDP plugin, navigate to the Identity Provider tab.
  • Here, you can find the Identity Provider Metadata XML URL/File or endpoints like IDP Entity ID, SAML Login URL, SAML Logout URL (Premium Feature), and Certificate for SP configuration. Download the XML Metadata by clicking on the button as shown below.
Joomla SAML IDP Metadata

In this setup, Joomla serves as the repository for storing users i.e. it will act as the IDP while Canvas LMS is where users will log in using their credentials from Joomla where Joomla SAML IDP SSO Plugin will be installed.

  • Login to your Canvas LMS domain as an Account Administrator.
  • Switch to Admin view by clicking on the corresponding link from the bottom of the screen.
  • Select Admin from the left pane and select the domain for which you wish to enable Single Sign-On.
Open Canvas LMS Admin Dashboard
  • Click on Authentication in the left pane and navigate to SAML.
Canvas LMS Authentication Settings
  • Enter the values by referring to the table below.
IDP Metadata URI Enter the Metadata URL that points to the metadata document.
IDP Entity ID Enter the IDP Entity value that you got from the previous step.
Log On URL Enter the SAML Login URL that you got from the previous step.
Log Out URL Enter the SAML Logout URL(Premium feature) that you got from the
previous step.
Certificate Fingerprint Follow the steps below to copy the Thumbprint of certificate:
1. Download the certificate from Joomla SAML IDP >> Identity Provider Tab >> Click here to download the certificate.
2. Copy the downloaded certificate.
3. Visit the link https://www.samltool.com/fingerprint.php and paste the copied certificate.
4. Choose the algorithm SHA1 and click on the Calculate Fingerprint button.
Login Attribute NameID
Identifier Format Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
from the dropdown list.
Authentication Context Select urn:oasis:names:tc:SAML:2.0:ac:classes:
PasswordProtectedTransport
from the dropdown list.
Message Signing Select the algorithm to use for signing Request messages sent to the IdP.
For now select Not Signed.
Just In Time Provisioning If checked then it automatically create a user account in your Canvas LMS
if its the first time a user logs in with single sign-on (SSO).
Canvas LMS Configure Settings
  • Click Save to complete the configuration.
  • Now go to Components -> miniOrange Joomla IDP -> Service Provider.
miniOrange Joomla IDP Service Provider tab

  • Navigate to the Service Provider tab and complete the fields for Service Provider Name, SP Entity ID or Issuer, ACS URL, and NameID Format. Refer to this step to get Service Provider details. Fill in the other fields according to your requirements. Click on Save.

Enter the following values:

Service Provider Name Choose appropriate name according to your choice
SP Entity ID or Issuer Service Provider Entity ID
ACS URL SP Assertion Consumer Service URL
X.509 Certificate (optional) [For Signed Request] Paste certificate value you copied from the Metadata file
NameID Format Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
Assertion Signed Checked
Upload SP Metadata

  • Now click on Advance Mapping tab. Select the NameID Attribute and then click on Save Button.
Joomla SAML IDP Advance Mapping

  • You have successfully completed your miniOrange Joomla SAML 2.0 IDP configurations.
  • In the miniOrange Joomla IDP plugin, navigate to the Advance Mapping tab.
  • Here, you can configure Custom attribute mapping and also add additional User Attributes.
Joomla Custom Mapping

  • You have successfully configured Single Sign-On with Canvas LMS as Service Provider and Joomla as Identity Provider. If you require any further support or, if you are facing any difficulty please mail us on joomlasupport@xecurify.com

ADFS_sso ×
Hello there!

Need Help? We are right here!

support