SAML Single Sign-On (SSO) into Tableau using Joomla IDP Plugin
Single Sign-On in Tableau using Joomla IDP allows users to log in to Tableau using Joomla by configuring Tableau as a Service Provider (SP) and Joomla as a SAML Identity Provider (IDP). This guide will take you through a step-by-step process to configure SSO between the two platforms.
What is Tableau?
Tableau is a powerful business intelligence tool used for data visualization in the form of charts, graphs, and
more, to gain business insights for better company development. It is an interactive tool that helps business
managers and team leaders make quicker and more appropriate decisions. Non-technical staff can also create
customized dashboards for their work using Tableau's drag-and-drop interface.
Pre-requisites: Download And Installation
Install Joomla IDP Plugin
- Download the zip file for the miniOrange Joomla IDP plugin.
- Log into your Joomla site’s administrator console.
- From left toggle menu, click on System, then under Install section click on Extension.
- Upload the downloaded zip file to install the Joomla IDP plugin.
- Installation of the plugin is successful. Now click on Start Using miniOrange SAML IDP to configure miniOrange Joomla IDP plugin.
Steps to configure Tableau SSO with Joomla as IDP.
1. Configure Tableau as Service Provider
- Go to the miniOrange Joomla IDP plugin, navigate to the Identity Provider tab.
- Here, you can find the Identity Provider Metadata URL/XML Metadata or endpoints like IDP Entity ID, SAML Login URL, SAML Logout URL (Premium Feature), Certificate for SP configuration.
- Log in to your Tableau Dashboard as Admin.
- Go to Authentication Settings in the Settings menu.
- Under Authentication types, select Enable an additional authentication method and enable SAML as shown below. Click on Edit Connection.
- Note down the Tableau Entity ID and Assertion Consumer Service URL (ACS URL) which will be needed to configure the plugin, or directly download the metadata by clicking on Export metadata and later upload it in the configuration of the Joomla IDP plugin.
- Please upload the Joomla IDP Metadata file that you downloaded in this step to the Import metadata file section. Then, click on the Apply button to upload the Metadata file.
In order to resolve this error the localhost environment of the Joomla should be opened using https and not http, and then download the idp metadata from there.
2. Configure Joomla as Identity Provider
- Now go to Components miniOrange Joomla IDP Service Provider
- Navigate to the Service Provider tab and complete the fields for Service Provider Name, SP Entity ID or Issuer, ACS URL, and NameID Format. Refer to this step to get Service Provider details. Fill in the other fields according to your requirements. Click on Save.
- Click on NameID Attribute tab. Select the NameID Attribute and then click on Save Button.
Enter the following values:
| Service Provider Name | Choose appropriate name according to your choice. |
| SP Entity ID or Issuer | Service Provider Entity ID. |
| ACS URL | SP Assertion Consumer Service URL. |
| X.509 Certificate (optional) [For Signed Request] | Paste certificate value you copied from the Metadata file. |
| NameID Format | Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress. |
| Assertion Signed | Checked. |
You have successfully completed your miniOrange SAML 2.0 IDP configurations.
3. Attribute Mapping (Premium Feature)
- In the miniOrange Joomla IDP plugin, navigate to the Attribute Mapping tab.
- Here, you can configure Custom attribute mapping and also add additional User Attributes.
- Go to the Match Attributes section in Tableau Online and match the attributes of Joomla IDP with that in Tableau Online. Select First and last name option in Display Name. Click on Apply.
- To select the users to enable SSO for, go to Manage Users, click on the dropdown list and select Modify Existing Users or go to Users section.
- Click on the three dots on the right of Display Name under Action of the user you wish to modify. Select Authentication and under it select SAML. Click Update.
Note: In the Manage Users’ section, a new user has to be created other than the admin, and the same user should be created with same credentials in Joomla.
4. Test SSO
- Go back to the Import Metadata file into Tableau Online section and click on Test Connection. Upon successful connection, you will see the following message on your screen.
5. Embedded Views (Optional)
- After following the above steps to Single Sign On (SSO) in Tableau, select Default Authentication Type of Embedded Views to Authenticate using an inline frame from Authentication Settings.
- Go to your Tableau View and select the view you desire to show in an Iframe.
- Click on Share, and then click on Copy Link or on Copy Embed Code.
- Now you can add the above embed code in your Joomla site.
You have successfully configured Single Sign-On with Tableau as Service Provider and Joomla as Identity Provider. If you require any further support or, if you are facing any difficulty please mail us on joomlasupport@xecurify.com
Free Trial
If you would like to test out the plugin to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at joomlasupport@xecurify.com requesting a trial. You can create an account with us using this link.
Additional Resources.
Need Help? We are right here!
