Moodle SAML Single Sign-On (SSO) Integration with Drupal as IdP

Overview

This guide will help you integrate Drupal as a SAML 2.0 Identity Provider (IdP) and Moodle as a Service Provider (SP) using the miniOrange SAML IDP module. This integration enables centralized user management and permission control, allowing users to access multiple applications with a single set of credentials. The module is compatible with Drupal 7, Drupal 8, Drupal 9, Drupal 10, and Drupal 11.

Download Schedule a Meeting

Prerequisite:

• Download the plugin from the Moodle Plugin Directory and install it in the Moodle referring to the steps below:
• Login as administrator in Moodle.
• Navigate to the Site Administrator → Plugins → Install plugins. In Plugin installer → beside the ZIP package → click on Choose a file.
• A File Picker window will appear on the left side. Select Upload a file and then click on the Choose File button. (upload the zip file that you downloaded from the Moodle Plugins Directory)
• Click on the Upload this File button.

• Click the Install the plugin from the ZIP file button and then click on the Continue button to proceed.

• Click on the Upgrade Moodle database now button, and then click on the Continue button.

Configuration Steps

Drupal SAML IDP Metadata:

• Go to Configuration → People → Drupal SAML IDP Configuration in the Administration menu. (/admin/config/people/miniorange_saml_idp/customer_setup)

• Under the IDP Metadata tab, copy Metadata URL and keep it handy. (This is required to configure SP.)

Configure SAML SSO Application in Moodle LMS (E-learning):

• Log in to your Moodle administrator account.
• Navigate to the Site administrator → Plugins..

• Under the Service Provider Metadata tab click on the Download Service ProviderMetadata link to download the XML metadata file. Keep it handy. This is required to configure Drupal as a SAML Identity Provider (IdP).

• Scroll down to the Service Provider Setup tab of the plugin.
• Enter the Identity Provider Name. Paste the previously copied IdP metadata URL from Drupal into the IDP Metadata URL/XML text field.
• Click on the Save changes button.

Configuring Drupal as SAML Identity Provider (IdP):

• Navigate to the Drupal site. Go to the Identity Provider Setup tab of the module and click on the Upload SP Metadata.
• In the Upload Metadata File field, choose the SP metadata file that you downloaded from Moodle and click on the Upload button.

You have successfully configured the SAML SSO between Moodle as SAML SP and Drupal as SAML IDP.

Send Attributes from Drupal:

• Go to the Mapping tab of the module.
• Scroll down to the Basic Attribute Mapping section and enter the Attribute Name and Attribute Value in their respective text fields.
• Once done, click the Save Configuration button.

Attribute Mapping:

• Navigate to your Moodle site.
• In the Moodle dashboard → Site administration → Plugins.
• Scroll down to the Attribute Mapping section.
• To allow the plugin to access user details, assign the Email and Username attributes. You can also map other attributes like Firstname and Lastname. Click the Save changes button to save your settings.
• When a user performs SSO, the Identity Provider sends a unique NameID value that identifies the user.

Test Connection between Moodle and Drupal:

• Scroll down to the the Test Configuration and click the Click here link.

• On a Test Configuration popup, sign in with Drupal site credentials (if the user session does not exist). After successful authentication, the list of attributes received from the Drupal site will be displayed.
• Click on the Done button.

SSO Settings:

• To Perform SP-Initiated SSO on your site:
• Open an incognito or private window and log in to your Moodle site.
• Click the SSO-initiated link. (Login with Drupal)

Moodle is successfully configured as a SAML SP for Drupal SSO login

Related Articles

Explore the advanced features offered by the module with full-featured trial. You can initiate the trial request using Request 7-day trial button of the module or reach out to us at drupalsupport@xecurify.com for one-on-one assistance from Drupal expert.

• Setup Multiple Applications (Service Provider) with Drupal
• Share additional User Attribute/Roles to the Service Provider
• Dynamic Relay State (The URL to which users are redirected after successful authentication)
• IDP initiated SSO

24/7 Support

The Drupal developers at miniOrange offer quick and active support for your queries. We can assist you from choosing the best solution for your use case to deploying and maintaining the solution.

 Contact us

Case Studies

miniOrange has successfully catered to the use cases of 400+ trusted customers with its highly flexible/customizable Drupal solutions.

 Read more

Other Solutions

Feel free to explore other Drupal solutions that we offer the popular solutions used by our trusted customers include 2FA, User Provisioning, Website Security.

 Know More