Search Results :

×
Sign Up Contact Us

Contents

nopCommerce SAML Single Sign-On (SSO) with Azure AD as IDP

nopCommerce SAML Single Sign-On (SSO) plugin gives the ability to enable SAML Single Sign-On for your nopCommerce store. Using Single Sign-On you can use only one password to access your nopCommerce store and services. Our plugin is compatible with all the SAML compliant identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between nopCommerce and Azure AD considering Azure AD as IdP.

download plugin button Download plugin pricing button plugin pricing button Pricing Plans

  • Download the nopCommerce SAML Single Sign-On (SSO) module.
  • To install the plugin, login as admin into your nopCommerce store. In the admin dashboard, navigate to Configuration Tab >> Local plugins.
nopCommerce Configuration Tab

  • Click on the Upload plugin or theme button at the top right corner, then in the popup window, click Choose File, select the downloaded plugin ZIP file, and click Upload plugin or theme to proceed.
nopCommerce - Upload Plugin

nopCommerce - Upload Plugin popup window

  • After uploading the plugin, click on Restart Application to apply the changes. Once the application restarts, you will see the plugin listed below. Click on the Install button to install it, and then click Restart Application again to apply the changes.
nopCommerce - Restart application

nopCommerce - Install Plugin

Step by Step guide for nopCommerce SAML SSO using Azure AD as Identity Provider.

  • After successful installation, locate the plugin in the list and click on the Configure button to proceed with the setup.
nopCommerce - Configure Plugin

  • On clicking Configure, you will be redirected to the license activation page, and you will receive a trial license key on your registered email.
  • If you have not received the license key on your provided email, use the Download License Key button in the plugin to download the license file.
nopCommerce - Download License Key

  • To activate the plugin, you can either:
    • Enter the license key received via email in the provided input field.

      • OR

    • Upload the license file that you downloaded using the button mentioned above.
nopCommerce - Activate the plugin

nopCommerce - Activate the plugin

  • Then, check the box "I have read the above conditions and I want to activate the middleware", and click Activate License button.
nopCommerce - Check Box

  • After successful license activation, the plugin dashboard will open as shown below.
  • In the plugin dashboard, click on the Service Provider Metadata button from the top menu. This will open the Service Provider Metadata page.
nopCommerce - Service Provider Metadata Button

You can obtain the SAML SP metadata using either of the two methods described below to configure it on your Identity Provider end.

A] Using SAML metadata URL or metadata file
  • On this page, you can find the Metadata URL as well as the option to download the SAML metadata XML file.
  • Copy the Metadata URL or download the metadata file to configure the same on your Identity Provider end.
  • You may refer to the screenshot below:
nopCommerce - Metadata url and download option

B] Uploading Metadata Manually
  • On this page, you can manually copy the service provider metadata such as SP Entity ID, ACS URL, Base URL and share it with your Identity Provider for configuration.
  • You may refer to the screenshot below:
nopCommerce - Copy metadata manually

  • Select Azure Active Directory.
Azure AD - Azure Active Directory

  • Select Enterprise Application.
Azure AD - Enterprise Application

  • Click on New Application.
Azure AD - New Application

  • Click on Create your own Application.
Azure AD - Create your own Application

  • Enter the name for your app, then select Non-gallery application section and click on Create button.
Azure AD - Create your own Application

  • Click on Setup Single sign-on.
Azure AD - Setup Single sign-on

  • Select the SAML tab.
Azure AD - SAML Tab

  • After clicking on Edit, enter the SP Entity ID for Identifier and the ACS URL for Reply URL from Service Provider Metadata tab of the plugin, which you will get from Step 2B.
Azure AD - Select SAML authentication SSO Azure AD - Select SAML authentication SSO

  • By default, the following Attributes will be sent in the SAML response. You can view or edit the claims sent in the SAML response to the application under the Attributes tab.
Azure AD - Attributes

  • Copy the App Federation Metadata Url to get the Endpoints required for configuring your Service Provider.
Azure AD - App Federation Metadata Url

  • Assign users and groups to your SAML application
    • Navigate to Users and groups tab and click on Add user/group.
    Azure AD - Users and groups

    • Click on Users to assign the required user and then click on select.
    Azure AD - Users and groups

    • You can also assign a role to your application under Select Role section.

You have successfully configured Microsoft Entra ID (formerly Azure AD) as SAML IDP (Identity Provider) for achieving nopCommerce Single Sign-On (SSO).

  • Click on the Add new IDP button to configure a new Identity Provider.
nopCommerce - Add new IdP

  • Under the Plugin Settings tab, select Azure AD as your identity provider from the list shown.
nopCommerce - IdP List

  • After selecting your IdP from the list, the Identity Provider Configuration page will open. On this page, click on the Upload IdP Metadata button.
nopCommerce - Upload IdP Metadata Button

There are two ways detailed below with which you can configure your SAML Identity Provider metadata in the plugin.

A] Upload metadata using the Upload IDP Metadata button:
  • Enter the IdP Name, then either provide the metadata URL in the Fetch Metadata section and click Fetch Metadata to retrieve the configuration automatically, or upload the metadata XML file using the Upload Metadata option to configure the IdP.
  • You may refer to the screenshot below:
nopCommerce - metadata url or metadata file

B] Configure the identity provider metadata manually:
  • Alternatively, under the Identity Provider Settings tab, you can manually fill in the mandatory fields like IDP Name, IDP Entity ID and Single Sign-On URL and click Save Settings.
nopCommerce - Entity Id, SSO Url, SAML Certificate

nopCommerce - Entity Id, SSO Url, SAML Certificate

  • After uploading the metadata details, navigate back to the Dashboard. Click on the three dots (⋮) next to the configured Identity Provider and select Test Configuration.
nopCommerce - Test Configuration

  • On successful configuration, you will get attributes name and attribute values in the test configuration window.
nopCommerce - Successful Test Configuration

  • If you are experiencing any error, you can troubleshoot it using the steps below:
  • Click on the Troubleshoot SSO button and enable the required log levels.
  • Download the log file using the Download Logs button to identify what went wrong.
  • You can share the log file with us at nopcommercesupport@xecurify.com and our team will reach out to you to resolve your issue.
nopCommerce - Download Logs

  • Click on the three dots (⋮) next to the configured Identity Provider and select SSO Link.
  • A “Copy to Clipboard” pop-up will appear. Click OK to copy the SSO link to your clipboard.
nopCommerce - Copy SSO Link

nopCommerce - Copy SSO Link

Related Articles


 Thank you for your response. We will get back to you soon.

Something went wrong. Please submit your query again

We'll Reach Out to You at the Earliest!


ADFS_sso ×
Hello there!

Need Help? We are right here!

support