Drupal Rocket.Chat SSO Integration will allow you to configure Single Sign On ( SSO ) login between your Drupal site and Rocket Chat. Rocket Chat SSO integration with your Drupal site will help your users to login into Rocket Chat using their Drupal credentials.

This SSO setup will also help you to manage your users in one single place. The Drupal SAML IDP - SAML 2.0 Identity Provider Single Sign-On SSO module is compatible with Drupal 7, Drupal 8 as well as Drupal 9. Here we will go through a step-by-step guide to configure SAML IDP SSO login between Rocket Chat as SP ( Service Provider ) and Drupal as IDP ( Identity Provider ).

If you have any doubts or queries, you can contact us at drupalsupport@xecurify.com. We will help you to configure the module. If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP module.

1. Configure Drupal site as Identity Provider

• Navigate to the Service Provider Setup tab of the miniOrange SAML Identity Provider module on your Drupal site. There are two way to configure your Identity Provider ( Drupal as SAML Idp ):

A. By Uploading SP metadata:

• Click on UPLOAD SP METADATA link.
• You can either Upload Metadata File and click on Upload button or use a Upload Metadata URL and click on Fetch Metadata.


B. Manual Configuration:

• Navigate to Service Provider Setup tab of the miniOrange Drupal SAML IDP module.
• Provide the required settings (i.e. Service Provider Name, SP Entity ID or Issuer, ACS (Assertion Consumer Service) URL, X.509 Certificate (Optional)) as provided by your Service Provider Rocket Chat ( Rocket Chat as SP ).

Service Provider Name	RocketChat
SP Entity ID or Issuer	https://<your-rocketchat-url>/_saml/metadata/<name-of-your-app>
ACS URL	https://<your-rocketchat-url>/_saml/validate/<name-of-your-app>
NameID Format	urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
Assertion Signed	Check to sign the SAML Assertion.



2. Configure Rocket Chat as Service Provider

• Open a new browser tab or window, Log in to your RocketChat account as Account Admin.
• Click on the left corner. Select Administration.

• Search for SAML under Administration tab.
• Enter the information into the corresponding fields.

Custom Provider	<name-of-your-app>
Custom Entry Point	Enter the SAML Login URL copied from step 2.
IDP SLO Redirect URL	Enter the SAML Logout URL copied from step 2.
Custom Issuer	https://<your-rocketchat-url>/_saml/metadata/<name-of-your-app>
Public Cert Contents	(a) Open the Public Cert Contents dropdown (b)Open the downloaded (in step 2) certificate in notepad. Copy and paste the content here.
Signature Validation Type	Validate Either Signature
User Data Field Map	Open the User Data Field Map dropdown and enter the following attributes: {"username":"username", "email":"email", "name": "cn"}

Note: Custom Provider = <name of your app> e.g. my-app



Once this is done, click on Enable and Save Changes.

---

24*7 Active Support

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP SSO Login module.

Free Trial

If you would like to test out the module to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at drupalsupport@xecurify.com requesting a trial. You can create an account with us using this link.

Additional Resources

• What is Single Sign-On (SSO)?
• What is SAML?
• what is SSO? How works SAML SSO authentication?
• Frequently Asked Questions (FAQs)

Our Other modules

SAML SP  |  SAML IDP  |   User Provisioning & Sync  |   Two-Factor Authentication  |   Passwordless Authentication  |   OAuth/OIDC Client  |  LDAP / AD Login  |  OAuth Server  |  Decoupled / Headless Authentication  |  OTP Verification  |  Website Security  |  Rest API Authentication  |  SCIM User Provisioning