SAML Single Sign On ( SSO ) into Drupal using Absorb LMS as IDP


Drupal SAML Absorb LMS SSO ( Single Sign-on ) setup will allow your user to login to your Drupal site using their Absorb LMS Credentials. Drupal SAML module gives the ability to enable SAML Single Sign-on for Drupal. This module is compatible with all SAML Identity Providers ( IDP ). We provide Drupal SAML Single Sign on - Service Provider module which is compatible with Drupal 7, Drupal 8 and Drupal 9. Here we will go through a guide to configure SAML SSO between Drupal and Absorb LMS Idp. By the end of this guide, users from your Identity Provider should be able to login into the Drupal site.

If you have any queries or if you need any sort of assistance in configuring the module, you can contact us at drupalsupport@xecurify.com. If you want, we can also schedule an online meeting to help you configure the Drupal SAML Single Sign on - Service Provider SSO Login module.

Features and Pricing

Know more about Drupal SAML Single Sign On - Service Provider module from here.

Pre-requisites: Download

You can download the SAML Single Sign On - Service Provider module from here.

1. Install Drupal SAML SP 2.0 Single Sign On (SSO) module

    1.1. Using Composer:

    • Composer require drupal/miniorange_saml
    • Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Service Provider using the search box.
    • Enable the module by checking the checkbox and click on install button.
    • Configure the module at
      {BaseURL}/admin/config/people/miniorange_saml/idp_setup

    1.2. Using Drush:

    • Download the module:
      drush dl drupal/miniorange_saml
    • Install the module:
      drush en drupal/miniorange_saml
    • Clear the cache:
       drush cr
    • Configure the module at
      {BaseURL}/admin/config/people/miniorange_saml/idp_setup

    1.3. Manual installation:

    • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
    • Install the Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module either by downloading the zip or from the URL of the package (tar/zip).
    • Click on Enable newly added modules.
    • Enable this module by checking the checkbox and click on install button.
    • Configure the module at
      {BaseURL}/admin/config/people/miniorange_saml/idp_setup

Steps to configure Drupal SAML Single Sign-On ( SSO ) Login into Absorb LMS

2. Configuring Drupal as Service Provider

    In miniOrange SAML module, go to Service Provider Setup tab of the module. There are two ways to configure the module:

    A. By uploading IDP metadata:

    • Click on Upload IDP metadata button.
    • Enter the Identity Provider Name
    • You can either upload a metadata file and click on Upload button or use a metadata URL and click on Fetch Metadata.
    • drupal saml upload metadata

    B. Manual Configuration:

    • Provide the required settings (i.e. Identity Provider Name, IdP Entity ID or Issuer, SAML Login URL, X.509 Certificate) as provided by your Identity Provider and click on the Save button.
    • drupal saml idp service provider configuration

3. Configuring Absorb LMS as Identity Provider

Follow the steps below to configure Absorb LMS as IdP

miniorange img Configure Absorb LMS as IdP
  • In the miniOrange SAML SP SSO module, navigate to Service Provider Metadata tab. Here, you can find the SP metadata such as SP Entity ID and ACS (AssertionConsumerService) URL which are required to configure the Identity Provider.
  • Drupal saml upload metadata
  • Login to the Absorb admin portal as a System Admin and navigate to Portal Settings. From Portal Settings, there is a button in the right-side menu labelled Manage SSO Settings. If you can't see this button, please contact your Absorb Client Success Manager to discuss enabling the feature.
  • Absorb LMS manage sso settings
  • Click Add at the bottom of the page.
  • Now in the Name field you can enter some descriptive connection name of your choice. This name is only visible to admins.
  • Absorb LMS SP initiated outbound setup
  • In the Method field select SAML.
  • In the Key field enter the Service provider certificate which you can get from the miniOrange SAML module under the Service Provider Setup tab.
  • Absorb LMS SP certificate
  • In the Id Property field select the Absorb user profile field that Absorb should send as the NameID in the SAML assertion. This should be a unique identifier for learners.
  • The Assertion Consumer Service Url can be left blank as it should be provided to Absorb via the SAML Request. However if you are experiencing issues, you can hard code an ACS URL which you can get from the Service Provider Setup tab of the miniOrange SAML module.
  • Set the Signature Type to SHA1.
  • Include User Data: You can opt to send user data from the Absorb LMA to Drupal site in addition to the SAML Response by enabling this toggle.

    If OFF: No attributes will be included in the response.
    If ON: Absorb will append the following LMS attributes to the SAML Response in the AttributeStatement:
    • FirstName
    • LastName
    • Email
    • UserId
    • Username
    • UserExternalId
    • EmployeeNumber
    • JobTitle
    • DepartmentId
    • DepartmentName
    • ExternalDepartmentId
    • IsAdmin
  • Absorb LMS include user data
  • Include Custom Fields: You can select to include any custom user fields present in the Absorb LMS as part of the attributes returned in the SAML Response.
    Note: This field is only visible if Include User Data is on.
  • Absorb LMS include custom fields

24*7 Active Support:

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML SP modules.


Additional Resources


Our Other Module

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com