October CMS Single Sign-On ( SSO ) plugin gives the ability to enable SAML Single Sign-On (SSO) for your October CMS sites. Our October CMS SSO plugin is compatible with all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure SAML SSO between October CMS site and your Identity Provider.
To integrate your Identity Provider(IDP) with October CMS, you need the following items:
October CMS should be installed and configured.
Download any Front-end user management plugins - RainLab/Buddies.
Download and Installation
Login to your October CMS site’s backend: https://example.com/backend.
From the admin dashboard, go to Settings from the main navigation bar and select Updates & Plugins.
Click on Install plugins and in the search bar type “SAML SSO”.
Click on the SAML SP Single Sign-On - SSO search result and the plugin will start installing.
Step 1: Setup Centrify as Identity Provider
Follow the steps below to configure Centrify as an Identity Provider
Login as Administrator
Log into Centrify as an Administrator and go to Apps from the NavBar.
Click on Add Web Apps
Configure SAML App
In the pop-up, click on Custom tab and then click on the Add button next to SAML.
In the new SAML App that you created under Application Settings section enter ACS URL as provided in the Step 1 of the plugin under SP Info tab.
Under User Access section select roles that can access this app
Under Advanced section pass the following parameters to the functions in the code:
SP-EntityID / Issuer from Step1 of the plugin under SP Info Tab. E.g: setAudience('https://example.com')
Recipient URL from Step1 of the plugin under SP Info Tab. E.g: setRecipient('https://example.com/plugins/servlet/saml/auth')
Destination URL from Step1 of the plugin under SP Info Tab. E.g: sethttpsDestination('https://example.com/plugins/servlet/saml/auth')
NOTE: Please do NOT change any other function calls.
If you dont hear from us within 24 hours, please feel free to send a follow up email to email@example.com
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.