WordPress SAML SP Single Sign-On (SSO) plugin gives the ability to enable SAML Single Sign-On (SSO) for your WordPress sites. Our plugin is compatible with all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure SSO between WordPress site and Okta by considering Okta as IdP.
Pre-requisites : Download And Installation
To configure Okta as SAML IdP with WordPress, you will need to install the miniOrange WP SAML SP SSO plugin:
Follow the steps below to configure Okta as IdP
Configure Okta as IdP
|Single Sign On URL||Enter ACS (AssertionConsumerService) URL from the Service Provider metadata tab of the module.|
|Audience URI (SP Entity ID)||Enter SP Entity ID / Issuer from the Service Provider Metadata tab of the module.|
|Default Relay State||Enter Relay State from the Service Provider Metadata tab of the module.|
|Name ID Format||Select E-Mail Address as a Name Id from dropdown list.|
|Application Username||Okta username.|
We will go through the steps to setup WordPress as a Service Provider. Here, we will be adding the IdP metadata to configure the plugin.
NOTE: If you click on Test Configuration button in Service Provider Setup tab and authenticate with your IDP, you can see a list of attributes sent by the IDP in the Attribute/Role mapping tab. This information can be used to provide the above mapping.
In the standard plugin, you can choose a default role which will be assigned to all the non-admin users when they perform SSO.
In the Standard plugin you can enable SP-initiated SSO using the following options.
NOTE: Please enable the Backdoor login and note down the backdoor URL. This will allow you to access the WordPress login page in case you get locked out of the IDP.
If you are looking for anything which you cannot find, please drop us an email on email@example.com