Nextcloud SAML Single Sign-On SSO login using Drupal as IDP
Drupal Nextcloud SSO Integration will allow you to configure Single Sign On (SSO) login between your Drupal site and Nextcloud. Nextcloud SSO integration with your Drupal site will help your users to login into Nextcloud using their Drupal credentials. This SSO setup will also help you to manage your users in one single place. The Drupal SAML IDP - SAML 2.0 Identity Provider Single Sign-On module is compatible with Drupal 7, Drupal 8, Drupal 9 as well as Drupal 10. This guide will walk you through the steps to configure SAML SSO login between Nextcloud as SP (Service Provider) and Drupal as IDP (Identity Provider).
If you have any queries, you can contact us at drupalsupport@xecurify.com. We can also schedule an online meeting to help you configure the Drupal SAML IDP module.
Pre-requisite: Download and Installation
- Download the module:
composer require 'drupal/miniorange_saml_idp'
- Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Identity Provider using the search box.
- Enable the module by checking the checkbox and click on install button.
- Configure the module at
{BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
- Install the module:
drush en miniorange_saml_idp
- Clear the cache:
drush cr
- Configure the module at
{BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
- Navigate to Extend menu on your Drupal admin console and click on Install new module button.
- Install the Drupal SAML IDP 2.0 Single Sign On (SSO) - SAML Identity Provider module either by downloading the zip or from the URL of the package (tar/zip).
- Click on Enable newly added modules.
- Enable this module by checking the checkbox and click on install button.
- Configure the module at
{BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
Note: Setting up SSO to Nextcloud requires the Premium Version of the SAML IDP module. You can reach out to us at drupalsupport@xecurify.com for free trial of the module.
Steps to configure Nextcloud SAML Single Sign-On (SSO) Login into Drupal website
1. Configure Nextcloud as Service Provider:
- Go to miniOrange SAML IDP module and login with miniOrange account.
- Go to IDP Metadata, Copy the IDP Entity ID/Issuer and SAML Login URL.
- Open a new browser tab or window, log in to your Nextcloud account as Account Admin.
- Click on the top right corner. Select Apps.
- Search for SSO & SAML Authentication. Click on Download and Enable.
- Click on the top right corner, and select Settings. Find SSO & SAML Authentication on the left menu bar, and open it.
- Click on Use built-in SAML Authentication, click on Add Identity Provider.
- Enter the following information into the Nextcloud as Service Provider setup.
| Attribute to map the UID to | |
| Identifier of the IDP Entity | Copy the IDP Entity ID / Issuer from IDP Metadata tab in Drupal SAML IDP module and paste here. |
| URL Target of the IDP | Copy the SAML Login URL from IDP Metadata tab in Drupal SAML IDP module and paste here. |
| Certificate | Download the Certificate from IDP Metadata tab in Drupal SAML IDP module. Open it in notepad. Copy and paste the content here. |
Once this is done, click on Download metadata XML to download the SP metadata XML file.
2. Configure Drupal as Identity Provider
- In the Service Provider Setup tab, you can enter the name of Service Provider as Nextcloud (Nextcloud as SAML SP).
- There are two way to configure your Identity Provider (Drupal as SAML IDP):
- Click on UPLOAD SP METADATA link.
- You can either Upload Metadata File and click on Upload button or use a Upload Metadata URL and click on Fetch Metadata.
- Navigate to Service Provider Setup tab of the miniOrange Drupal IDP module.
- Provide the required settings (i.e. Service Provider Name, SP Entity ID or Issuer, ACS (Assertion Consumer Service) URL, X.509 Certificate (Optional)) as provided by your Service Provider Nextcloud (Nextcloud as SP).
A. By Uploading SP metadata:
B. Manual Configuration:
| Service Provider Name | Nextcloud |
| SP Entity ID or Issuer | https://<your Nextcloud URL>/index.php/apps/user_saml/saml/metadata |
| ACS URL | https://<your Nextcloud URL>/index.php/apps/user_saml/saml/acs |
| Name ID Format | urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress |
3. Attribute Mapping
- Navigate to Mapping tab of the miniOrange SAML IDP module. Under User Attribute section, enter the following information and click Save Configuration button. This step is mandatory to configure Drupal as IDP and Nextcloud as SP.
Attribute Name Attribute Value EMail Email Address - Click on Test Configuration button to test your configuration.
4. Test Configuration
If the test configuration is successful the module is successfully configured. If you face any issues in test configuration you can reach us at drupalsupport@xecurify.com with the screenshot of the test configuration window.
24*7 Active Support
If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP SSO Login module.
Free Trial
If you would like to test out the module to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at drupalsupport@xecurify.com requesting a trial. You can create an account with us using this link.
Additional Resources
- What is Single Sign-On (SSO)?
- What is SAML?
- what is SSO? How works SAML SSO authentication?
- Frequently Asked Questions (FAQs)
Our Other modules
Need Help? We are right here!
