Search Results :

×

Nextcloud SAML Single Sign-On (SSO) Integration with Drupal as IdP

Drupal can be set as a centralized identity provider or an authentication source for the users across other applications via Single Sign-On (SSO). This document will walk you through the steps of integrating Drupal as SAML 2.0 IDP and Nextcloud as a Service Provider (SP) using the miniOrange SAML IDP module. This will allow you to manage users and their permissions in a place and at the same time the users can access multiple applications with single credentials. The module is compatible with Drupal 7, Drupal 8, Drupal 9, and Drupal 10.

Note: You will require a Premium version of the module to configure the Nextcloud as SP and Drupal as IDP.

Installation Steps 


  • Download the module: 
    composer require 'drupal/miniorange_saml_idp'
  • Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Identity Provider using the search box.
  • Enable the module by checking the checkbox and click on install button.
  • Configure the module at 
    {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
  • Install the module: 
    drush en miniorange_saml_idp
  • Clear the cache: 
     drush cr
  • Configure the module at 
    {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
  • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
  • Install the Drupal SAML IDP 2.0 Single Sign On (SSO) - SAML Identity Provider module either by downloading the zip or from the URL of the package (tar/zip).
  • Click on Enable newly added modules.
  • Enable this module by checking the checkbox and click on install button.
  • Configure the module at 
    {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup

Obtain SAML IDP Metadata from Drupal:

  • After the successful module installation, navigate to the Configuration → People → Drupal SAML IDP Configuration.
    • Drupal-SAML-IDP-Single-Sign-On-Click-on-Drupal-SAML-IDP-Configuration
  • From the IDP Metadata tab, copy the IDP-Entity ID/Issuer and SAML Login URL. Optionally, download the Certificate (open in Notepad and copy). Keep these for configuring Nextcloud as a SAML SP.
    • Drupal-SAML-IDP-Single-Sign-On-Copy-the-metadata

Configure Nextcloud as a Service Provider:

  • Login to your Nextcloud Web interface as admin.
  • Navigate to the Profile Icon from the top right side and click on Apps.
    • Nextcloud-SAML-Single-Sign-On-Navigate-to-profile-and-click-on-Apps
  • Under the search field, search for SSO & SAML authentication and click on the Download and Enable button.
    • Nextcloud-SAML-Single-Sign-On-Search-SSO-and-SAML
  • Again, navigate to the Profile icon and click on Administration settings.
    • Nextcloud-SAML-Single-Sign-On-Administration-Settings
  • From the left panel, scroll down, and click SSO & SAML authentication, then select Use built-in SAML authentication.
    • Nextcloud-SAML-Single-Sign-On-Use-built-and-SAML-Authetication
  • Under Global settings, enable the checkbox Allow the use of multiple user back-ends. (e.g. LDAP)
    • Nextcloud-SAML-Single-Sign-On-Enable-checkbox-to-allows-to-multiple-use
  • In General, enter the following information in the corresponding text fields.
    • Attribute to map the UID to Email
    Optional display name of the identity provider (default “SSO & SAML log in”) Enter the Application name as Drupal
  • Provide the appropriate information in the Configure your IdP settings section of the Nextcloud Application from the IDP Metadata tab of the module.
    • Nextcloud Field Identity Provider Information (Drupal)
    Identifier of the IdP entity IDP-Entity ID / Issuer
    URL Target of the IdP where the SP will send the Authentication Request Messag SAML Login URL
    Nextcloud-SAML-Single-Sign-On-Provide-your-IdP-Information-here
  • Click Show optional Identity Provider settings, then paste the copied Certificate (from the Drupal site) into the Public X.509 certificate of the IdP textfield.
    • Nextcloud-SAML-Single-Sign-On-Paste-the-IdP-X-509-Certificate
  • Click on the Download Metadata XML button to download the Nextcloud metadata.
    • Nextcloud-SAML-Single-Sign-On-Click-on-Download-metadata-xml

Configuring Drupal as SAML Identity Provider (IdP):

  • Head towards the Drupal site and navigate to the Service Provider Setup tab of the miniOrange SAML IDP module ( /admin/config/people/miniorange_saml_idp/sp_setup). (/admin/config/people/miniorange_saml_idp/sp_setup)
  • Click on the Upload SP Metadata.
    • Drupal-SAML-IDP-Select-Upload-Metadata
  • Upload the metadata file downloaded from the Nextcloud.
    • Drupal-SAML-IDP-Upload-Metadata
  • Click on the Test button to test the SSO.
    • Drupal-SAML-IDP-Select-Test-Configure
  • If the Test is successful, a new window will appear in which you will be logged in to the Nextcloud dashboard.

You have successfully configured the SAML SSO between Nextcloud as SAML SP and Drupal as SAML IDP.

Additional Features:

Explore the advanced features offered by the module with full-featured trial. You can initiate the trial request using Request 7-day trial button of the module or reach out to us at drupalsupport@xecurify.com for one-on-one assistance from Drupal expert.

 Case Studies
miniOrange has successfully catered to the use cases of 400+ trusted customers with its highly flexible/customizable Drupal solutions. Feel free to check out some of our unique case studies using this link.
Read more
 Other Solutions
Feel free to explore other Drupal solutions that we offer here. The popular solutions used by our trusted customers include 2FA, User Provisioning, Website Security. 
Know more
  24*7 Active Support
The Drupal developers at miniOrange offer quick and active support for your queries. We can assist you from choosing the best solution for your use case to deploying and maintaining the solution.
Contact us
Trending searches:
Hello there!

Need Help? We are right here!
support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com