Meet us at WordCamp Europe | ShopTalk | DrupalCon Conferences to explore our solutions. Know More
SAML Single Sign-On (SSO) into Joomla using Amazon AWS
AWS SAML Single sign-on (SSO) is an authentication method that enables Amazon AWS users to access multiple Joomla applications with one login and one set of credentials. Our plugin is compatible with Joomla 4 and Joomla 5, as well as with all the SAML 2.0 compliant Identity Providers. Here we will go through a step-by-step guide to configure SAML SSO login between Joomla site and Amazon AWS by considering Amazon AWS as IdP (Identity Provider) and Joomla as SP (Service Provider). Amazon AWS Single Sign On (SSO) for Joomla miniOrange provides a ready to use solution for Joomla. This solution ensures that you are ready to roll out secure access to your Joomla site using Amazon AWS within minutes.
Visit our Joomla SAML SP Plugin page to learn more about the features and Pricing plans we offer for the Joomla SAML SP Single Sign-on plugin.
Pre-requisites : Download And Installation
1. Setup Amazon AWS as IDP with Joomla as SP
1.A. Download and Setup Joomla SAML SP Plugin
- Download the zip file for the miniOrange SAML SP plugin for Joomla from the given link.
- Login into your Joomla site’s administrator console.
- From Menu, click on System, then under Install section click on Extension.
- Upload the downloaded zip file to install the Joomla SAML SP plugin.
- After successful installation of plugin, click on Start Using miniOrange SAML SP plugin button.
- Go to the Service Provider metadata tab and copy the ACS Url and Audience Url. We are going to use it later while configuring AWS.
1.B. Configure AWS as Identity Provider
- First of all, go to Amazon AWS Admin Console and sign up/login in your account to Configure AWS as Identity Provider.
- Now click on Services then click on Security, Identity & Compliance then select IAM Identity Center.
- Here click on the Enable button to enable IAM Identity Center.
- You will get a popup if there is no AWS organization created. Click on Create AWS Organization to create a AWS organization.
- In the IAM Identity Center dashboard, click on Applications.
- Now click on Add Application.
- Here select Add a custom SAML 2.0 Application to create custom application for Joomla.
- Enter the Details of Custom Joomla application like Display name and description.
- Now you have to Download AWS SSO metadata, to configure Joomla SAML SP plugin. So that click on Download button to download AWS metadata.
- Click on the Save button to save the configuration.
- Now click on Actions to get a dropdown menu.
- Click on Edit attribute mappings to enter the attribute mapping section.
- Then you can assign users and group names under the Assigned users section.
3. Configure Joomla as Service Provider
In Joomla SAML plugin, go to Service Provider Setup tab. There are three ways to configure the plugin:
By Uploading Metadata File:
- In Joomla SAML plugin, go to Service Provider Setup tab, then click on Upload IDP metadata.
By Metadata URL:
- Enter Metadata URL (Copy from IDP app) and click on Fetch Metadata.
Manual Configuration:
- Copy SAML Entity ID, SAML Single-Sign-On Endpoint URL and X.509 certificate from
Federation Metadata document and paste it in Idp Entity ID or Issuer, Single Sign-on URL, X.509 Certificate
fields respectively in the plugin.
|
IdP Entity ID or Issuer
SAML Entity ID in the Federation Metadata document
|
|
Single Sign-On URL
SAML Single-Sign-On Endpoint URL in the Federation Metadata document
|
|
X.509 Certificate Value
X.509 Certificate in the Federation Metadata document
|
- Click on Save button and then Test Configuration button.
- Once the test configuration is successful you will get the following window.
- Congratulations we have successfully configured Joomla SAML Service Provider.
4. Attribute Mapping - This is Premium feature.
- Attributes are user details that are stored in your Identity Provider.
- Attribute Mapping helps you to get user attributes from your Identity Provider (IDP) and map them to Joomla user attributes like firstname, lastname, address, phone etc.
- While auto registering the users in your Joomla site these attributes will automatically get mapped to your Joomla user details.
- Go to Attribute Mapping tab and fill in all the fields.
- You can check the Test Configuration Results under Service Provider Setup tab to get a better idea of which values to map here.
|
Username:
Name of the username attribute from IdP (Keep NameID by default)
|
|
Email:
Name of the email attribute from IdP (Keep NameID by default)
|
|
Name:
Name of the name attribute from IdP
|
Step 5. Group Mapping - This is Premium feature.
- Group/Role mapping helps you to assign specific roles to users of a certain group in your Identity Provider (IdP).
- While auto registering, the users are assigned roles based on the group they are mapped to.
Step 6. Redirection & SSO Links.
- Go to Login Settings tab. You can add login Url to Perform SAML SSO in your Joomla site by following the steps below.
- There are multiple features availabe in this tab like Auto redirect the user to Identity Provider and Enable Backend Login for Super Users. To use these features, click on the respective checkboxes.
- Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans.
- If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login here.
- In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.
Additional Resources.
- What is Single Sign-On (SSO)
- Frequently Asked Questions (FAQs)
- How to configure SSO with Azure AD Identity Provider
- How to configure SSO with ADFS
- How to configure SSO with Salesforce
- How to configure SSO with Okta
- How to configure SSO with Google Apps
Business Trial
If you want Business Trial for FREE click Here
If you don't find what you are looking for, please contact us at joomlasupport@xecurify.com or call us at +1 978 658 9387.
How miniorange Joomla SAML SSO plugin works?
SAML 2.0 SP Single Sign On ( SAML SSO) - Service Provider Plugin acts as a SAML 2.0
Service Provider which can be configured to establish the trust between the Joomla site and
various SAML 2.0 supported Identity Providers to securely authenticate (Secure Login)
the user to the Joomla site.
SAML 2.0 SP Single Sign On (SSO) - Service Provider plugin also provides Cross-Domain / Sub-domain login sharing with other Joomla websites.
We also provide a separate plugin that enables Joomla to act as an Identity Provider. It supports authentication with Joomla, user management, session management, change password, etc. You can configure any service provider with your Joomla site with the help of this plugin.
SAML 2.0 SP Single Sign On (SSO) - Service Provider plugin also provides Cross-Domain / Sub-domain login sharing with other Joomla websites.
We also provide a separate plugin that enables Joomla to act as an Identity Provider. It supports authentication with Joomla, user management, session management, change password, etc. You can configure any service provider with your Joomla site with the help of this plugin.
What is the use of the configuration or integration with SAML SSO?
Miniorange Provides best SAML Single Sign-On (SSO) solution to Amazon AWS.
SSO reduces the number of attack surfaces because users only log in once each day and only use one set of
credentials. Reducing login to one set of credentials improves enterprise
security. When employees have to use separate passwords for each app, they usually don't.
Amazon AWS [SAML] Single Sign-On (SSO) login for Joomla can be achieved by using our Joomla SAML SP Single Sign-On(SSO) plugin. Our plugin is compatible with all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure SAML SSO login between the Joomla site and Amazon AWS.
Amazon AWS [SAML] Single Sign-On (SSO) login for Joomla can be achieved by using our Joomla SAML SP Single Sign-On(SSO) plugin. Our plugin is compatible with all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure SAML SSO login between the Joomla site and Amazon AWS.
Additional Resources:
- What is Single Sign-On (SSO)
- How to configure SSO with Amazon AWS
- How to configure SSO with Google Apps
- Frequently Asked Questions (FAQs)
Miniorange Joomla SAML Single sign-on(web SSO) supports multiple known IDPs like ADFS, Azure
AD, Amazon AWS,
Shibboleth, Amazon AWS, Amazon AWS,
SimpleSamlPhp, Google apps, Bitium, OpenAM, miniorange IDP, Centrify and many more.
Business Trial
If you want Business Trial for FREE Click Here
If you don't find what you are looking for, please contact us at joomlasupport@xecurify.com or call us at +1 978 658 9387.
×
![ADFS_sso]()
Trending searches:
Hello there!
Need Help? We are right here!
