Drupal TalentLMS SSO | SAML Login to TalentLMS using Drupal as IDP

Drupal TalentLMS SSO Integration will allow you to configure Single Sign-On ( SSO ) login between your Drupal site and TalentLMS. Talent LMS SSO integration with your Drupal site will help your users to login into Talent LMS using their Drupal credentials. We provide Drupal SAML IDP - SAML 2.0 Identity Provider Single Sign-On SSO module that is compatible with Drupal 7, Drupal 8, and as well as Drupal 9. Here we will go through a step-by-step guide to configure SAML IDP SSO login between Drupal site and TalentLMS considering SP ( Service Provider ) and Drupal as IDP ( Identity Provider ). The following steps below to configure the Single Sign-On ( SSO ) into Drupal as IDP and TalentLMS as SP:

If you have any doubts or queries, you can contact us at drupalsupport@xecurify.com. We will help you to configure the module. If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP SSO Login module.

Steps to configure TalentLMS SAML Single Sign-On (SSO) Login into Drupal website

1. Configure Drupal site as Identity Provider

• Navigate to the Service Provider Setup tab of the miniOrange SAML Identity Provider module on your Drupal site. There are two way to configure your Identity Provider ( Drupal as SAML Idp ):

A. By Uploading SP metadata:

• Click on UPLOAD SP METADATA link.
• You can either Upload Metadata File and click on Upload button or use a Upload Metadata URL and click on Fetch Metadata.


B. Manual Configuration:

• Navigate to Service Provider Setup tab of the miniOrange Drupal SAML IDP module.
• Provide the required settings (i.e. Service Provider Name, SP Entity ID or Issuer, ACS (Assertion Consumer Service) URL, X.509 Certificate (Optional)) as provided by your Service Provider TalentLMS ( TalentLMS as SAML SP ).

Service Provider Name:	TalentLMS
SP Entity ID or Issuer:	https://<your-domain-name>.talentlms.com
ACS URL:	https://<my-domain-name>.talentlms.com/simplesaml/module.php/saml/sp/saml2-acs.php/<my-domain-name>.talentlms.com
Single Logout URL (optional):	https://<my-domain-name>.talentlms.com/simplesaml/module.php/saml/sp/saml2-logout.php/<my-domain-name>.talentlms.com
NameID Format:	urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
Assertion Signed	Check to sign the SAML Assertion.

2. Configure TalentLMS ( e-Learning ) as Service Provider

• Sign in to your TalentLMS account as Administrator, go to Home > Account & Settings > Users and click Single Sign-On (SSO).


Enter the following values in resepctive fields:

• SSO integration type: From the drop-down list, select SAML2.0.
• Identity provider ( IdP ): Type the domain of SAML 2.0 identity provider.  
• Certificate fingerprint: Download the Certificate from IDP Metadata as mention in Step 1 and Open it in notepad. Copy and paste the content here.
• Remote sign-in URL: You can find this in IDP Metadata as SAML Login URL as mention in Step 1.
• Remote sign-out URL: You can find this in IDP Metadata as SAML Logout URL as mention in Step 1.
• The remaining fields are used for naming the SAML variables that contain the user data required by TalentLMS and provided by Drupal IdP. Those are optional, and they can be left blank for most SAML IdP deployments. In that case, their default values are applied.

Name	Attribute Mapping values provided from IDP
TargetedID	targetedid
First Name	User.FirstName
Last Name	User.LastName
Email	User.Email

• Group: The names of the groups of which the user is a member. This variable may be assigned a single string value or an array of string values for more than one group name. When there is a group by the same name in your TalentLMS domain, the user is automatically registered in that group at their first log-in. The user is also enrolled in all the courses assigned to that group.

• Click Save and check your configuration. If everything is correct, you’ll get a success message that contains all the values pulled from your IdP.

3. Configure Attributes mapping in the module ( This is a premium feature ):

• Go to the Mapping Tab in the Drupal SAML IDP module. In the Add custom Attributes section, enter the following information. Click on Save Configuration.

SP Attribute Machine Name	IdP Atrribute Name
field_userlogin	targetedid
field_firstname	User.FirstName
field_lastname	User.LastName
field_email	User.Email

24*7 Active Support

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP SSO Login module.

Free Trial

If you would like to test out the module to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at drupalsupport@xecurify.com requesting a trial. You can create an account with us using this link.

Additional Resources

• What is Single Sign-On (SSO)?
• What is SAML?
• what is SSO? How works SAML SSO authentication?
• Frequently Asked Questions (FAQs)

Our Other modules