Umbraco SAML Single Sign-On (SSO) plugin gives the ability to enable SAML Single Sign-On for your Umbraco applications. Using Single Sign-On you can use only one password to access your Umbraco application and services. Our plugin is compatible with all the SAML compliant identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between Umbraco and Keycloak considering Keycloak as IdP. To know more about the features we provide for Umbraco SSO, click here.
There are below two ways with which you can get the SAML SP metadata to configure on your identity provider end.
|Client ID||The SP-EntityID / Issuer from the plugin's Service Provider Metadata tab|
|Name||Provide a name for this client|
|Description||Provide a description|
|Client Signature Required||OFF|
|Force POST Binding||OFF|
|Force Name ID Format||OFF|
|Name ID Format|
|Root URL||Leave empty or Provide Base URL from Service Provider Metadata tab|
|Valid Redirect URIs||The ACS (Assertion Consumer Service) URL from the plugin's Service Provider Metadata tab|
|Assertion Consumer Service POST Binding URL||The ACS (Assertion Consumer Service) URL from the plugin's Service Provider Metadata tab|
|Logout Service Redirect Binding URL (Optional)||The Single Logout URL from the plugin's Service Provider Metadata tab|
You have successfully configured Keycloak as SAML IdP ( Identity Provider) for achieving Keycloak login / Keycloak SSO / Keycloak Single Sign-On (SSO), ensuring secure Login into Umbraco application.
There are below two ways with which you can configure your SAML identity provider metadata in the module.
You can configure the Umbraco SAML 2.0 Single Sign-On (SSO) module with any Identity Providers such as ADFS, Azure AD, Bitium, Centrify, G Suite, WordPress, Okta, OneLogin, Salesforce, AWS Cognito, OpenAM, Oracle, PingFederate, PingOne, RSA SecureID, Shibboleth-2, Shibboleth-3, SimpleSAML, WSO2 or even with your own custom identity provider. Check the list of identity providers here.
Not able to find your identity provider? Mail us on firstname.lastname@example.org and we'll help you set up SSO with your IDP and for quick guidance (via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.
Need Help? We are right here!