Box

Box SSO - Login using WordPress Users (WP as SAML IDP) Plugin enables Single Sign-On (SSO) login into Box using WordPress Login credentials. In this guide we will Setup SAML Single Sign-On (SSO) with WordPress in Box by configuring Box as Service Provider (SP) and WordPress as Identity Provider (IDP).

Note: Premium Version of WP SAML IDP Plugin is required to set up SSO with Box.

Pre-requisites: Download And Installation

To integrate the WordPress site as an Identity Provider, you will need to install the miniOrange Login using WordPress Users (WP as SAML IDP) plugin:

Login using WordPress Users ( WP as SAML IDP )

By miniOrange

(42)

Single Sign-On (SSO) login with WordPress Users into any Service Provider like Tableau, Zoho, Zoom, Moodle, Canvas LMS, Absorb LMS, TalentLMS, etc.

 Tested with 6.3.1

Get this plugin

Guide to configure Box Single Sign-On (SSO) Login with WordPress

1. Setup Box as SP (Service Provider)

• Go to the WordPress IDP plugin, navigate to the IDP Metadata tab.
• Here, you can find the Identity Provider Metadata URL /XML Metadata or endpoints like IDP Entity ID, SAML Login URL, SAML Logout URL (Premium Feature), Certificate for SP configuration.

• Open a new browser tab or window, Log in to your Box account as Account Admin and navigate to Admin Console.

• In the left sidebar, click Enterprise Settings >> User Settings.

• Scroll down to the Configure Single Sign On (SSO) section, then click Configure.

• Go to Box SSO Questionnaire and provide the necessary information to setup WordPress as Identity Provider (IdP).
• Enter the Email Address and other required fields.
• Select Other with Metadata from who is your Identity Provider? dropdown.

• Enter the Company Box Subdomain field.
• Now choose and upload the Metadata File in the xml format which you have downloaded .
• Leave the optional fields empty and click on Submit.

• It can take up to 24 hours to process the metadata. Once the file has been processed, Box sends a notification to the email address of the main account admin.
• You can now enable SSO for your enterprise. Begin by enabling SSO Test Mode. In Test Mode, you can log in using SSO credentials. Also verify that you can log out and in again using SSO credentials before you continue.
• After you have tested that the SSO login flow is working correctly, you can enable SSO Required.

You have successfully configured Box as Service Provider.

2. Configure WordPress (WP) as IdP (Identity Provider)

• In the WordPress IDP plugin, navigate to the Service Provider tab and enter the values corresponding to the information from Box.
  

Service Provider Name	Box
SP Entity ID or Issuer	box.net
ACS URL	https://sso.services.box.net/sp/ACS.saml2
NameID Format	urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
Certificate	Copy and paste the Certificate from here
Assertion Signed	Check to sign the SAML Assertion



Click on the Save button to save your configuration.

3. Attribute Mapping (This is a premium feature)

• In the WordPress IDP plugin, navigate to the Attribute/Role Mapping tab.
• In the User Attributes section, enter the following information and click on Save .
• You can also add more attributes by clicking on + sign to add attributes.

Name	User Meta Data
FirstName	first_name
LastName	last_name
Email	user_email

In this Guide, you have successfully integrated Box - SAML Single Sign-On (SSO) with plugin- Login using WordPress Users (WP as SAML IDP). Configuring Box as SP and WordPress as IDP. This solution ensures that you are ready to roll out secure Single Sign-On (SSO) access with SAML 2.0 Authentication into Box using WordPress login credentials.

Additional Resources

• What is Single Sign-On (SSO)?
• What is SAML?
• Frequently Asked Questions (FAQs)