WordPress Single Sign On (SSO) using Onelogin as IdP

OneLogin Single Sign On (SSO) for Wordpress miniOrange provides a ready to use solution for Wordpress. This solution ensures that you are ready to roll out secure access to your Wordpress site using Onelogin within minutes.

Step 1: Configuring Onelogin as IdP

  • Log into OneLogin as an Administrator and go to Apps Company Apps Add Apps from the Navbar.
  • In the search box, type SAML Test Connector (SP) and click on the App to add it.
  • Enter the display name and click Save.
  • In General Settings, enter App Name and click on Next.
  • After saving, go to Configuration Tab and enter the following:
  • Audience Audience URI from Step1 of the plugin under Configure IDP Tab.
    Recipient Recipient URL from Step1 of the plugin under Configure IDP Tab
    ACS (Consumer) URL Validator ACS (Assertion Consumer Service) URL from Step1 of the plugin under Configure IDP Tab.
    ACS (Consumer) URL ACS (Assertion Consumer Service) URL from Step1 of the plugin under Configure IDP Tab.
    Single Logout URL Single Logout URL from Step1 of the plugin under Configure IDP Tab.
  • Click on Save.

Step 2: Assigning Groups/People

  • Go to SSO tab. Note down the URL/Endpoints. These will be required while configuring the plugin.
  • Click on View Details in X.509 Certificate heading. Copy the X.509 Certificate textarea value and keep it handy.

Step 3: Configuring Wordpress as SP

  • In miniOrange SAML plugin, go to Service Provider tab. There are three ways to configure the plugin:
    •  By Uploading Onelogin Metadata :

      • Click on Upload IDP Metadata.
      • Enter Identity Provider Name.
      • Upload metadata file and click on Upload.

       By Onelogin Metadata URL :

      • Click on Upload IDP Metadata.
      • Enter Identity Provider Name.
      • Enter Metadata URL and click on Fetch Metadata.

       Manual Configuration :

      • Provide the required settings (i.e. Identity Provider Name, IdP Entity ID or Issuer, SAML Login URL, X.509 Certificate) and save it.
      Identity Provider Name For Example:Miniorange
      IdP Entity ID or Issuer https://auth.miniorange.com/moas
      SAML Login URL https://auth.miniorange.com/moas/idp/samlsso
      X.509 Certificate X.509 certificate is enclosed in X509Certificate tag in IdP-Metadata XML file. (parent tag: KeyDescriptor use="signing")