TalentLMS Single Sign On (SSO) with WordPress as IDP | Login into TalentLMS using WordPress


Login using WordPress Users ( WP as SAML IDP ) plugin gives you the ability to use your WordPress credentials to log into TalentLMS. Here we will go through a step-by-step guide to configure SSO between TalentLMS as Service Provider and WordPress as an Identity Provider.

Note: Premium Version is required to set up SSO to TalentLMS.

Follow the Step-by-Step Guide given below for TalentLMS Single Sign On (SSO)

Step 1: Download and Setup the plugin

  • Login to WordPress using Administrator account.
  • Download / Install this plugin - Login using WordPress Users ( WP as SAML IDP ) and activate it. You will see WordPress IDP in your WordPress menu bar in the Dashboard.

Step 2: Configure WordPress as the Identity Provider

  • Go to WordPress IDP Plugin on the Dashboard and select Service Providers tab.

  • Enter the following information into the corresponding fields. Click Save.

    Service Provider Name: TalentLMS
    SP Entity ID or Issuer: <your-domain-name>.talentlms.com
    ACS URL: https://<my-domain-name>.talentlms.com/simplesaml/module.php/saml/sp/saml2-acs.php/<my-domain-name>.talentlms.com
    Single Logout URL (optional): https://<my-domain-name>.talentlms.com/simplesaml/module.php/saml/sp/saml2-logout.php/<my-domain-name>.talentlms.com
    NameID Format: urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
    Assertion Signed Check to sign the SAML Assertion.
  • enter sp info talentlms as sp

  • Click IDP Metadata tab. Here, you can find the Identity Provider metadata such as Certificate , Login URL and Logout URL which are used to configure the Service Provider (TalentLMS).

  • plugin setup talentlms as sp

Step 3: Configure attributes in the plugin (This is a premium feature)

  • Select Attribute/Role Mapping. In the User Attributes section, enter the following information. Click Save.

    Name User Meta Data
    targetedid user_login
    User.FirstName first_name
    User.LastName last_name
    User.Email user_email
  • wp attribute mapping talentlms as sp

Step 4: Configure TalentLMS as Service Provider

  • Sign in to your TalentLMS account as Administrator, go to Home > Account & Settings > Users and click Single Sign-On (SSO).

  • talentlms as sp

    Enter the following values in resepctive fields:

  • SSO integration type: From the drop-down list, select SAML2.0.

  • Identity provider (IdP): Type the domain of SAML 2.0 identity provider.  

  • Certificate fingerprint: Download the Certificate from IDP Metadata Open it in notepad. Copy and paste the content here.

  • Remote sign-in URL: You can find this in IDP Metadata as SAML Login URL.

  • Remote sign-out URL: You can find this in IDP Metadata as SAML Logout URL.

  • The remaining fields are used for naming the SAML variables that contain the user data required by TalentLMS and provided by WordPress IdP. Those are optional, and they can be left blank for most SAML IdP deployments. In that case, their default values are applied.

  • Name Attribute Mapping values provided from IDP
    TargetedID targetedid
    First Name User.FirstName
    Last Name User.LastName
    Email User.Email

  • Group: The names of the groups of which the user is a member. This variable may be assigned a single string value or an array of string values for more than one group name. When there is a group by the same name in your TalentLMS domain, the user is automatically registered in that group at their first log-in. The user is also enrolled in all the courses assigned to that group.

  • talentlms as sp

  • Click Save and check your configuration. If everything is correct, you’ll get a success message that contains all the values pulled from your IdP.

  • talentlms as sp

Hello there!

Need Help? We are right here!

Contact miniOrange Support

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com