Zendesk SAML Single Sign-On (SSO) Integration with Drupal as IdP
Overview
This guide will help you integrate Drupal as a SAML 2.0 Identity Provider (IdP) and Zendesk as a Service Provider(SP) using the miniOrange SAML IDP module. This integration enables centralized user management and permission control, allowing users to access multiple applications with a single set of credentials. This module is compatible with Drupal 7, Drupal 8, Drupal 9, Drupal 10, and Drupal 11.
Installation Steps
- Using Composer
- Using Drush
- Manual Installation
Configuration Steps
Obtain SAML IDP Metadata from Drupal:
- Once the module is installed, navigate to the Configuration tab from the top navigation bar and click on the miniOrange SAML IDP Configuration.
- Navigate to the IDP Metadata tab. Copy the IDP Entity ID or Issuer, SAML Login URL, and X.509 Certificate. Keep it handy. (This is required in order to set up Zendesk as a SAML SP)
Configure Zendesk as Service Provider
- Go to https://www.zendesk.com and Login to your Zendesk domain.
- Click on the Settings icon in the left pane.
- Then select Security in the Settings panel.
- Choose the Single Sign On (SSO) option and select SAML.
- Enter the following details:
SAML SSO URL | Enter SAML Login URL from the Service Provider Setup tab of the module. |
Remote logout URL | Enter SAML logout URL from the Service Provider Setup tab of the module. |
Certificate Fingerprint | Copy the Thumbprint of the certificate downloaded from the Service Provider Setup tab of the module. (To generate fingerprint follow the below mentioned steps) |
- Click the Save to save the Single Sign-On (SSO) SAML settings.
- Copy Assertion Consumer Service(ACS) URL and keep it handy you will need it at the time of module configuration (Highlighted in the below image)
Configuring Drupal as SAML Identity Provider (IdP):
- Go to the Drupal site. Navigate to the Service Provider Setup tab of the miniOrange SAML IDP module.
- Provide the required settings (i.e. Service Provider Name, SP Entity ID or Issuer, ACS (Assertion Consumer Service) URL, X.509 Certificate (Optional)) as provided by your Service Provider Zendesk ( Zendesk as SP ).
Service Provider Name | Give any appropriate name to your Service Provider |
ACS URL | Enter ACS URL copied from Zendesk (Service Provider) Eg. https://<your domain>.zendesk.com/access/saml |
SP Entity Id or Issuer | https://<your domain>.zendesk.com/ |
Relay State | https://<your domain>.zendesk.com/ |
Response Signed | checked |
- Scrolldown and click on the Save Configuration button.
- Now click on the Test link to verify your configuration. If your configurations are correct then you will get the homepage of the Zendesk site in the test configuration window.
You have successfully configured the SAML SSO between Zendesk as SAML SP and Drupal as SAML IDP.