Description
SAML SP Single Sign On (SSO) allows login with Azure AD, Keycloak, ADFS, Okta, Shibboleth, Salesforce, Google Apps, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ and all SAML 2.0 capable Identity Providers.
miniOrange SAML Single Sign on (SSO) Plugin acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and a SAML 2.0 capable Identity Providers to securely authenticate the user to the WordPress site. WordPress Multi-Site Environment and ability to configure Multiple IDP’s against wordpress as service provider is also supported in premium SAML SP Single Sign On plugin.
If you require any Single Sign On (SSO) application or need any help with installing this plugin, please feel free to email us at info@xecurify.com or Contact us.
List of Supported IdPs
- Azure AD
- Keycloak
- ADFS
- Okta
- Salesforce
- Shibboleth
- Google Apps
- miniOrange
- OneLogin
- Centrify
- SimpleSAMLphp
- OpenAM
- Ping
- RSA
- IBM
- Oracle
- Bitium
- WSO2
- NetIQ
and many more.
Free Version Features
- WordPress SAML Single Sign On supports SSO with any 3rd party SAML supported Identity Providers like ADFS, Azure AD, Okta, Salesforce, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ etc.
- Auto Create Users – Users will be auto-created in WordPress after SSO
- Login Widgets – Use SAML Login Widgets to easily integrate the SSO link with your WordPress site.
- Attribute Mapping – The NameID value sent by your SAML-compliant Identity Provider will be mapped to the Username and Email of your WordPress users.
- Role Mapping – Select default role to assign to SSO users on auto registration.
Standard Version Features
- Unlimited Authentications – Unlimited authentication with your SAML 2.0 compliant Identity Providers like ADFS, Azure AD, Okta, Salesforce, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ etc.
- Advanced Attribute Mapping – SAML SP Single Sign On provides the feature to map your IDP attributes to your WordPress site attributes like Username, Email, First Name, Last Name, Group/Role, Display Name.
- Login Widgets and Short Code – Use Widgets to easily integrate the SSO link with your WordPress site. Use Short Code (PHP or HTML) generated by SAML SP Single Sign On to place the login link wherever you want on the site.
- Step-by-step Guides – Use step-by-step guide to configure your SAML-compliant Identity Provider like ADFS, Centrify, Google Apps, Okta, OneLogin, Salesforce, SimpleSAMLphp, Shibboleth, WSO2, JBoss Keycloak, Oracle.
- Auto-redirect to IDP – Users will be redirected to SAML-compliant IdP for SSO when trying to access the WordPress login page.
- Protect Site – Users trying to access WordPress will be redirected to the SAML-compliant Identity Provider for SSO.
- Customize SP Configuration – Change SP base URL and SP Entity ID.
- Select Binding Type – Select HTTP-Post or HTTP-Redirect binding type to use for sending SAML Requests.
- Integrated Windows Authentication – Support for Integrated Windows Authentication (IWA) in SAML SP Single Sign On Standard plugin.
Premium Version Features
- Includes all the STANDARD version features.
- SAML Single Logout – Support for SAML Single Logout (Works only if your IDP supports SLO).
- Auto-redirect to IDP – Users will be redirected to SAML-compliant IdP for SSO when trying to access the WordPress login page.
- Protect Site – Users trying to access WordPress will be redirected to the SAML-compliant Identity Provider for SSO.
- Advanced Role Mapping – SAML SP Single Sign On provides the feature to assign WordPress roles to your users based on the group/role sent by your SAML-compliant IDP.
- Reverse-proxy Support – Support for sites behind a reverse-proxy in SAML SP Single Sign On Premium plugin.
- Multiple Certificates – Store Multiple IdP Certificates.
- Custom Certificate – Add your own custom X.509 Certificate for sending signed Request and verification of encrypted Response.
-
WordPress Multi-site Support – Multi-Site environment is one which allows multiple subdomains / subdirectories to share a single installation. With multisite premium plugin, you can configure the SAML-compliant IDP in minutes for all your sites in a network. While, if you have basic premium plugin, you have to do plugin configuration on each site individually as well as multiple service provider configuration’s in the SAML-compliant IDP.
For Example – If you have 1 main site with 3 subsites. Then, you have to configure the plugin 3 times on each site as well as 3 service provider configurations in your IDP. Instead, with multisite premium plugin. You have to configure the plugin only once on main network site as well as only 1 service provider configuration in the SAML-compliant IDP.
Enterprise Version Features
- Includes all the STANDARD version features.
- SAML Single Logout – Support for SAML Single Logout (Works only if your IDP supports SLO).
- Auto-redirect to IDP – Users will be redirected to SAML-compliant IdP for SSO when trying to access the WordPress login page.
- Protect Site – Users trying to access WordPress will be redirected to the SAML-compliant Identity Provider for SSO.
- Advanced Role Mapping – SAML SP Single Sign On provides the feature to assign WordPress roles to your users based on the group/role sent by your SAML-compliant IDP.
- Reverse-proxy Support – Support for sites behind a reverse-proxy in SAML SP Single Sign On Premium plugin.
- Multiple Certificates – Store Multiple IdP Certificates.
- Custom Certificate – Add your own custom X.509 Certificate for sending signed Request and verification of encrypted Response.
- WordPress Multi-site Support – Multi-Site environment is one which allows multiple subdomains / subdirectories to share a single installation. With multisite premium plugin, you can configure the SAML-compliant IDP in minutes for all your sites in a network. While, if you have basic premium plugin, you have to do plugin configuration on each site individually as well as multiple service provider configuration’s in the SAML-compliant IDP.
- Multiple SAML IDPs Support – We now support configuration of Multiple SAML-compliant IDPs in the plugin to authenticate the different group of users with different IDP’s. You can give access to users by users to IDP mapping (which SAML-compliant IDP to use to authenticate a user) is done based on the domain name in the user’s email. (This is a PREMIUM feature with separate licensing. Contact us at info@xecurify.com to get licensing plans for this feature.)
- All add-ons included.
If you are looking for an SAML-compliant Identity Provider, you can try out miniOrange On-Premise IdP.
Add-ons
We have a variety of add-ons that can be integrated with the SAML SP SSO plugin to improve the SSO functionality of your WordPress site.
- Page Restriction – This add-on is basically used to protect the pages/posts of your site with SAML-compliant IDP login page and also, restrict the access to pages/posts of the site based on the user roles.
- BuddyPress Integration – This add-on maps the attributes fetched from the SAML-compliant IdP with BuddyPress attributes.
- LearnDash Integration – This add-on will map the SSO user to LearnDash groups as per the attributes sent by your SAML compliant Identity Provider.
- SSO Login Audit – SSO Login Audit captures all the SSO users and will generate the reports.
- Attribute Based Redirection – ABR add-on helps you to redirect your users to different pages after they log into your site, based on the attributes sent by your SAML-compliant Identity Provider.
Contact us at info@xecurify.com to get add-ons.
Website –
Check out our website for other plugins http://miniorange.com/plugins or click here to see all our listed WordPress plugins.
For more support or info email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.
Screenshots
Configure your WordPress as Service Provider. 
Gather Metadata for your Identity Provider. 
Configure Attribute/Role Mapping for Users in WordPress. 
Add widget to enable Single Sign-on. 
Plugin-tour which guides you through entire plugin setup. 
Addons which extend plugin functionality.
Installation
From your WordPress dashboard
- Visit
Plugins > Add New. - Search for
SAML SP Single Sign On. Find and InstallSAML SP Single Sign On – SSO login. - Activate the plugin from your Plugins page.
From WordPress.org
- Download SAML SP Single Sign On – SSO login plugin.
- Unzip and upload the
miniorange-saml-20-single-sign-ondirectory to your/wp-content/plugins/directory. - Activate miniOrange SSO using SAML 2.0 from your Plugins page.
FAQ
- I am not able to configure the Identity Provider with the provided settings
-
Please email us at info@xecurify.com or Contact us. You can also submit your app request from plugin’s configuration page.
- For any query/problem/request
-
Visit Help & FAQ section in the plugin OR email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.
Reviews
Contributors & Developers
“SAML SP Single Sign On – SSO login” is open source software. The following people have contributed to this plugin.
Contributors
Translate “SAML SP Single Sign On – SSO login” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
4.8.82
- Added new SAML-compliant IdP guides
- Bug fixes
4.8.81
- Updated SAML-compliant IdP guides
4.8.80
- Bug fixes
4.8.79
- Added Plugin-wide tour
4.8.78
- Request a demo feature.
4.8.77
- Bug Fixes
4.8.76
- Security Patches
4.8.75
- Visual-tour fixes
4.8.74
- Feedback form bug fix
4.8.73
- Security patches.
4.8.72
- Security patch.
4.8.71
- Security fixes.
4.8.70
- Bug fixes
- Option to send plugin configuration with request
4.8.69
- Tested upto WordPress 5.1.0
- Replaced CURL calls with HTTP API calls.
4.8.68
- Tested upto WordPress 5.0.2.
- Updated to Latest XMLSeclibs library.
- Compatibility with PHP 7.3.
4.8.67
- Description changes.
4.8.66
- Tested upto WordPress 5.0.0.
- Added option to disable character encoding.
4.8.65
- Bug Fixes
4.8.64
- Compatibility with PHP version 5.3+ upto latest version of PHP
- Activation Issue Fixes
4.8.63
- Code enhancements.
4.8.62
- Fixed issues on plugin activation.
4.8.61
- Bug fixes.
4.8.60
- Updated to latest XMLSeclibs SAML library (version 3.0.1).
- Added the visual tour to get familiar with plugin features and support.
- Revamped the plugin UI.
- Added the Add-On and their description.
- Export plugin configurations.
- SAML-compliant IdP guides.
4.8.52
- Tested upto WordPress 4.9.8
4.8.51
- Added support for guest login
- Added SAML-compliant IDP guide links
4.8.50
- Added feedback form.
4.8.44
- Tested upto WordPress 4.9.6
4.8.43
- Compatibility issue with PHP 7.2(Removed deprecated asserts )
4.8.42
- Input validation fixes.
4.8.41
- Support for PHP version 5.3 and above.
4.8.40
- Added feature for Exporting plugin configuration.
- Added View SAML Request and Response
4.8.35
- Fixed the Entity ID/Issuer issues for AzureAD Idp.
4.8.34
- Introducing miniOrange on-premise IDP
4.8.33
- Compatibilty with WordPress 4.9
4.8.32
- Introducing Standard version of SAML Plugin for small sized customers.
- Fixed Registration issue.
4.8.31
- Introducing Standard version of SAML Plugin for small sized customers. Check Licensing Plans for more details.
4.8.30
- Fix the CSS and JS inclusion only in the plugin pages, removed it from frontend and backend of WordPress.
4.8.28
- Bug fix for PHP 5.4.x version.
4.8.27
- Support for Multiple Certificate via Metadata
4.8.26
- SAML Configuration by Uploading metadata.
- Descriptive Error Messages.
- Use miniorange as IdP feature.
- More verbose instructions.
- Compatibility with WordPress 4.8
4.8.25
Updating Licensing Plans
4.8.24
Updating Plugin Title : SAML SP Single Sign On
3.8.14
Pattern change on OTP Verification page
3.8.12
Major security fixes. It is recommended to update to this version.
3.8.7
Fixes for WordPress 4.5
3.8.6
Added features: Support for WordPress Multi-site (Network setup), support for Multiple SAML-compliant IDPs and some fixes for WordPress 4.5
3.8.4
Introducing Free Trial for the premium version.
3.8.2
Security fix for preventing non-admin users from changing the settings.
3.8
Security fix for SAML-compliant IDPs that signs only Assertion and not the complete SAML Response XML.
3.7
Support for Integrated Windows Authentication – contact info@xecurify.com if interested
3.5
Decrypt assertion bug fix
3.4
Added some requested features and some bug fixes.
3.3
Added support for Google Apps as an Identity Provider.
3.2
Some bug fixes in role mapping.
3.1
Some bug fixes in auto registration.
3.0
Added option to use miniOrange Single Sign On Service
Made it simple to setup SAML authentication with your IdP.
2.3
Fixed forgot password bug for some users.
2.2
Added guides for configuring common Identity Providers like ADFS, SimpleSAMLphp, Salesforce, Okta and some bug fixes.
2.1
Removed unwanted JS files.
2.0
Added new feature like role mapping and auto redirect user to your SAML-compliant IdP.
1.7.0
Resolved UI issues for some users
1.6.0
Added help and troubleshooting guide.
1.5.0
Added error messaging.
1.4.0
Added fixes.
1.3.0
Added validations and fixes.
UI Improvements.
1.2.0
- this is the third release.
1.1.0
- this is the second release.
1.0.0
- this is the first release.