SAML Single Sign On – SSO Login free WordPress plugin

SAML SP Single Sign On (SSO) for WordPress allows SSO login with Azure AD, Azure AD B2C, Keycloak, ADFS, Okta, Shibboleth, Salesforce, GSuite / Google Apps, Office 365, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ and all SAML 2.0 capable Identity Providers into your WordPress site. You can checkout the following video to configure the plugin with your Identity Provider: SAML SP Single Sign On (SSO) provides SAML authentication for WordPress allowing your users to login to the WP site. List of Supported IdPs Azure AD (supports SAML SSO for WordPress login) Azure AD B2C (supports SAML SSO for WordPress login) Keycloak (supports SAML SSO for WordPress login) ADFS (supports SAML SSO for WordPress login) Okta (supports SAML SSO for WordPress login) Salesforce (supports SAML SSO for WordPress login) Office 365 (supports SAML SSO for WordPress login) Shibboleth (supports SAML SSO for WordPress login) GSuite / Google Apps (supports SAML SSO for WordPress login) miniOrange (supports SAML SSO for WordPress login) OneLogin (supports SAML SSO for WordPress login) Centrify (supports SAML SSO for WordPress login) Gluu Server (supports SAML SSO for WordPress login) SimpleSAMLphp (supports SAML SSO for WordPress login) OpenAM (supports SAML SSO for WordPress login) Ping (supports SAML SSO for WordPress login) RSA (supports SAML SSO for WordPress login) IBM (supports SAML SSO for WordPress login) Oracle (supports SAML SSO for WordPress login) Bitium (supports SAML SSO for WordPress login) WSO2 (supports SAML SSO for WordPress login) NetIQ (supports SAML SSO for WordPress login) and practically any SAML compliant Identity Provider. WordPress Single Sign On (SSO) Single Sign-On (SSO) is an authentication process in which a user can login to multiple applications and/or websites by using only a single set of login credentials (such as username and password). This prevents the need for the user to login separately into the different applications. Single Sign-On addresses the challenge of maintaining the credentials for each application separately, streamlining the process of signing-on without need to re-enter the password. WordPress Single Sign On allows your users to login to your WordPress site by authenticating with their IDP. If your users first login to some other application connected to your IDP, they can seamlessly login to WordPress without being prompted for login again. This SAML WordPress SSO solution provides SAML SSO capability to your WordPress site, converting it to a SAML compliant Service Provider which can be configured with any SAML compliant Identity Provider, allowing your users to login to your WP site. WordPress Single Sign on also allows you to manage login and achieve Single Sign On on your WordPress membership site using Azure AD, Azure B2C, ADFS, Keycloak, GSuite / Google Apps, Okta, Salesforce, Office 365, Shibboleth, or any SAML compliant Identity Provider so that you can allow your users to login to WordPress as a member via using their IDP credentials. miniOrange SAML Single Sign on (SSO) Plugin acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and a SAML 2.0 capable Identity Providers to securely authenticate the user to the WordPress site. This allows your users to securely login to the WP site. WordPress Multi-Site Environment and ability to configure Multiple SAML IDPs against wordpress as SAML service provider is also supported in premium SAML SP Single Sign On plugin. WordPress SAML Single Sign On supports all kinds of SSO use cases such as Azure login, Azure AD login, Office 365 login, ADFS login, Okta login, OneLogin SSO, Salesforce login, Google Apps login, Keycloak login, Auth0 login, Shibboleth login, PingFederate login, etc. allowing your users to securely login to the WordPress site. Azure SSO The WordPress SAML Single Sign On plugin supports Azure SSO use cases such as AzureAD SSO, Azure B2C SSO, Office 365 SSO, PowerBI SSO, etc. You can also enable SSO with multple Azure tenants using our Azure multi-tenant add-on. Using this you can allow users in multiple Azure tenant or Office 365 tenant to login to your WordPress site. Google Apps SSO The WordPress SAML Single Sign On plugin supports SSO with GSuite / Google Apps, allowing the users in your organization to login to your WordPress site using their organization Google Apps credentials. Federation SSO The WordPress SAML Single Sign On plugin is compatible with Federation use cases allowing your students or staffs to login the WordPress site using their university credentials that is affiliated with any federation such as InCommon, HAKA, HKAF, etc. To enable Federation SSO, you will need to get the Federation SSO add-on. Salesforce Community SSO The WordPress SAML Single Sign On plugin allows your Salesforce community users to login to the WordPress site by authenticating with their Salesforce credentials. You can also enable SSO with multiple Salesforce communities using our Saleforce Community add-on. The SAML SSO plugin is equipped with an ever-increasing list of very detailed SAML SSO guides which can be used to configure the plugin with SAML compliant Identity Providers such as Azure AD, Keycloak, ADFS, Okta, Shibboleth, Salesforce, GSuite / Google Apps, Office 365, SimpleSAMLphp, OpenAM, Centrify, Ping, Oracle, OneLogin, and many more SAML Identity Providers, allowing your users to securely login to the WP site. If you require any Single Sign On (SSO) application or need any help with installing this plugin, please feel free to email us at info@xecurify.com or Contact us. The plugin is compatible with all kinds of enterprise SAML SSO use cases where the users existing in Azure AD, Azure AD B2C, ADFS, Keycloak, GSuite / Google Apps, Okta, Salesforce, Office 365, Shibboleth, or any SAML compliant Identity Provider can securely login to the WordPress site by authenticating via the IDP that is configured in the plugin. That means the WordPress Single Sign On can be used to achieve Azure login, Azure AD login, Office 365 login, ADFS login, Okta login, OneLogin SSO, Salesforce login, Google Apps login, Keycloak login, Auth0 login, Shibboleth login, PingFederate login, etc. on your WP site. The plugin can also support SSO with any Identity Provider including OAuth, OpenID Connect, Active Directory, database using miniOrange IDP allowing your users to login to the WP site via authenticating with their user store. Free Version Features WordPress SAML Single Sign On supports SSO with any 3rd party SAML supported Identity Providers like ADFS, Azure AD, Azure AD B2C, Keycloak, Okta, Salesforce, GSuite / Google Apps, O365, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ etc. Auto Create Users – Users will be auto-created in WordPress after SAML SSO Login Widgets – Use SAML Login Widgets to easily integrate the SAML SSO link with your WordPress site. Attribute Mapping – The NameID value sent by your SAML compliant Identity Provider will be mapped to the Username and Email of your WordPress users. Role Mapping – Select default role to assign to SAML SSO users on auto registration. Standard Version Features Unlimited Authentications – Unlimited authentication with your SAML 2.0 compliant Identity Providers like ADFS, Azure AD, Azure B2C, Keycloak, Okta, Salesforce, GSuite / Google Apps, O365, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ or any SAML compliant Identity Provider. Advanced Attribute Mapping – SAML SP Single Sign On provides the feature to map your SAML IDP attributes to your WordPress site attributes like Username, Email, First Name, Last Name, Group/Role, Display Name. Login Widgets and Short Code – Use Widgets to easily integrate the SAML SSO link with your WordPress site. Use Short Code (PHP or HTML) generated by SAML SP Single Sign On to place the SAML login link wherever you want on the site. Step-by-step Guides – Use step-by-step guide to configure your SAML compliant Identity Provider like ADFS, Centrify, GSuite / Google Apps, O365, Okta, OneLogin, Salesforce, SimpleSAMLphp, Shibboleth, WSO2, JBoss Keycloak, Oracle. Auto-redirect to IDP – Users will be redirected to SAML compliant IdP for SSO when trying to access the WordPress login page. Protect Site – Users trying to access WordPress will be redirected to the SAML compliant Identity Provider for SSO. Customize SP Configuration – Change SAML Service Provider endpoints such as SP base URL and SP Entity ID. Select Binding Type – Select HTTP-Post or HTTP-Redirect binding type to use for sending SAML Requests. Integrated Windows Authentication – Support for Integrated Windows Authentication (IWA) in SAML SP Single Sign On Standard plugin. Premium Version Features Includes all the SAML STANDARD version features. SAML Single Logout – Support for SAML Single Logout (Works only if your SAML IDP supports SLO). Auto-redirect to IDP – Users will be redirected to SAML compliant IdP for SSO when trying to access the WordPress login page. Protect Site – Users trying to access WordPress will be redirected to the SAML compliant Identity Provider for SSO. Advanced Role Mapping – SAML SP Single Sign On provides the feature to assign WordPress roles to your users based on the group/role sent by your SAML compliant IDP. Reverse-proxy Support – Support for sites behind a reverse-proxy in SAML SP Single Sign On Premium plugin. Multiple Certificates – Store Multiple SAML IdP Certificates. Custom Certificate – Add your own custom X.509 Certificate for sending signed SAML Request and verification of encrypted SAML Response. WordPress Multi-site Support – Multi-Site environment is one which allows multiple subdomains / subdirectories to share a single installation. With multisite SAML premium plugin, you can configure the SAML compliant IDP in minutes for all your sites in a network. While, if you have basic SAML premium plugin, you have to do plugin configuration on each site individually as well as multiple SAML service provider configurations in the SAML compliant IDP. For Example – If you have 1 main site with 3 subsites. Then, you have to configure the plugin 3 times on each site as well as 3 SAML service provider configurations in your IDP. Instead, with multisite SAML premium plugin. You have to configure the plugin only once on main network site as well as only 1 SAML service provider configuration in the SAML compliant IDP. Enterprise Version Features Includes all the SAML STANDARD version features. SAML Single Logout – Support for SAML Single Logout (Works only if your SAML IDP supports SLO). Auto-redirect to IDP – Users will be redirected to SAML compliant IdP for SSO when trying to access the WordPress login page. Protect Site – Users trying to access WordPress will be redirected to the SAML compliant Identity Provider for SSO. Advanced Role Mapping – SAML SP Single Sign On provides the feature to assign WordPress roles to your users based on the group/role sent by your SAML compliant IDP. Reverse-proxy Support – Support for sites behind a reverse-proxy in SAML SP Single Sign On Premium plugin. Multiple Certificates – Store Multiple SAML IdP Certificates. Custom Certificate – Add your own custom X.509 Certificate for sending signed SAML Request and verification of encrypted SAML Response. WordPress Multi-site Support – Multi-Site environment is one which allows multiple subdomains / subdirectories to share a single installation. With multisite SAML premium plugin, you can configure the SAML compliant IDP in minutes for all your sites in a network. While, if you have basic SAML premium plugin, you have to do plugin configuration on each site individually as well as multiple SAML service provider configurations in the SAML compliant IDP. Multiple SAML IDPs Support – We now support configuration of Multiple SAML compliant IDPs in the plugin to authenticate the different group of users with different SAML IDPs. You can give access to users by users to IDP mapping (which SAML compliant IDP to use to authenticate a user) is done based on the domain name in the user’s email. (This is a PREMIUM feature with separate licensing. Contact us at info@xecurify.com to get licensing plans for this feature.) All-Inclusive Version Features Includes all the SAML ENTERPRISE version features Recommended for most use cases such as login using Azure AD, Azure AD B2C, ADFS, Keycloak, Okta, Salesforce, GSuite / Google Apps, O365, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, OneLogin, Bitium, WSO2, NetIQ etc. All SAML add-ons included. If you are looking for a SAML compliant Identity Provider, you can try out miniOrange On-Premise IdP. Add-ons We have a variety of add-ons that can be integrated with the SAML SP SSO plugin to improve the SAML SSO functionality of your WordPress site. Page Restriction – This add-on is basically used to protect the pages/posts of your site with SAML compliant IDP login page and also, restrict the access to pages/posts of the site based on the user roles. BuddyPress Integration – This add-on maps the attributes fetched from the SAML compliant IdP with BuddyPress attributes. LearnDash Integration – This add-on will map the SAML SSO user to LearnDash groups as per the attributes sent by your SAML compliant Identity Provider. SSO Login Audit – SSO Login Audit captures all the SAML SSO users and will generate the reports. Attribute Based Redirection – ABR add-on helps you to redirect your users to different pages after they authenticate via SAML SSO into your site, based on the attributes sent by your SAML compliant Identity Provider. Real Time User Provisioning using SCIM Provides real time user-provisioning from your IDP to your WordPress using SCIM standard. You can refer our WordPress User Provisioning using SCIM plugin. Contact us at info@xecurify.com to get SAML add-ons. Website – Check out our website for other plugins http://miniorange.com/plugins or click here to see all our listed WordPress plugins. For more support or info email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.