Close
Picture of DNN SAML Single Sign On (SSO)

DNN SAML Single Sign On (SSO)

posted by miniOrange - 08/08/2019
$0.00
$449.00
$648.00

SAML Single Sign On

miniOrange SAML Single Sign on (SSO) plugin acts as a SAML Service Provider which can be configured to establish the trust between the plugin and a SAML capable Identity Providers to securely authenticate the user to the DNN site.

  • No need to understand complex SSO Protocols
  • Easy to perform SSO with any Identity provider
  • Provides stable, fast and secure 24/7 access to your online service

Key Features

Single Sign On

Easy and seamless access to all resources. DNN Single Sign On via any existing SAML 2.0 Identity Provider

Protect Your Complete Site

You can restrict your site to only logged in users by redirecting the users to your IdP if logged in session is not found

Multiple IdPs Supported

Configuration of multiple IDP's to authenticate the different group of users with different IDP's.

Attribute Mapping

Helps you to get user attributes from your IdP and map them to DNN user attributes like firstname, lastname with support for custom attributes

Role Mapping

Helps you to assign specific roles to users of a certain group in your IdP

Single Logout

Allows user to logout once from any service provider even user handling multiple service provider.

Widget to add IDP Login

Add a link or button anywhere on your DNN site to allow user to authenticate via their Identity Provider

Auto-sync IdP Configuration from metadata

Keep your IDP SAML Configuration and Certificates updated and in sync

Multi-Portal Support

Allows multiple subdomains/subdirectories to share single installation. Configure the IDP for all your portals in a network

Supported Identity Providers

 
ADFS
Azure AD
Okta
Salesforce
Auth0
Keycloak
Shibboleth
OneLogin
Centrify
WSO2
IBM
RSA
BitIQ
miniOrange
Google Apps
Ping Identity
Office 365
Bitium
Gluu Server
SimpleSAMLphp
OpenAM
Oracle
NetIQ
CA Identity
And Many More...

 

 

 

Guide

Read our Step-by-step guide to setup IDP



Click Here

Support

 

  • 24x7 access to Support Engineers via email and dedicated account manager on phone
  • 24x7 access to Self-help Resources, Getting started guides and support forums
  • Initial Response Time within 24 hrs ( All business days)
  • Customer specific architectural support such as proposed deployment architecture options, performance tuning, configuration and implementation assistance delivered by miniorange technical specialists.
  • For support or info email us at [email protected] or Contact us.

     

 

FAQ

A: The Claims contain the user profile attributes. A user identifier needs to be sent in a claim along with any other additional attributes (which are optional).

A: We support all major encryption and signing algorithms supported by any SAML compliant IDP.
RSA: RSA_SHA1, RSA_SHA256, RSA_SHA384, RSA_SHA512, RSA_1_5, RSA_OAEP_MGF1P
DSA: SHA1
AES: AES128_CBC, AES192_CBC, AES256_CBC, AES128_GMC
HMAC : HMAC_SHA1
TRIPLEDES : TRIPLEDES_CBC

A:
  1. Download SAML tracer add-on for firefox
  2. After the extension has been installed login to your Admin console.
  3. Go to the Identity Provider Tab in WordPress IDP settings.
  4. Open the SAML tracer from the firefox menu.
  5. Keep the SAML tracer window open and click on Test as shown below.
  6. In the SAML Tracer windows click on the link with the keyword Export to get the SAML tracer logs.

A: There are a couple of reasons why this can happen:
  1. Caching is enabled on the website.
    When auto-redirect is enabled, the user is redirected to IDP login page and after logging in back to the main site but as caching is enables it redirects to the IDP login page hence a loop.

  2. HTTP/HTTPS discrepancy:
    This happens when HTTPS is not enforced on the site but is configured on IDP side with HTTPS URL.This can be solved by enforcing HTTPS on the site by defining a redirect rule in the .htaccess file or at the Apache level.

  3. Cookie adulteration:
    The cookie created by the plugin after logging in the user is altered by another plugin which causes the user to not log in DNN site but the session is created on IDP.

 

 

Our other modules

moDNNPageRestriction

miniOrange DNN Page Restriction Module

miniOrange Page Restriction Module for DNN is a plugin that lets you restrict your DNN website pages to logged-in users or particular User Roles. Once enabled on a page, only those users can view that page who have at least one of the specified roles. You can either show a message to users or redirect them to a custom page using URL. This module can be combined with the Single-Sign On modules to force users to be redirected to SSO Login page to fetch the roles from IDP if needed. This way you could set Force login on pages you want to secure.

moDNNMediaRestriction

miniOrange DNN Media Restriction Module

miniOrange Media Restriction Module for DNN is a plugin that lets you protect your media like documents, photos, videos, executables and more to logged-in users or particular User Roles. It lets you block anonymous access to your documents. It prevents unauthorized users from downloading the files on your server. When a visitor tries to access your file/folder on your website, they will be redirected to the login page if the content is restricted. This module can be combined with the Single-Sign On modules to force users to be redirected to SSO Login page.

moDNNS3FileManager

miniOrange DNN S3 file manager Module

miniOrange s3 file manager lets you manage your files stored on Amazon Simple Storage Service(s3) from your DNN website itself. It lets you create, manage and delete s3 buckets from DNN website itself.

moDNNAPISource

miniOrange DNN API Source Module

DNN API Authentication Source module by miniOrange enables users to login into different applications with their DNN credentials. You can achieve Single Sign-On (SSO) into your applications where users can authenticate themselves with their DNN website credentials and get access to all the configured applications. This module helps to set up your DNN website as an authentication source and perform SSO with any Service Provider (SP).

moDNNBackupRestore

miniOrange DNN Backup and Restore Module

DNN Backup and Restore module helps you backup your DNN website and restore when needed. It provides the easiest and secure way with password-protected backup. Your backup can be downloaded quickly, restored with a single click, and also migrated. We offer multiple DNN backup methods like file backup, Manual backup, automatic backup and scheduled backup for your website backup and can push them to any remote storage backup or cloud backup platforms like Dropbox, Google Drive, one drive, Amazon S3 servers, etc with the theatrical knowledge.

moDNN2fa

miniOrange DNN 2-factor authentication Module

miniOrange DNN Two factor authenticator (2fa) module secures your DNN login forms by combining them with Two factor authentication. Our module supports Multi-factor authentication (MFA) on DNN login with 15+ authentication methods, like Google Authenticator, OTP Over Email/SMS, validation over What'sApp or Telegram, hardware tokens and many more. It also provides more security options like Risk Based Access, Passwordless login, Push Notification, Security Question, IP blocking and many more.

 

 

About us

miniOrange is a cloud and on-premise based identity and access management (IAM) solution provider. It securely connects enterprises to their customers and partners by providing and supporting single sign-on (SSO), multi-factor authentication (MFA), User Provisioning, Adaptive Authentication, Social Login, and Network Security products and solutions. miniOrange SSO provides Single Sign-On to any type of devices or applications whether they are in the cloud or on-premise. The company aims to give organizations the ability to securely manage access to all of their web based applications in one place.

Contact us

Check out our website for other plugins https://plugin.miniorange.com .
For more support or info email us at [email protected] or Contact us.

For any general or product related information, mail us on:
 
Call Us On: