Follow

How can I configure a WordPress site with SSO?

AuthAnvil SSO v3.0

From within the AuthAnvil SSO Manager navigate to the Applications section and create a new Application.

  1. Set the public name for the application. This will be the publically visible name within the portal.
  2. Set the reply to URL as your WordPress site. E.g. https://blog.mysite.com/
  3. Set the Audience URI to be the same as your Reply To URL
  4. Configure the icon you want to use, or leave it blank and it will be set with a default. Within the directory of the WordPress plugin is a PNG file you can use as well.
  5. Save the application and navigate back into the application you just created
  6. Click “Edit Attribute Maps” and create a new map. The attribute name should be “http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name” without the quotes and the value should be “{Email}” without the quotes.

    The Attribute Map should look similar to this:

  7. Save the map and close the window
  8. Within the application settings download the signing certificate and open the *.cer file
  9. Within the Certificate window navigate to the Details tab and click Copy to File…
  10. Save the certificate as Base-64 encoded X.509 (.CER)
  11. Open the newly created *.cer file in a text editor. You should see the first line begin with:
    -----BEGIN CERTIFICATE-----
  12. Copy the entire contents of the file including the Begin/End headers into the X.509 Certificate setting field in the WordPress settings page. See the next section for more information about this.

Your configuration should look similar to this:

AuthAnvil SSO v3.6 or v4.0

Since AuthAnvil v3.6, WordPress is a pre-configured application. You do not need to create a new application.

  1. In the AuthAnvil Manager > Single Sign On, under “Applications” click on theWordPress app
  2. Click the “Enabled” button at the top of the Application Configuration tab
  3. Under Protocol Configuration set the REPLY TO URL and the AUDIENCE URI as your WordPress site. (e.g. https://blog.mysite.com/ )
  4. Save the application and navigate back into the application you just created
  5. Now that you have saved the configuration for the app, the current server signing certificate has been assigned. Expand the Server Settings tab and click on Download Certificate and choose a spot to save it.
  6. Open the downloaded *.cer file (e.g. CN=Signing – Scorpion Software Certificate.cer)
  7. Click on the Details tab in the Certificate dialog box
  8. Click on “Copy to File…” to save out this certificate to a new file:
    • Click Next
    • Select Base-64 encoded X.509 (.CER) and click Next
    • Provide a File Name and browse to where you would like to save the certificate, then click Next
    • Click Finish to export the certificate
  9. Open the newly created *.cer file in a text editor. You should see the first line begin with:
    -----BEGIN CERTIFICATE-----
  10. Copy the entire contents of the file including the Begin/End headers into the X.509 Certificate setting field in the WordPress settings page. See the Plugin Configuration section for more information about this.

AuthAnvil SSO v5.0 and higher

Start off by creating the Wordpress application.

  1. In the AuthAnvil Manager > Single Sign On, under “Applications” click on theWordPress app
  2. Click the “Enabled” button at the top of the Application Configuration tab
  3. Under Protocol Configuration Tab:
    • Select "SP-Init Redirect" as the protocol
    • Set the REPLY TO URL as your WordPress site. (e.g. https://blog.mysite.com/ )
  4. Under Attribute Maps the default will be set to use the Email Address of the user to log into WordPress. For information on how to change this so that you will use the Username of the user to log in, Please visit This Article for configuration steps.
  5. Save the application and navigate back into the application you just created
  6. Now that you have saved the configuration for the app, the current server signing certificate has been assigned. Expand the Server Settings tab and click on Download Certificate and choose a spot to save it.
  7. Open the downloaded *.cer file (e.g. CN=Signing – Scorpion Software Certificate.cer)
  8. Click on the Details tab in the Certificate dialog box
  9. Click on “Copy to File…” to save out this certificate to a new file:
    • Click Next
    • Select Base-64 encoded X.509 (.CER) and click Next
    • Provide a File Name and browse to where you would like to save the certificate, then click Next
    • Click Finish to export the certificate
  10. Open the newly created *.cer file in a text editor. You should see the first line begin with:
    -----BEGIN CERTIFICATE-----
  11. Copy the entire contents of the file including the Begin/End headers into the X.509 Certificate setting field in the WordPress settings page. See the Plugin Configuration section for more information about this.

AuthAnvil Single Sign On Role Configuration

Once the application has been added you can either create a new role for WordPress users or you can add the WordPress application to an existing role.

AuthAnvil Single Sign On WordPress Plugin Configuration

Navigate to the WordPress server and locate the WordPress installation directory.

  1. Place the ‘AuthAnvil’ plugin folder in your ‘/wp-content/plugins’ directory
  2. Activate the AuthAnvil Single Sign On plugin
  3. Navigate to the authentication provider settings under Settings > AuthAnvil SSO
  4. Replace the hostname of the Sign On URL with the hostname of your AuthAnvil SSO server
  5. Replace the hostname of the Sign Out URL with the hostname of your AuthAnvil SSO server
  6. Copy the entire contents of the certificate file from the last step of the previous section into the X.509 Certificate setting field.

Your WordPress configuration should look similar to this:


Verifying Functionality

Once the installation is complete, you should test that everything is working as expected. This can be accomplished by logging into the SSO portal using a user that is authorized to access WordPress and attempt to log into the WordPress instance. You should automatically be redirected to the WordPress admin section.

Questions?

If you have any questions or need some help, we would be happy to assist. Open a case at help.scorpionsoft.com or send an email to support@scorpionsoft.com.

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk