Netbase Cmsmart

Admin SAML Single Sign On Plugin

  • Popularity Score 7 Popularity Score

    Popularity ScoreReferrals to Site/Downloads

    0 0 1+ 1+ 250+ 250+ 1000+ 1000+ 10000+ 10000+

This plugin helps you to connect Admin panel instance with any SAML 2.0-compliant Identity Provider
Compatible with:
This extension is currently unavailable on Magento Connect. Please contact the developer.

You will be re-directed to the developer's website to complete your purchase.

You must be registered and logged in to get extension key.
In order to get this extension, you must be logged in to the Magento Community. Click here to login or register.

Magento Connect

$249.00
Previous Next
Overview

Admin SAML Single Sign On Plugin

This extension allows you to use any SAML 2.0-compliant Identity Provider for Single Sign-On to your Admin Panel instance.

You can use this extension to interoperate with any Identity Provider, enabling SSO at the backend for administrators. It works with any IDP providers, including OneLogin, Okta, Ping Identity, ADFS, Salesforce, SharePoint,..

The extension add SAML support at Magento deploying a Service Provider. On this extension the SAML flow can be initiated at the Identity Provider or at the Service Provider. Once metadata info is exchange between the entities and the rest of the settings configured on the admin panel, the Single Sign On feature is available and a customized link will appear on the admin login form.

Once logged on the Identity Provider, a SAMLResponse that includes data of the user will be sent to the Service Provider's Assertion Consumer Service endpoint, there the attributes will be mapped based on the settings and a related user account will be searched with the resulted data. If there is a match the user will be logged, if not and the Just-In-Time functionality is enabled, a new user account will be created on the fly. The extension also support roles.

The single Logout service is an optional feature that is also included on the extension, this service will close not only the Magneto's session, also the sessions of the Identity Provider and all active sessions of the related Service Providers.

At the advanced section of the settings there are a lot of parameters that controls how the Service Provider works, making it compatible with any Identity Provider. There you can decide if require the SAML Messages signed and encrypted or not, if sign the messages and the algorithm used, the NameId Format, the AuthContext required, ...

With this extended admin login form, your users can access Magento backend with any the Identity Provider established, they just click on the link “Login via your Identity Provider”, (the message is customizable) to carry out their login process.

At first setting step, go to powerful admin panel (System > Configuration. At the Services tab, the "SAML (Admin panel)", and at the Status section select “Yes” to enable for its status and provide the License Key. On this section also you see a link to the published metadata of this Service Provider that you need to share with the Identity Provider administrator.

In the “Identity Provider Settings” section, you can set up some info related to the IdP that will be connected with your Magento. Contact the IdP’s administrator and ask him for the IdP metadata in order to fill the fields: IdP Entity Id, Single Sign On Service Url, Single Log Out Service Url and x509 public certificate.

In the “Options” section the behavior of the plugin is set, so you just select “ Yes” for some improtant fields: Create user if not exists, Update user data, Sync role when updating user, default RoleId and Single Log Out.

In the “Attribute mapping” section, we can set the mapping between IdP fields and Magento fields.

In the “Role mapping” section, we can set the mapping between IdP Role values and Magento Roles. Example: admin, owner, super-user. There are 10 fields, the id means that Role id=1 will match the Magento role that has id=1 if exists.

In the “Advanced Settings” section, you can easily handle some other parameters related to customizations and security issues. If sign/encryption is enabled, then x509 cert and private key for the SP must be provided.

VIDEO DEMO - MORE DETAILS

M1 Extension Versions

Version 0.2.0

2016-11-03 03:12:13
  • Version number: 0.2.0
  • Stability: Stable
  • Compatibility: 1.7, 1.8, 1.8.1, 1.9, 1.9.1, 1.9.2
Update php-saml to 2.10.0 (security improvements)

Version 0.1.0

2016-03-17 08:51:17
  • Version number: 0.1.0
  • Stability: Stable
  • Compatibility: 1.4, 1.4.1.1, 1.4.2, 1.5, 1.6, 1.6.1, 1.6.2.0, 1.7, 1.8, 1.8.1, 1.9, 1.9.1, 1.9.2
- Allow to Login via Identity Provider.
- Possible to single sign on/ log out service Url.
- Easily switch On/Off the Admin SAML Module.
- Provisioning/Auto-update user data.
- Single Sign On (IdP & SP initiated).
- Single Log Out (IdP & SP initiated).
- Just-In-Time Provisioning (user data + roles).
- Auto-provisioning: allow to create a new user with the data provided by the IdP.
- Auto-update: update the account of the user with the data provided by the IdP and Review the Mapping section.
- Possibly set the mapping between IdP fields and Magento® fields.
- Roles supported.
Q&A
Get Help

Support for This Extension

The best place to start if you need help with a specific extension is to contact the developer. All Magento developers have both a contact email and a support email listed.

Magento Platform Support

If you need support for a Magento platform, there are different options for support depending on which Magento platform you are using. Below are links for specific platforms.

Reviews

About the Developer

This extension was developed by and is supported by Netbase Cmsmart

In order to upload extension, you must be logged in to the Magento Community. Click here to login or register.

Close

Register

* Required Fields

Close window

Forgot Your Password?

Please enter your email below and we'll send you a new password.

* Required Fields

Close window

Login

To upload extension you must be logged in.

* Required Fields

Close window

You are using an outdated browser

We built Magento Connect using the latest techniques and technologies.
This makes Magento Connect faster and easier to use.
Unfortunately, your browser doesn't support those technologies.
Use the links below to download a new browser or upgrade your existing browser.