SAML Handbook

2. Service Provider Setup

This tab gives you the feature to configure your Identity Provider.  Here you have to provide your IdP’s metadata URLs. The Premium Plugin even gives you the options of SAML Logout URL, NameID Format and HTTP Binding type which are not there in free version plugin.

    • This tab gives you the option to select your Identity Provider from the list where you can find the link of the guide to configure your Identity Provider with miniOrange. You can contact us if you don’t find your Identity Provider in the list.
    • There are two ways to configure your Identity Provider with miniOrange :
      1. You can upload your IdP metadata. You have to click on ‘Upload IDP Metadata’ button which will again give you two options :
        1. You have to provide the name of your Identity Provider and choose the .xml file containing the metadata from your device and Upload it.
        2. You can enter the metadata URL of your IdP and click on Fetch Metadata.

        Here, you are provided with an option to update IdP settings which will ping the metadata URL at regular intervals if there are some changes.Both the above methods will automatically store the required settings to configure the IdP.

      2. You can manually provide your IdP credentials where you need to provide the required settings and SAVE
        – Identity Provider Name
        – IdP Entity ID or Issuer
        – SAML Login URL
        – X.509 Certificate
    • When you are configuring your IdP, you will be given two options to send your SAML request.  You can select any of these options to send your SAML Request.
      1. HTTP-Post binding type
      2. HTTP-Redirect binding type
    • While configuring, it also provides the feature to add Single Logout URL. But, this feature will only work if your IdP supports Single logout. Here also you can select the option of binding type to send your request.
    • After you provide your IdP’s metadata URL’s, you SAVE it and go to Test Configuration. There a new window will open which will display either of the following configuration status :-
      1. Configuration successful – with user attributes.
      2. Error message – if any configuration error sent by IdP.

 

 

  • It also gives an option of Export Plugin Configuration where you can download a .json file which contains the following things :
    1. Complete configuration of your plugin
    2. Request generated from SP side
    3. Response received from Identity Provider
    4. Version Dependencies

    If  the IdP sends any error in test configuration, you have the option to download .json file in that window also. There, the .json file will also show the Error occurred with its cause.

    After you download the .json file if any error occurred in your configuration, you just have to mail us at info@miniorange.com and our support team will get back to you.