Configuring SAML for Wordpress

REQUIRED ACCOUNT/PERMISSION LEVEL

Bitium: All account levels; must be an Admin to set up

Wordpress: Paid Account; must be an Admin to set up

In Bitium:

  1. Go to “Manage Apps.”

  2. Select “Wordpress” from the list of installed apps.

  3. Select the “Single Sign-On” tab.

  4. From the dropdown, select “SAML Authentication.”

    Select Single Sign-On Provider

  5. Copy the Entity ID, Login URL, and X.509 Certificate from Bitium.

    SAML Configuration

Leave your Bitium window open and continue in a new tab.

In Wordpress:

Install the Mini-Orange plugin. You will have to log in with a Mini-Orange account during the installation process.

  1. Click the “Identity Provider” tab.

  2. Click the “Do not Use miniOrange Single Sign on service” radio button.

  3. Copy the “SP-EntityID / Issuer” from Wordpress.

  4. Copy “ACS (AssertionConsumerService) URL” from Wordpress.

    Configure IDP

  5. Click “Save.”

  6. Click the “Service Provider” tab.

  7. Paste the Entity ID into the IdP Entity ID or Issuer field in Wordpress.

  8. Paste the Login URL into the SAML Login URL field in Wordpress.

  9. Paste the X.509 Certificate into the X.509 Certificate in Wordpress.

  10. Uncheck the “Response Signed” box.

  11. Check the “Assertion Signed” box.

    Configure Service Provider

  12. Click “Save” in Wordpress.

In Bitium:

  1. Paste the “SP-Entity ID/Issuer” copied in above into the “Entity ID” field in Bitium.

  2. Paste the “ACS (AssertionConsumerService) URL” copied above into the ACS URL field in Bitium.

    Wordpress SAML Settings

  3. Click “Save” in Bitium.

JIT Provisioning:

  1. Click the “Attribute/Role Mapping” tab.

  2. Fill in FirstName and LastName in First Name and Last Name fields.

    JIT Provisioning

  3. Click “Save.”

SAML Enabled will be illuminated in green once completed.