Single Sign on in EduBrite with Google Apps SAML Integration

SAML based Single Sign on with Google IdP

If you are using Google apps for business, you can configure your EduBrite LMS microsite to do single sign on with your google domain using SAML 2. This is in addition to EduBrite's marketplace app that can be used to do single sign on.

Steps for establishing the Google-EduBrite SAML SSO.

Step 1. Login to your google domain as an admin and go to Manage this domain->Apps->SAML apps and click on + (create new)

Step 2. Click on Setup My Own Custom App

Step 3: From next step, copy the Google SSO IdP url. You will need this later. Also click on Download Certificate and save the certificate file. You will need this file later. Click Next

Step 4. Enter the name of the app, and click Next

Step 5. Enter the ACS URL like this - https://yoursite.edubrite.com/oltpublish/site/samlLoginResponse.do  . Make sure to change the microsite name "yoursite" in url to match with your microsite url. URL is case sensitive. In name id select the Primary Email and in format select Email. Click Next

Step 6: In this step, add the attribute mappings for firstName, lastName and Email, as shown below. Click Next

Step 7. Enable the app for all users in your domain.

Step 8A. Login to lms microsite as site admin, and go to Site Admin->Site Details->Customization. Enter a property SAML_IDP_URL=<your copied SSO URL from step 3 above

Step 8B - Enable Site Security Settings 'Enable SAML v2 Single Sign on'

 

Step 9. Go to Site Admin->CMS and create a new Data Source with name SAML_IDP_CERT.cer. Open the SSO certificate file downloaded in step 3 above in a text editor, and copy paste its content in the data source's content. Save draft and publish the data source content.

 

This is all you need to do. Next, for testing, logout from LMS microsite and refresh your google mail interface (or logout and login again to your google domain mail account). Expand the apps menu and expand More link to see additional apps. You will find the app you created there, click on it to sign on to your LMS microsite.

Another way to access single sign on is to go to LMS microsite directly and click on Signin using SSO.

 

 


Rating: