+1 978 658 9387    Login  
Hello there!

Need Help? We are right here!

Support Icon
miniOrange Email Support
success

Thanks for your Enquiry. Our team will soon reach out to you.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×

Single Sign-On (SSO) for Apps Using Salesforce as IDP

Configure Salesforce as IDP to Single Sign-On (SSO) into multiple applications by loging using Salesforce as Identity Provider. Here, users can login to all applications (SPs) using their Salesforce login credentials by configuring Salesforce as an Identity Provider (IdP). miniOrange will act as an Identity Broker which forms a trusted connection between IDP and multiple SPs by enabling cross-protocol authentication. This provides easy and secure login access to users by using only one set of login credentials.


Get Free Installation Help


miniOrange offers free help through a consultation call with our System Engineers to configure SSO for different apps using Salesforce as IDP in your environment with 30-day free trial.

For this, you need to just send us an email at idpsupport@xecurify.com to book a slot and we'll help you in no time.



Prerequisites


Follow the Step-by-Step Guide given below to Configure Salesforce as an Identity Provider (IDP)

Mentioned below are steps to configure Salesforce as IDP via SAML and OAuth configuration. Follow the steps accordingly based on your requirement (SAML or OAuth).


1. Retrieve Configuration Details from miniOrange


  • Go to miniOrange Admin Console and click on Setup button within the Add Identity Source card.
    • Login using Salesforce as IdP : Add salesforce as external IDP in miniOrange

  • Click on Add IDP button.
    • Login using Salesforce as IdP : Click on Add IDP tab

  • Now click on the Click here link to get miniOrange metadata as shown in Screen below.
    • Configuring Salesforce as IdP : Get metadetails to configure salesforce SAML IDP

  • For SP initiated SSO section Select Show Metadata Details.
    • Salesforce as IDP: Service Provider metadetails

  • Copy ACS URL and SP Entity ID for future use.

  • Go to miniOrange Admin Console.
  • From the left navigation bar select Identity Provider.
    • Salesforce saml Apps

  • Click on Oauth and copy the OAuth Callback URL.
    • Salesforce as IDP: Salesforce saml Apps


2. Configure Salesforce as an Identity Provider


  • Log in to Salesforce Portal to access the dashboard.
    • Configuring Salesforce as IdP : Salesforce dashboard

  • Go to the Setup page by clicking on setup button.
    • Login using Salesforce as IdP : Go to Salesforce Portal and set Salesforce as IDP

  • From the left panel, select Settings Tab and click on Identity Provider.
    • Configuring Salesforce as IdP : Select Identity Provider in Salesforce Section

  • Click on Enable Identity Provider button. After enabling the Identity Provider, you should be able to see Salesforce metadata endpoints and certificate details.
    • Salesforce IdP : Enable IDP option to see Salesforce SAML endpoints

  • In the Service Provider section, click on the link to create the Service Provider using Connected Apps.
    • Configuring Salesforce as IdP : Link yur app as service provider in Salesforce saml

  • Enter Connected App Name, API Name and Contact Email.
    • Salesforce IdP : Fill connected apps details to configure SAML IDP

  • Under Web App Settings, check the Enable SAML checkbox.
  • For Basic SAML configuration, you need to paste ACS URL and SP Entity ID copied in the previous step from miniOrange and click on Save.
    • Salesforce IdP : Basic SAML Configuration

  • After completing connected app setup you will be redirected to your connected app.
    • Salesforce IdP : Connector app

  • Now Under Profiles section, click on Manage Profiles button.
    • Salesforce IdP : Manage Profile

  • Select the profiles you want to give access to login through this app.
    • Configuring Salesforce as IdP : Add profile setup Salesforce saml

  • Under SAML Login Information, click on Download Metadata button to download the IDP metadata.
    • Salesforce as IdP : Salesforce saml Download Identity Providers metadata


  • Now, Login to your SalesForce portal in a new tab to access the dashboard.
    • Configuring Salesforce as IdP : Salesforce dashboard

  • Click the gear icon in the top-right corner and select Open Advanced Setup.
    • Configuring Salesforce as IdP : Open Advanced Setup

  • Search for apps in search bar at top left corner and navigate to App Manager >> New Connected App button at top right corner.
    • Configuring Salesforce as IdP : New Connected app

  • Select Create a Connected App and click on Continue.
    • Configuring Salesforce as IdP : New Connected app

  • You will be taken to the application settings page. Enter the required details such as Connected App Name, API Name and Contact Email.
    • OAuth/OpenID/OIDC Single Sign On (SSO) using Identity Provider, New connected app

  • Check the Enable OAuth Settings under API(Enable OAuth Settings) section and you will be shown more options to configure.
  • Paste the Callback uri copied earlier from the previous step and select the Scopes as required, uncheck Required Proof Key for Code Exchange and save the settings.
    • Salesforce as an Identity Provider (IdP): Enable OAuth Settings

  • Scroll down and click Save.
  • You will be taken to the Application Management page. Under Api section, Click on Manage Consumer Details.
    • Salesforce as an Identity Provider (IdP): Manage consumer details

  • Here, you will find Consumer key (Client ID) and Consumer Secret (Client Secret). Copy these Consumer key and Consumer Secret.
    • Salesforce as an Identity Provider (IdP): Manage consumer details


3. Configure miniOrange as the Service Provider


  • From the left navigation bar select Identity Provider
  • Click on Add Identity Provider button.
    • Configuring Salesforce as IdP : Identity Provider

  • Select SAML. Click on Import IDP metadata.
    • Login using Salesforce as IdP : IDP metadata

  • Choose an appropriate IDP name. Browse for the file we downloaded in the previous step and Click on Import.
    • Configuring Salesforce as IdP: Salesforce Import

  • Select the appropriate option from the SSO Binding dropdown according to the URL you are configuring.
    • Login using Salesforce as IdP : SSO binding option

  • Click on Save and you will be redirected back to the Identity Providers page.

  • Now come back to miniOrange Dashboard.
  • From the left navigation bar select Identity Provider.
    • Salesforce saml Apps

  • Select Oauth.
    • Salesforce as IDP: Salesforce saml Apps

  • Enter the following values.
    • IdP Name Salesforce
    IdP Display Name Choose appropriate Name
    Client ID Consumer key from step 2
    Client Secret Consumer secret from step 2
    Scope email profile openid
  • You will be redirected back to the Identity Providers page.

4. Test Salesforce IDP Connection

  • Go to Identity Providers tab.
  • Click on Select>>Test Connection option against the Salesforce Identity Provider you configured.
    • Login using Salesforce: Test Salesforce IDP Connection

    Login using Salesforce: salesforce-login

  • On entering valid Salesforce credentials you will see a pop-up window which as shown in below screen.
    • Login using Salesforce: Salesforce as IDP test successful

  • Hence your configuration of Salesforce as IDP in miniOrange is successfully completed.

External References

Want To Schedule A Demo?

Request a Demo
  



Our Other Identity & Access Management Products

Single Sign-On

Seamless login for workforce and customer identity to cloud or on-premise apps

Learn more

Multi-factor Authentication

Secure access for identities with an additional layer of authentication

Learn more

Adaptive Authentication

Block or grant user access based on IP, Device, Time & Location

Learn more

Lifecycle Management

Manage & automate user provisioning and deprovisioning to apps

Learn More