Start off by creating the Wordpress application.
- In the AuthAnvil Manager > Single Sign-On, under “Applications” click on the WordPress app
- Click the “Enabled” button at the top of the Application Configuration tab
- Under Protocol Configuration Tab:
- Select "SP-Init Redirect" as the protocol
- Set the REPLY TO URL as your WordPress site. (e.g. https://blog.mysite.com/ )
- Under Attribute Maps the default will be set to use the Email Address of the user to log into WordPress. For information on how to change this so that you will use the Username of the user to log in, please visit How do I configure SSO for WordPress with Usernames instead of Email Addresses? for configuration steps.
- Save the application and navigate back into the application you just created
- Now that you have saved the configuration for the app, the current server signing certificate has been assigned. Expand the Server Settings tab and click on Download Certificate and choose a spot to save it.
- Open the downloaded *.cer file (e.g. CN=Signing – Scorpion Software Certificate.cer)
- Click on the Details tab in the Certificate dialog box
- Click on “Copy to File…” to save out this certificate to a new file:
- Click Next
- Select Base-64 encoded X.509 (.CER) and click Next
- Provide a File Name and browse to where you would like to save the certificate, then click Next
- Click Finish to export the certificate
- Open the newly created *.cer file in a text editor. You should see the first line begin with:
-----BEGIN CERTIFICATE-----
- Copy the entire contents of the file including the Begin/End headers into the X.509 Certificate setting field in the WordPress settings page. See the Plugin Configuration section for more information about this.
AuthAnvil Single Sign On Role Configuration
Once the application has been added you can either create a new role for WordPress users or you can add the WordPress application to an existing role.
AuthAnvil Single Sign On WordPress Plugin Configuration
Navigate to the WordPress server and locate the WordPress installation directory.
- Place the ‘AuthAnvil’ plugin folder in your ‘/wp-content/plugins’ directory
- Activate the AuthAnvil Single Sign On plugin
- Navigate to the authentication provider settings under Settings > AuthAnvil SSO
- Replace the hostname of the Sign On URL with the hostname of your AuthAnvil SSO server
- Replace the hostname of the Sign Out URL with the hostname of your AuthAnvil SSO server
- Copy the entire contents of the certificate file from the last step of the previous section into the X.509 Certificate setting field.
Your WordPress configuration should look similar to this:
Verifying Functionality
Once the installation is complete, you should test that everything is working as expected. This can be accomplished by logging into the SSO portal using a user that is authorized to access WordPress and attempt to log in to the WordPress instance. You should automatically be redirected to the WordPress admin section.