Online Help

SafeNet Trusted Access for WordPress

Overview

Configuring SafeNet Trusted Access for WordPress is a three-step process:

1.WordPress setup

2.SafeNet Trusted Access setup

3.Verify Authentication

WordPress Setup

As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access Console by clicking the Download metadata file button. You will need this metadata in one of the steps mentioned below.

1.On the WordPress administrator Dashboard, in the left, click Settings > General and perform the following steps:

a.In the WordPress Address (URL) field, replace localhost with a unique IP or FQDN (of the machine) so that Identity Provider is able to recognize the server on which WordPress is hosted.

b.In the Email Address field, enter your email address for administration purposes.

c.Click Save Changes.

2.From the WordPress Administrator Dashboard, install and activate the miniOrange-saml-20-single-sign-on.zip WordPress plugin. You can download the zip file from your miniOrange account.

3.In the left, click miniOrange SAML 2.0 SSO, and in the Account Setup tab, register and verify your license with miniOrange.

4.In the Identity Provider tab, perform the following steps:

a.Select the Do not Use miniOrange Single Sign on service option.

b.Under Provide this metadata URL to your Identity Provider, click the metadata URL link to download WordPress metadata.

Example: http://wptest:8080/wordpress/?option=mosaml_metadata

5.In the Service Provider tab, click Upload IDP Metadata to upload the Identity Provider metadata.

6.Under Upload IDP Metadata, perform the following steps:

a.In the Identity Provider Name field, enter the name of Identity provider.
Example: SafeNet_IDP

b.In the Upload Metadata field, click Choose File to import metadata, and click Upload.

7.The Identity Provider details are added to WordPress plugin. Click Save.

8.In the Attribute/Role Mapping tab, under Attribute Mapping, in the Login/Create WordPress account by field, select Username, and click Save.

9.In the SSO Login Settings tab, perform the following steps:

a.In the Relay State URL field, enter the administrator console URL, and click Update.
Example: https://<WordPress server>/wordpress/wp-admin

b.Under Option 1: Use Default WordPress Login, select the following:

Check this option if you want to auto direct the user to IdP

Checking this option creates a backdoor to login to your Website using WordPress credentials in case you get locked out of your IdP

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in WordPress, the second step is to activate the WordPress application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the WordPress application you added earlier is currently inactive state by default. To configure and activate this application, click the application (for example, WordPress) and proceed to the next step.

2.Under STA Setup, click Upload WordPress Metadata.

3.In the Metadata upload window, click Browse to search and select WordPress metadata, you downloaded earlier in step 4(b).

4.Under Account Details, service provider metadata information is displayed.

5.Click Save Configuration to save the details and activate the WordPress application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the https://<server name>:<port>/wordpress/wp-admin URL to log in to WordPress. You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the WordPress application.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the WordPress application icon. You should be successfully logged in to the WordPress application.

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.