Instructions:

1. Log in to your AWS account
2. In the AWS Management Console, search for AWS Single Sign-On under AWS Services
3. Click on Enable AWS SSO
4. Click on Create AWS Organization if not already created

Instructions:

1. Navigate to Applications → Click Add a new application
2. Select Add a custom SAML 2.0 application
3. Fill in the application details (Application name, Description, etc.)
4. You’ll need to fill service provider details like SP EntityID/Issue and ACS Url. All these details can be found in the SP Metadata Tab of the Plugin
5. Download the AWS SSO SAML Metadata file (required for configuring WordPress as a Service Provider in the next step)

Instructions:

1. Go to the Attribute mappings tab and configure user attributes such as:
   • First Name
   • Last Name
   • Email Address

Instructions:

1. Go to Assigned Users in the configured application
2. Click Add User to assign existing users or create new users under Users → Add User
3. Enter the required user details, assign groups, and save changes

Option A: Upload IdP Metadata (Recommended)

1. Navigate to the Service Provider Setup tab in the SAML SSO plugin
2. Choose your Custom IDP from the list. You will see Auto Configuration Page
3. Here you can either fetch IDP Metadata using AWS Metadata URL or you can Simply Upload the metadata file. Plugin Will Automatically fetch the data and configure itself
4. After that click on the Test Configuration button to test the SSO Configured

Option B: Manual Configuration

1. Enter the required details manually:
   • Identity Provider Name
   • IdP Entity ID / Issuer
   • SAML Login URL
   • X.509 Certificate (provided in the AWS SSO Metadata file)
2. Click Save
3. Click Test Configuration to verify the attributes and values received from AWS IdP