Steps to Configure AWS Single Sign-On (SSO) Login into WordPress

1. Set Up AWS as an Identity Provider (IdP) for WordPress SSO Login

Follow these steps to configure AWS as an IdP:

Enable AWS SSO

1. Log in to your AWS account.
2. In the AWS Management Console, search for AWS Single Sign-On under AWS Services.
3. Click on Enable AWS SSO.
4. Click on Create AWS Organization if not already created.

Add a New Application

5. Navigate to Applications → Click Add a new application.
6. Select Add a custom SAML 2.0 application.
7. Fill in the application details (Application name, Description, etc.).
8. You’ll need to fill service provider details like SP EntityID/Issue and ACS Url . All these details can be find in then SP Metadata Tab of the Plugin
9. Download the AWS SSO SAML Metadata file (required for configuring WordPress as a Service Provider in the next step).

Configure Attribute Mappings

9. Go to the Attribute mappings tab and configure user attributes such as:
   • First Name
   • Last Name
   • Email Address

Assign Users to the Application

10. Go to Assigned Users in the configured application.
11. Click Add User to assign existing users or create new users under Users → Add User.
12. Enter the required user details, assign groups, and save changes.

2. Configure WordPress as a Service Provider (SP)

To configure WordPress as an SP, use the SAML SSO plugin:

Option A: Upload IdP Metadata (Recommended)

1. Navigate to the Service Provider Setup tab in the SAML SSO plugin.
2. Choose your Custom IDP from the list. You will see Auto Configuration Page.
3. Here you can either fetch IDP Metadata using AWS Metadata URL or you can Simply Upload the metadata file. Plugin Will Automatically fetch the data and configure itself.
4. After that click on the Test Configuration button to test the SSO Configured.

Option B: Manual Configuration

1. Enter the required details manually:
   • Identity Provider Name
   • IdP Entity ID / Issuer
   • SAML Login URL
   • X.509 Certificate (provided in the AWS SSO Metadata file)
2. Click Save.
3. Click Test Configuration to verify the attributes and values received from AWS IdP.

Conclusion

By following these steps, you can successfully configure AWS as an Identity Provider (IdP) and WordPress as a Service Provider (SP) for seamless Single Sign-On (SSO) authentication.