If you've chosen to use the MiniOrange as SP plugin (which we recommend), here are the steps you'll need to take to configure the plugin.
Purchase the MiniOrange Premium plugin and install it in your site. Once installed, and activated, you should see this icon:
You'll also need to procure the MiniOrange License Key from the same dashboard where you downloaded the plugin:
Once activated, navigate to the plugin and login, using the credentials you created during the initial purchase and setup process. Once logged in, you'll also need to provide the license code from Step 1.
In the Service Provider Metadata tab, retrieve and provide the metadata for your site to Cobalt Staff, either in the form of the URL or the XML file. Cobalt will use this data to configure the Service Configuration for SAML.
In the Service Provider Setup tab, click the Upload IDP Metadata button to input the metadata URL provided to you by Cobalt staff. If uploading the metadata URL does not seem to work, confirm that the metadat URL correctly directs you to an XML file in another browser tab. If it does work, please refer to the support team.
When done, the metadata should auto-fill the below boxes. Be sure to Enable the Sign SSO and SLO Requests button. Save these configurations using the Save button at the bottom of the page.
In the Attribute/Role Mapping tab, make sure that the Attribute Mapping matches the image below:
In the Role Mapping section of the same tab, Set the Active Contacts role as the Subscriber (or whatever your base level role is).
In the Redirection & SSO, under the Option 2 block, enable the Redirect to IDP button. This will auto-enable the Enable backdoor login button. Copy down the backdoor URL somewhere safe. If you need to access the back-end, this URL will allow you to reach the website login rather than the SSO login, where you can use your CMS credentials to enter the back-end.
On the same tab, in the Option 3 block, enable toe Use Button as ShortCode and the Use Button as Widget. This will allow you flexibility in how you create the login button. In addition, you may format the shape, theme and size of the login button in this block.
Finally, in the Option 4 block, you can define the text of the login/logout buttons and copy the ShortCode to the login button (if you are using ShortCode) or navigate to the Widgets page to use the Login widget. Regardless of which option you choose, you must choose one of them as these two methods are the only ways to initiate the SSO.
The MiniOrange plugin should now be completely configured. If you experience issues, ask the Cobalt Staff member who is assisting you with your SSO implementation.
Once the MiniOrange plugin is setup & configured, a member will be able to log into both the Cobalt Portal and the website with one set of credentials. Members must be logged into the website before attempting to register for an event since most events require a person to have permission to do so.
- When a member logs into the website, they will land on the homepage that was identified and they will have access to everything that they have been given permission to see. At this point they will be able to register for any event.
- If a member has not logged in and they try to register for an event that is on the calendar, they will be redirected to the embedded login page where they can log in. Once logged in, they will be on the homepage that was identified. To register for the event, they will need to go to the event and go through the registration process.
Some organizations put text on their calendar events telling members that they must be logged in before attempting to register for an event.