SP initiated SSO means that the SSO login flow is initiated by the user from the Service Provider’s side i.e. the WordPress site using a button/link/shortcode.
Single Sign-On (SSO) through Service Provider can be initiated in four ways using the WordPress SAML SSO Plugin:
- Auto redirection from site
- Auto redirection from WP login page
- Login button
- SSO Links (link, widget, shortcode)
- Auto-Redirection from site (Protect Complete Site): If a login session is not found at WordPress then the users are redirected to the IDP login page when they try to access any page/post on your site. This feature ensures that only authenticated users are able to access your WordPress Site.
Note: The Forced Authentication option forces the user to authenticate themselves each time they try to login into the WordPress site, i.e. with every login attempt in WordPress, the user is forced to provide credentials on the IDP even if already logged into the IDP.
- Auto-Redirection from WordPress Login: This is an extension of “Auto-Redirection from WordPress site” feature that redirects users to the IDP login page when they try to access any WordPress site admin page i.e. wp-admin or wp-login.php.
Note: This feature also has the additional functionality of backdoor access to your WordPress site through your WordPress login in case you get locked out of your IDP.
- SSO Links: This allows you to add a widget, shortcode, or link, anywhere (any page/post or header/footer) on your site for users to login to your WordPress site using IDP credentials.
- Plugin inherently support IDP initiated SSO.
If you are still facing any issue the feel free to reach us at firstname.lastname@example.org