SSO JumpCloud – Enterprise SAML & SCIM

SSO JumpCloud – Enterprise SAML & SCIM is a powerful Enterprise-ready plugin that effortlessly connects your WordPress site with JumpCloud using SAML 2.0.

Designed for security-conscious organizations, it provides seamless single sign-on (SSO), automated user provisioning, and advanced role mapping. With our newly released Enterprise Premium Edition, you can now manage complex access requirements and maintain detailed audit trails.

Key Features: * Easy Setup: Connect to JumpCloud in minutes using Entity ID, SSO URL, and Certificate. * Automatic User Creation: New users from JumpCloud are automatically created in WordPress upon their first login. * Secure Authentication: Uses verified SAML 2.0 protocols to ensure your data stays safe. * Developer Friendly: Clean code, hooks for customization, and minimalist design.

Premium Features

Unlock the full power of your enterprise identity management with: * Group-Based Access Control: Restrict login access to specific JumpCloud groups. * Role-Based Redirects: Define custom landing pages for different user roles. * Automated Role Mapping: Dynamically assign WordPress roles based on JumpCloud groups. * Comprehensive Audit Logs: Track every SSO login attempt with detailed metadata. * Enterprise Support: Priority assistance for complex deployments.

Premium Subscription

The Premium features are available via a monthly or annual subscription.

How to Activate: 1. Go to the Premium Features tab in the plugin settings. 2. If you don’t have a subscription yet, use the secure Stripe pricing table to subscribe. 3. Once subscribed, simply click the “Check Subscription Status” button. 4. The plugin will automatically verify your subscription using your administrator email and activate all premium features instantly. 5. You can manage your subscription at any time via the Stripe Customer Portal link provided in the same tab.

Installation & Setup Guide

Configuring Enterprise SSO and Provisioning requires a few steps in both JumpCloud and WordPress. Follow this guide for a flawless setup.

Part 1: JumpCloud Configuration (SAML 2.0)

1. Log in to your JumpCloud Admin Portal.
2. Navigate to SSO Applications and click “+” to add a new application.
3. Search for SAML 2.0 and select Custom SAML App.
4. In the General Info tab, name it “WordPress SSO”.
5. In the SSO tab, enter the following (copy these from your WordPress Plugin settings):
   • IdP Entity ID: Your unique ID (e.g., wp-sso-your-site).
   • SP Entity ID: Copy from Plugin (usually your Site URL).
   • ACS URL: Copy from Plugin (usually https://your-site.com/?jumpssco_acs).
   • SAMLSubject NameID: Default to email.
   • SAMLSubject NameID Format: urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress.
6. In Attributes, add:
   • email -> email
   • firstname -> firstname
   • lastname -> lastname
7. Click save and then export Metadata or copy the SSO URL, Entity ID, and download the IDP Certificate.

Part 2: WordPress Plugin Setup

1. Install and Activate the plugin.
2. Go to Settings > SSO JumpCloud.
3. In the General tab, paste the IDP Entity ID, IDP SSO URL, and the X.509 Certificate obtained from JumpCloud.
4. Click Save Settings.
5. Use the “Test Configuration” button to ensure the connection is established.

Part 3: SCIM Provisioning (Enterprise Feature)

Note: Requires an active Enterprise Premium subscription. 1. In the plugin settings, go to the SCIM Provisioning tab. 2. Toggle “Enable SCIM Provisioning” to ON. 3. Copy the SCIM Base URL and the Bearer Token. 4. In JumpCloud, go to your Application’s Identity Management tab. 5. Select SCIM 2.0. 6. Paste the Base URL and Bearer Token. 7. Test the connection in JumpCloud and click Activate.

Part 4: Final Testing

• Open an Incognito/Private browser window.
• Go to your WordPress login page.
• Click the “Login with JumpCloud” button.
• If successful, you will be authenticated and redirected to your dashboard!