To configure DNN as an IdP for the Janison CLS follow the instructions below.

OK, so this is not going to be as easy as that :) but below is a procedure to configure DNN as a SAML IdP to connect to the Janison LMS. This process kind of works for any SAML integration, for example you needs certifcates etc, and you need to exchange them between the IdP and the SP.

Before you get started you need a few things:

1. A program like 'CreateCertGUI' or 'IIS" to generate a private signing key with a a password
2. The SAML module that Interactive webs developed for us
   1. Add a page in admin
   2. add a module to the page
3. A test environment
4. A bit of time and patience

Other than that you're right to go.

1. Go to Admin>Advanced Settings > SAML Configuration
2. Open the SAML dashboard
3. In the “Certificate” field paste the following:
   CN=*.canopi.com.au, OU=Domain Control Validated;LocalMachine;My;
4. From the profile items, take at least first name, last name and email (this is what will be transferred to the LMS when someone logs accress to the LMS)
5. Select the 'Save' button
6. Select 'Download Metadata' (XML) and save in a secure location (canopi production>certificates> (in the format of matt.canopi.com.au)
7. Open the XML in an editor and scroll down to for encryption < X509Certificate > (should be the last block of nonsense text)
8. Copy the encryption key between the tags and paste in a text file
9. Save this in your folder as [subdomain]PublicKey.cer
10. Use a tool like IIS to create a personal signing certificate (.pfx extension) - Don't forget to record your password!
11. Log into the CLS site as a Super Administrator
12. Navigate to Settings>Authentication
13. In 'Authentication model' change the model to SAML
14. Tick 'Create users' and 'Update users'
15. Leave the other metadata off
16. 'Log in literal' change to 'SAML SignOn' (this is how the systems identify to each other – not essential)
17. From the XML in step 7. copy the "Single SignOn service" location (HTTPS://matt.canopi.com.au/DesktopM...es/SAML... etc)
18. Paste this into the LMS 'IdP SSO URL'
19. For the IdP certificate file – select the public key you saved earlier (**.cer) (some installations of SAML may provide you with a .crt, this will work as well)
20. For the signing key file select the *.Pfx file you created earlier
21. Tick ‘Display password’ and populate the signing key password with the password you used in CreateCertGUI (step 12)
22. Scroll to the bottom of the screen and select save
23. Select the ‘download’ near the top next to metadata (if you get a white screen of death error when you try to download the metadata, you have probably used the wrong password)
24. Open the newly downloaded XML file
25. Toward the bottom of the file add the following:
    ?binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST 
    ?binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact 
    
     To make it look like this:
    
    https://rugby.canopihr.com.au/auth/...:HTTP-POST">
                            https://rugby.canopihr.com.au/auth/...P-Artifact">
26. By default the Janison 'POST' and 'Artifact bindings' do not define the binding method so we need to add these to the XML file
27. Save the XML file in the following format [subdomain]-canopi-janison-com.xml in the production certificates file
28. Return to the DNN SAML configuration page
29. Under the services provider tab select add
30. Select your newly modified XML file from Janison and select upload
31. Select save