Enable Custom Domain


Custom Domain

MiniOrange allows you to use a Custom Domain name of your choice. Usually, people want to give their users a consistent and integral user experience. When you start using miniOrange services, the public-facing URLs are kind of <your-domain>.xecurify.com/moas/login.

In miniOrange, you need to set an 'Organization Name' which will be unique to all the users. And we use this Organization name to create some important URLs, metadata, etc. Now, the end-users are used to only your domain and working around it. But when you set up miniOrange services and when they see the new domain, they will get confused. To avoid such a condition, we provide the 'Custom Domain' feature.

Suppose your miniOrange domain is yourdomain.xecurify.com, you can choose to keep it as login.yourdoamin.com or whatever you want! With this feature, we will keep your users on the same domain, even when they would start using the miniOrange services. This gives them a seamless and trustworthy experience that they have not left their main site and are still working around it.

MiniOrange custom domains are available with any paid subscription plan. If you want to manage the SSL/TLS certificates yourself, you will need a Premium Subscription Plan. For more information contact us at info@xecurify.com

 

Certificate Management Option

1. miniOrange-managed Certificates

With the miniOrange-managed certificate approach, miniOrange uses Let’s Encrypt to get certificates for your domain. You don't have to worry anything about Certificate issuance and installation. MiniOrange will guide you in all the aspect.

When you already have a certificate:

If you already have a certificate with you and you wish to use it for the custom domain, you need to provide the following details corresponding to the certificate.

  • Certificate Body (PEM Encoded)
  • Certificate Private Key (PEM Encoded)
  • Certificate Chain (PEM Encoded)

You simply have to send us the above-mentioned details (files), we will host it on our load balancers.

How to generate a certificate on your own (DIY):

If you don't have a certificate of your own, no need to worry, just follow these steps to obtain a certificate for your domain.

  1. Go to Let's Encrypt.
  2. If you have shell access to your site, you can go with the first approach. You can use Certbot to create and install certificate within minutes.
  3. If you don't have shell access to your site, you can follow the second approach mentioned in the here
  4. Certbot gives us customized instructions depending on our system environments like Software (Apache, Nginx, Plesk, etc.) and Server (Debian, Ubuntu, CentOS, etc.) on which our website is hosted.
  5. You can follow instructions given over there to generate and install the certificate on your server.

After getting your own certificate, you must provide us with the three components mentioned in previous section.

The next step is Adding CNAME record in the DNS settings. You need to point the host to a link provided by us.

2. Self-Managed Certificates

With the self-managed certificate approach, you are completely responsible for handling the SSL certificates and setting up and managing a reverse proxy for content to be sent to miniOrange. MiniOrange does not negotiate SSL with the end user’s client, but with the proxy. The proxy, in turn, negotiates SSL with the end-user. The main aspect of this approach is the Configuration of a reverse proxy.

The reverse proxy server retrieves resources on behalf of your client from one or more servers. These resources are then returned to the client, appearing as if they originated from the proxy server itself. You can use a service such as Cloudflare, Azure CDN, or AWS Cloudfront and configure settings for your custom domain.

Setting Custom Domain Name

MiniOrange provides two kinds of IDP solution. First is Cloud and another one is On-Premise.


In Cloud IDP, if you want to set the Custom Domain Name, you can follow these steps.

  1. Login to your miniOrange Admin Dashboard.
  2. Goto Customization Section. There, you can see the basic settings.
  3. Enter your desired domain name against the Organization name input field.
  4. Click On SAVE.
custom branding configuration

For further process, please contact us at info@xecurify.com

In On-Premise IDP, if you want to set the Custom Domain Name, you can follow these steps.

  1. Login to your miniOrange Admin Dashboard.
  2. Goto Product Settings Page
  3. There, you can see the Base Server URL input field.
  4. You can enter your desired URL (For example dept.company.com), scroll down on the same page, click on SAVE.
  5. From that point onwards, you will be able to use the functionalities provided by Our On-Premise solution using the custom URL which you entered.
Onpremise Branding
 

Metadata endpoints

MiniOrange provides different kinds of endpoints, URIs, metadata, etc. through which you can integrate the 3rd party Applications or Identity Providers into miniOrange and complete your use-case as per the need. We make use of <your-domain> to create such metadata.

Usually, we provide the main three such URLs based on the 'Organization Name', they look something like this:

Login Page URL https://<your-domain>.xecurify.com/moas/login
Registration Page URL https://<your-domain>.xecurify.com/moas/idp/usersignup
Forgot Password Page URL https://<your-domain>.xecurify.com/moas/idp/resetpassword

But with Custom Domain, you will get something like:

Login Page URL https://<mycompany.domain-name.com>/moas/login
Registration Page URL https://<mycompany.domain-name.com>/moas/idp/usersignup
Forgot Password Page URL https://<mycompany.domain-name.com>/moas/idp/resetpassword