Articles in this section

How to setup SSO with OneLogin

Updated

This article describes how an organization can set up SSO with OneLogin utilizing the SAML2 protocol.

  Prerequisites

  • Global Administrator rights to OneLogin.

Step-by-Step Installation

  1. In OneLogin, go to Apps and Add Apps.
  2. Search for SAML.
  3. Choose SAML Test Connector (Advanced).
  4. Name it Templafy and click Save.
  5. Go to Configuration, enter the SAML2 settings below according to the cluster of your Templafy tenant, and click Save.
    Metadata URL

    West Europe (Production 0):
    https://templafyprod0.auth.templafy.com/auth/saml2/auth-services

    West Europe (Production 1):
    https://templafyprod1.auth.templafy.com/auth/saml2/auth-services

    East US (Production 2):
    https://templafyprod2.auth.templafy.com/auth/saml2/auth-services

    East Australia (Production 3):
    https://templafyprod3.auth.templafy.com/auth/saml2/auth-services

    Canada (Production 4):
    https://templafyprod4.auth.templafy.com/auth/saml2/auth-services

    West Europe (Production 5):

    https://templafyprod5.auth.templafy.com/auth/saml2/auth-services
    Audience/ Recipient https://auth.templafy.com/auth/saml2/auth-services
    ACS (Consumer) URL Validator 
    /
    ACS (Consumer) URL

    West Europe (Production 0):
    https://templafyprod0.auth.templafy.com/auth/saml2/auth-services/Acs

    West Europe (Production 1):
    https://templafyprod1.auth.templafy.com/auth/saml2/auth-services/Acs

    East US (Production 2):
    https://templafyprod2.auth.templafy.com/auth/saml2/auth-services/Acs

    East Australia (Production 3):
    https://templafyprod3.auth.templafy.com/auth/saml2/auth-services/Acs

    Canada (Production 4):
    https://templafyprod4.auth.templafy.com/auth/saml2/auth-services/Acs

    West Europe (Production 5):
    https://templafyprod5.auth.templafy.com/auth/saml2/auth-services/Acs
    Login URL https://CLIENTSUBDOMAIN.hive.templafy.com or https://CLIENTSUBDOMAIN.templafy.com
    Hash function to use for digital signing at IdP SHA-256
    User Identifier mail
  6. Click Parameters, then click on the plus icon.
  7. In field name, enter http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier.
  8. Check Include in SAML assertion and click Save.
    mceclip5.png

  9. Click on the newly created parameter.
  10. Set the Value to Email, and click Save.
  11. Click SSO.
  12. Change SAML Signature Algorithm to SHA-256, and click Save.
  13. Copy the Issuer URL and send it to your Templafy Implementation Partner along with the metadata.xml file.

Related to

SSO authentication OneLogin
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.