Articles in this section

How to setup SSO with OneLogin

About this article

This article describes how an organization can set up SSO with OneLogin utilizing the SAML2 protocol.

 

Prerequisites

 
  • Global Administrator rights to OneLogin

 

Step-by-Step Installation

  1. In OneLogin, go to Apps and Add Apps

    mceclip0.png

  2. Search for SAML
  3. Choose SAML Test Connector (Advanced)

    mceclip1.png

  4. Name it Templafy (and add an icon if you want)
  5. Click Save

    mceclip2.png

  6. Go to Configuration, enter the SAML2 settings below according to the cluster of your Templafy tenant, and click Save.

    Metadata URL

    West Europe (Production 0):
    https://templafyprod0.auth.templafy.com/auth/saml2/auth-services

    West Europe (Production 1):
    https://templafyprod1.auth.templafy.com/auth/saml2/auth-services

    East US:
    https://templafyprod2.auth.templafy.com/auth/saml2/auth-services

    East Australia:
    https://templafyprod3.auth.templafy.com/auth/saml2/auth-services

    Canada:
    https://templafyprod4.auth.templafy.com/auth/saml2/auth-services

    West Europe (Production 5):

    https://templafyprod5.auth.templafy.com/auth/saml2/auth-services

    Audience/ Recipient

    https://auth.templafy.com/auth/saml2/auth-services

    ACS (Consumer) URL Validator 
    /
    ACS (Consumer) URL

    West Europe (Production 0):
    https://templafyprod0.auth.templafy.com/auth/saml2/auth-services/Acs

    West Europe (Production 1):
    https://templafyprod1.auth.templafy.com/auth/saml2/auth-services/Acs

    East US:
    https://templafyprod2.auth.templafy.com/auth/saml2/auth-services/Acs

    East Australia:
    https://templafyprod3.auth.templafy.com/auth/saml2/auth-services/Acs

    Canada:
    https://templafyprod4.auth.templafy.com/auth/saml2/auth-services/Acs

    West Europe (Production 5):
    https://templafyprod5.auth.templafy.com/auth/saml2/auth-services/Acs

    Login URL

    https://CLIENTSUBDOMAIN.hive.templafy.com or https://CLIENTSUBDOMAIN.templafy.com

    Hash function to use for digital signing at IdP

    SHA-256

    User Identifier

    mail


  7. Click Parameters, then click on the plus icon

    mceclip4.png

  8. In field name, enter http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier
  9. Check Include in SAML assertion and click Save
    mceclip5.png

  10. Click on the newly created parameter
  11. Set the Value to Email, and click Save

    mceclip8.png

  12. Click SSO
  13. Change SAML Signature Algorithm to SHA-256, and click Savemceclip9.png
  14. Copy the Issuer URL and send it to your Templafy Implementation Partner along with the metadata.xml file

 

 

Related articles

 
SSO authentication OneLogin
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.