Skip to content

OneLogin SSO

Adding SaaS Management to your OneLogin SSO

You can easily access SaaS Management by adding the application to your OneLogin SSO. To add SaaS Management to your OneLogin SSO, you must add and configure a new app in OneLogin. After you've set up the new app, you can map user values in OneLogin, so SaaS Management can pull your information for reports on user engagement.

Configuring your app

  1. Go to your OneLogin dashboard.
  2. From the navigation menu, select Apps > Add Apps.
  3. On the Find Applications page, enter "SAML" in the search bar, and select SAML Test Connector (Advanced).
  4. In the Display Name field, enter "SaaS Management". Select Save.
  5. Go to SaaS Management. In the bottom left-hand corner of the page, select Settings
  6. Under Configuration, select SAML Settings. You'll see the Audience and Recipient URL values.
  7. Return to OneLogin, and select the Configuration tab on the page for your newly created app.

  8. Enter the following values into the appropriate fields:

    • ACS (Consumer) URL: The Recipient URL value.
    • Recipient: The Recipient URL value.
    • Login URL: The Recipient URL value.
    • ACS (Consumer) URL Validator: [-a-zA-Z0-9@:%._+#=]{2,256}.[a-z]{2,6}\b([-a-zA-Z0-9@:%_+.#?&//=]*)
    • Audience: The Audience value.
  9. Select Save.

  10. Select the SSO tab, and copy the value for SAML 2.0 Endpoint (HTTP). Paste it into the Sign In URL field on the SaaS Management SAML Settings page.
  11. Select View Details underneath X.509 Certificate. Select the certificate, copy it, and then paste it into the Certificate field on the SAML Settings page.

Mapping user information

To display information about users such as their name and email in SaaS Management, you'll have to map these values in OneLogin. This allows SaaS Management to pull the information for your reports.

  1. On the SAML Test Connector (Advanced) page, select the Parameters tab. Select Add parameter.
  2. In the new window, enter name for Field name. For Flags, select the Include in SAML assertion check box. Select Save.
  3. From the Value drop-down menu, select - Macro -.
  4. In the text box, set the value to {firstname} {lastname}. Select Save.
  5. Repeat the above steps to add the email attribute. Select Email as the value.
  6. Return to SaaS Management. On the SAML Settings page, review the entered information and select + Add SSO Connection.

Your organization now has SAML SSO enabled, and every user can sign in to SaaS Management using SSO. You can also select SSO Required on the the SAML Settings page to require all users within your organization to sign in with SSO.