Setup your app in OneLogin
Follow these instructions to start to create a custom connector in OneLogin.
📓 When choosing the connector, make sure to use SAML Test Connector (SP w/signed Response). https://support.onelogin.com/hc/en-us/articles/202673944-How-to-Use-the-OneLogin-SAML-Test-Connector
When finished with the general settings, edit the Configuration fields:
Login URL: https://app.onecloud.io/saml/login/COMPANY_SAML_TOKEN
ACS (Consumer) URL*: https://app.onecloud.io/saml/consume/COMPANY_SAML_TOKEN
SAML Audience: https://app.onecloud.io/saml/metadata.xml
SAML Recipient: https://app.onecloud.io/saml/consume/COMPANY_SAML_TOKEN
SAML Single Logout URL: https://app.onecloud.io/saml/logout/COMPANY_SAML_TOKEN
ACS (Consumer) URL Validator*: ^https:\/\/app.onecloud.io\/saml\/consume\/COMPANY_SAML_TOKEN
OneCloud requires some basic parameters to be sent along with the SAML assertion. See the screenshot below for the required parameters:
📓 When creating the parameters there is a checkbox for "Include in SAML assertion". Ensure that this checked, so that when users log in, their first and last name is recorded in OneCloud.
Once completed, click “Save” and proceed to the SSO tab.
SAML Signature Algorithm
Be sure to change the SAML Signature Algorithm to SHA-256. See screenshot below:
The final step toward integrating OneCloud with OneLogin is to get the metadata from the app and upload it to the OneCloud platform.
When you’ve finished creating your app:
Click the “More options” button
In the menu select “SAML Metadata”.
An XML file should be downloaded now on your computer. Upload it to OneCloud. See our Single Sign On (SSO) documentation for details on configuring your SAML app inside the OneCloud platform.