Configuring OneLogin Secure Single Sign-On Integration with SAML
This document explains how to configure OneLogin and Acunetix Premium+ for Single Sign-On.
OneLogin is a cloud-based identity and access management company that offers enterprise-level companies and organizations a unified access management (UAM) platform.
How to configure OneLogin with SAML
There are two steps to this procedure:
Step 1: How to add Acunetix to OneLogin
- Log in to OneLogin.
- From the main menu, go to Applications > Applications > Add App.
- On the Find Applications page, search for "test connector" and select SAML Custom Connector (Advanced) from the search results.
- On the Add SAML Custom Connector (Advanced) page, enter a name for your app and optionally change icons and enter a description. (For this illustration, we use Acunetix.)
- Turn on the Visible in portal toggle.
- Click Save.
After saving, your app is listed on the applications page.
Step 2: How to configure OneLogin Single Sign-On Integration with SAML
- Log in to OneLogin.
- From the main menu, select Applications > Applications.
- Select your app from the list. (For this illustration, select Acunetix.)
- Open a new tab and log in to Acunetix.
- Select Settings > Users & Access > SSO from the Acunetix left-side menu.
- Turn on the Enable SSO toggle.
- Select OneLoginSecure from the SSO Provider drop-down list.
- In the OneLogin tab, from the left menu, select Configuration.
- In the Acunetix tab, copy the SAML 2.0 Service URL and paste it into the ACS (Consumer) URL Validator field on the OneLogin tab.
- In the Acunetix tab, copy the Identifier URL and paste it into the ACS (Consumer) URL field on the OneLogin tab.
- Select Save in the OneLogin tab.
- From the left menu in the OneLogin tab, select Parameters.
- Click + (the plus sign).
- On the New Field dialog, enter user.FirstName to the Field name.
- Select Include in SAML assertion. Then click Save.
- On the Edit Field user.FirstName dialog, select First Name from the Value drop-down. Then click Save.
- On the SAML Custom Connector (Advanced) page, select SSO.
- From the SAML Signature Algorithm drop-down, select SHA-256.
- Copy the Issuer URL field. Then paste it into the IdP Identifier field in Acunetix.
- In the OneLogin tab, copy the SAML 2.0 Endpoint (HTTP) URL. Then paste it into the SAML 2.0 Endpoint field in Accunetix.
- In the OneLogin tab, select View Details in the X.509 Certificate section.
- Copy the X.509 Certificate information and paste it into the X.509 Certificate field in Acunetix.
- In Acunetix, if you select Require encrypted assertions, do one of the following:
- Select Generate a new certificate for me; OR
- Select I have an existing certificate, then upload your certificate and enter the certificate password.
- On the OneLogin page, select Save to save the settings.
- From the Acunetix SSO Exemptions drop-down, you can select specific users to exempt them from SSO. This means the selected users can log in to Acunetix via password.
- Click Save on the Acunetix tab to complete the integration.
- Acunetix informs you that the SSO configuration is saved.
Now you can add users to the Acunetix application in OneLogin, and they will be able to log in to Acunetix using Single Sign-On.