This guide lists the steps to configure and enable OneLogin SSO for your organization.
Configuring the RudderStack SSO app
- Log into your OneLogin portal and click Administration in the top menu, as shown:
![Administration option in OneLogin Administration option in OneLogin](/static/11921001577253e7d7eaa11d78a3a82e/d9199/onelogin-1.png)
- From the top menu, go to Applications > Applications, as shown:
![Applications option Applications option](/static/10073f1cfb604f941288ce6374bc40ee/d9199/onelogin-2.png)
- Then, click Add App, as shown:
![Add App option Add App option](/static/764f15f24f20dc8cf21a8826695b33dd/0098c/onelogin-3.png)
- In the resulting Find Applications page, search for SAML Custom Connector (Advanced). From the search results, select the application, as shown:
![Select SAML Custom Connector option Select SAML Custom Connector option](/static/5347435941a10d0052bcc5903ef6e340/d9199/onelogin-4.png)
- Name your SAML app and click Save, as shown:
![Select SAML app name Select SAML app name](/static/91b6da6783f49276722d854910bfcb17/d9199/onelogin-5.png)
- In the Configuration tab, enter the settings as shown in the following image:
![SAML app configuration SAML app configuration](/static/d50047e79f2d303ecfe02ba5e154d636/d9199/onelogin-6.png)
The settings to be configured are listed in the following table:
Setting | Value |
---|---|
Audience (EntityID) | urn:amazon:cognito:sp:us-east-1_ABZiTjXia |
Recipient | https://auth2.rudderstack.com/saml2/idpresponse |
ACS (Consumer) URL Validator | ^https:\/\/auth2\.rudderstack\.com\/saml2\/idpresponse\/\$ |
ACS (Consumer) URL | https://auth2.rudderstack.com/saml2/idpresponse |
Login URL | https://app.rudderstack.com/sso?domain=[your-domain.com] |
john@example.com
, then your Login URL will be `https://app.rudderstack.com/sso?domain=example.com`.- From the dropdown, select the SAML initiator and SAML nameID format fields as shown:
![SAML settings SAML settings](/static/76acdeec54b1f34044445460d94e59ff/f0991/onelogin-7.png)
- Next, go to the Parameters tab and add the custom parameters as shown below:
![Custom parameters Custom parameters](/static/837a5d0a67e75405264d6b485dd108ec/d9199/onelogin-8.png)
The custom parameters and their values are listed in the following table:
Parameter | Value |
---|---|
Email | |
LastName | Name |
NameID value | Email |
Name
- which specifies how you would like to see your employees on the RudderStack web app.- To add any other custom parameter, click the + button, enter the Field name, and select the value from the dropdown, as shown:
![Custom parameter configuration Custom parameter configuration](/static/846ed0414fcd544cd5bac726d0f457c9/76aed/onelogin-9.png)
- Click Save to save the configuration.
Enabling SSO
Go to the SSO tab of your app and copy the Issuer URL, as shown:
![Issuer URL Issuer URL](/static/faa36fca8fc39176bc106924932d82db/d9199/onelogin-10.png)
Share this Issuer URL with the RudderStack team.
Contact us
For more information on the topics covered on this page, email us or start a conversation in our Slack community.