Skip to content

OneLogin Identity Provider Setup

This document describes the steps to configure OneLogin as an Identity Provider to integrate with CYDERES. CYDERES will act as the SAML Service Provider or "SAML SP".

Configuring SSO

Adding a New Application

  1. Login to the OneLogin admin console.
  2. At the top of the page, select Applications.
  3. Select Add App to add a new application.
  4. At the top, search for "SAML Test Connector (IdP w/ attr w/ sign response)". Select that application.

    onelogin1

  5. Set the display name as "CYDERES Chronicle" and select Save at the top right.

  6. Select Configuration on the left side of the page.
  7. Set the "Audience" field as the value of the "md:EntityDescriptor" field in the SAML metadata provided by CYDERES.
  8. Set the "Recipient" and "ACS (Consumer) URL" fields as the "md:AssertionConsumerService" value from the SAML metadata provided by CYDERES.
  9. Set the "ACS (Consumer) URL Validator" field as .*

    Example:

    onelogin4

  10. Select Parameters on the left side of the page.

  11. Select the + icon on the right side of the page to add a new attribute/parameter.
  12. Name the field "firstName" and select the checkbox for "Include in SAML assertion". Select "Save". Select the value of "First Name" from the drop down box. Select "Save".

    onelogin2

  13. Repeat Step 12 for the following values:

    Parameter Value
    firstName First Name
    lastName Last Name
    userName Email

    onelogin3

  14. Select Save at the top right.

  15. Select "SSO" on the left side of the page.
  16. In the "SAML Signature Algorithm" drop down, select SHA-256.
  17. Select Save at the top right.
  18. Select the "More Actions" drop down at the top right. Select the SAML Metadata option to download the SAML metadata.

Gather Information

You will need to send the Identity Provider metadata from step 18 to CYDERES in order to allow CYDERES to add your OneLogin instance as an IdP.