OneLogin
  • 06 Dec 2020
  • 1 Minute to read
  • Contributors

OneLogin


This article describes how to configure OneLogin for use as an identity provider for Perimeter 81. 

  • Configuring OneLogin
  • Configuring Perimeter 81
  • Access Error troubleshooting

Please follow the steps below:

Configuring OneLogin

  1. Log in to your OneLogin account. If you don't already have one, you will need to create one.
  2. Select Apps and then Add Apps.
    httpsfilesreadmeio7ba1605-onelogin-add-app.png
  3. Search for saml, and select SAML Test Connector (IdP w/attr).
    httpsfilesreadmeio5037520-onelogin-search-app.png
  4. Change the Display Name to Perimeter 81. Select Save.
    httpsfilesreadmeio0bce989-onelogin-save-app.png
  5. Go to the SSO tab, and copy the values for SAML 2.0 Endpoint (HTTP) and SLO Endpoint (HTTP).
  6. Select the View Details link at the X.509 Certificate field.
    httpsfilesreadmeioe97de03-onelogin-copy-values.png
  7. Download the X.509 certificate onelogin.pem.
    httpsfilesreadmeio52c7389-onelogin-download-cert.png
  8. Go back to the Configuration tab.
  9. Enter the following values into the appropriate fields:

httpsfilesreadmeiofdcb36c-onelogin-set-values.png
10. On the Parameters tab, select Add Parameter.
httpsfilesreadmeioc6a695c-custom-attr-01.png
11. In the popup, set a name for your new custom attribute using the Field name text box. Make sure you check the Include in the SAML assertion flag. Select Save.
12. The new attribute you created is displayed. Select the Value field, which is currently displaying - No default.
13. Select the Value dropdown menu and select Macro.
14. Add the following set of properties:

  • Field Name: email, Macro text box value: {email}, SAML assertion flag: Checked

  • Field Name: given_name, Macro text box value: {firstname}, SAML assertion flag: Checked

  • Field Name: family_name, Macro text box value: {lastname}, SAML assertion flag: Checked

httpsfilesreadmeio3bce951-custom-attr-03.png
At this point, we're ready to configure Perimeter 81.

Configuring Perimeter 81

  1. Log in to your Perimeter 81 Management Platform, and navigate to Settings and then Identity Providers.
    360008599540addprovider1.png
  2. Select + Add Provider.
  3. Choose Okta Identity Cloud (Okta connection will work for OneLogin).
  4. Fill Sign In URL, Signing Certificate as follows:
  • The SAML 2.0 Endpoint (HTTP) value you saved above into the Sign In URL field

  • The SLO Endpoint (HTTP) value into the Sign Out URL field.

  • Finally, upload the onelogin.pem certificate using Upload Certificate.

  1. Select Done.
    360007808859okta-addonp81.png

Access Error troubleshooting

If your users are getting access error after the configuration, please check these steps.


Was this article helpful?