OneLogin SSO/SAML Configuration

Help Center
  • Updated
Follow

You can integrate Foxit Admin Console (Service provider) with OneLogin (Identity provider) by following these steps. This is the most default configuration for a clean integration.

Note: This article contains information and instructions related to a third-party application (OneLogin).

These instructions may vary in your environment and need to be confirmed with your OneLogin vendor, if necessary.

Prerequisites:

You must have a verified domain in Foxit Admin Console > Settings > Directory Setting.

1.signup and login

Log in after registering on the website:https://www.onelogin.com/

2.Add Application

Click Applications → Applications

mceclip0.png

 

Click Add App

mceclip1.png

Enter SAML in the search box and select SAML Custom Connector(Advanced)  SAML2.0 in the results list.

 

Enter any desired information such as Display Name → click Save

mceclip3.png

3. Configure app properties

Navigate to Setting in Admin Console, click Directory Setting → Add directory

 

Set any desired directory name such as onelogin, click Create and Continue

 

Click Configuration in the left sidebar of OneLogin

Note the SP Entity ID  and  SP Assertion Consumer Service URL  from the Foxit Admin Console (Settings > Directory Setting). Enter the SP Entity ID into the Audience (EntityID) field and the Assertion Consumer Service URL  into both the ACS (Consumer) URL Validator and  ACS (Consumer) URL fields in LoginOne.

mceclip4.png

mceclip5.png

Select Assertion from the SAML signature element drop-down list → Click Save

mceclip6.png

Click Parameters in the left sidebar → Click +

mceclip7.png

Enter 'email' at Field name → Choose Include in SAML assertion → Click Save

mceclip8.png

select Email under Value → Click Save

mceclip9.png

4.Add Users

(Note: If you have already added the users you want to sync, you can skip these steps.)

Click Users → Users

mceclip10.png

Follow the steps below for each user you'd like to add.

 

Click New User

mceclip11.png

Enter the user's information → Click Save User

mceclip12.png

5. Assign new login to User

Click a user you'd like to sync

mceclip13.png

Click Applications → Click +

mceclip14.png

Select the Admin Console application → Click Continue

mceclip15.png

click Save

mceclip16.png

6. SSO Configuration

Click Applications → Click the Admin Console application

mceclip17.png

Note the x.509 Certificate, Issuer URL and SAML 2.0 Endpoint(HTTP) fields

mceclip18.png

This data should be entered into the Settings >Directory Setting page in the Admin Console.

Enter the Issuer URL into the Identity provider Entity ID field, SAML 2.0 Endpoint(HTTP) into the Identity provider SSO URL field, and the entire x.509 Certificate  into the Public x509 certificate field of the Foxit Admin Console. Please Note that Choose Connector "OneLogin" →  Click Save 

mceclip19.png

 

 

Navigate to configuration for the SAML app in OneLogin and make sure the RelayState is pointing to our Admin Console URL. Without this, the SSO portion will continue to loop not knowing where the target destination is

 

mceclip0.png

 

2.SAML user sync configuration

API Credentials

Click Developers → API Credentials

image2021-10-22_10-42-36.png

 

Click New Credential

image2021-10-22_10-43-48.png

 

Enter Name of new API credential, choose Reader users → Click Save

image2021-10-22_10-46-17.png

 

You can get Client ID and Client Secret → Click Done

image2021-10-22_10-48-27.png

 

Put Client ID of OneLogin in Client ID of Admin Console, and put Client Secret of OneLogin in Client Secret of Admin Console → Client Authorize

image2021-10-26_9-30-15.png

Click Sync Users

image2021-10-26_9-28-5.png

The configuration is complete. You can log in to Foxit Admin Console using the user added in OneLogin.

Related articles

Comments

0 comments

Article is closed for comments.