Organizations utilizing OneLogin can configure ScaleFT to authenticate against OneLogin using SAML.
SAML can only be configured in ScaleFT during signup, so to get started using OneLogin authentication create a new team and choose SAML authentication when prompted.
Once you reach the SAML configuration step in the ScaleFT signup process you’ll need to add ScaleFT to OneLogin.
To add ScaleFT to OneLogin browse to Adminstration > Apps > Add Apps, choose “SAML Test Connector (IdP) w/ NameID (Persistent)” and give the app a display name and icon (optional).
Once you’ve created the application browse to the “Configuration” tab of the application’s settings in OneLogin and enter the following values:
IMPORTANT: Be sure to click “Save” in the top right corner before proceeding.
On the “Parameters” tab of the application settings you’ll need to configure SAML attributes for ScaleFT to consume.
For each attributes described below you’ll need to:
The attributes and recommended default values you’ll need to add are:
Note: a non-empty value must be supplied for each of these attributes for every user. If users in your OneLogin configuration don’t, by default, have a Username it may be preferable to use another value such as “Email” or “Email name part” as the default value for Login.
On the “Users” tab ensure that you are already assigned to the application. Click on your name and ensure that a value is present for each attribute. If not, go back to the parameters tab and adjust the default values to use fields which your organization populates in OneLogin.
Once you’ve configured ScaleFT in OneLogin, you’ll need to enter several values from the SSO tab in OneLogin in the ScaleFT SAML configuration form.
Use the “SAML 2.0 Endpoint (HTTP)” value from the SSO tab in OneLogin.
Use the “Issuer URL” from the SSO tab in OneLogin.
OneLogin should already have generated a “Standard Strength Certificate”. Click “View Details” under “X.509 Certificate” on the SSO tab and copy the certificate text into ScaleFT.
In this section you will need to input the names of the parameters you configured in OneLogin:
Note: you will need to enter the names of each of these attributes into ScaleFT even if identical helper text already appears in the fields.
It is a good idea to look over each of the Configuration, Parameter and User tabs in OneLogin before clicking “Authenticate with SAML”. You should see:
Once you’re happy with your configuration click “Authenticate with SAML” in ScaleFT.