Guides
Sign InGet Started Free
Start typing to search…

OneLogin

To enable SSO with OneLogin, complete the following:

  1. Contact [email protected] to claim the email domain(s) that your SSO users will use to sign in.
  2. Log in to Sprig and go to Settings > Single Sign On.
  3. Select SSO Enabled option, and click Save.
  4. An Important Values section will appear. Take note of the values provided. You will use them to configure your OneLogin integration in step 8.
  5. Log in to your OneLogin account and go to the Administration section. Navigate to the Applications page.
  1. Click the Add App on the right side of the page. In the search field, enter Saml Custom Connector. Choose SAML Custom Connector (Advanced) provided by OneLogin Inc:
  1. In the Display Name field, enter a name and click Save.
  1. Click Configuration. Use the Important Values you were provided in step 4 to cut and paste the Entity URI into the Audience (EntityID) field, and the ACS URL into both the ACS (Consumer) URL Validator field and the ACS (Consumer) field.

9 ) Click Parameters. Click on to add a parameter.

  1. Enter name in the Field name field. Select the Include in SAML assertion option. Click Save.
  1. In the Value drop-down list select Name.

12 ) Click again on Parameters. Click on to add another parameter.

  1. Enter role in the Field name field. Select the Include in SAML assertion option. Click Save.
  2. In the Value drop-down list select - Macro - . Either enter admin , editor, developer , or viewer in the field. Sprig roles are described here. Roles can be configured on a per-user basis using user attribute macros. If you don’t have the appropriate attribute configured for users yet, you can choose “- Macro -” again and enter admin, and all assigned users will receive “admin” permissions.
  3. You will configure the SAML settings. Click on the SSO tab. In the SAML Signature Algorithm dropdown, select SHA-256.
  4. Navigate to the Sprig's Settings>Single Sign-On. Copy the values from the SSO tab in the previous step into the corresponding fields in the Your Identity Provider section:
  • Issuer URL → Issuer URL
  • SAML 2.0 Endpoint → Entry Point URL
  1. Now in the OneLogin SSO tab, click View Details link under the X.509 Certificate field. A new page will appear. Copy the text inside the X.509 Certificate field and paste it into the X.509 Certificate field in Sprig's Settings>Single Sign-On. Click “Save”.

Users that are assigned to the OneLogin application integration will now be able to sign in using the Sprig SSO login page.

Updated 10 days ago