OneLogin Setup Instructions

Configure app on the OneLogin dashboard

Log in to your OneLogin Dashboard, and click Apps > Add Apps.

Search for saml, and select SAML Test Connector (Advanced).

Change the Display Name of your app to Intello. Click SAVE.

Now login to Intello and go to the SAML settings, by clicking Settings -> SAML Settings. You'll see the Audience and Recipient URL values (see below).

Return to OneLogin, select the Configuration tab on the page for your newly created app.

On this page, enter the following values into the appropriate fields and select SAVE:

  • ACS (Consumer) URL: Recipient URL value from the Intello settings page
  • Recipient: Recipient URL value from the Intello settings page
  • Login URL: Recipient URL value from the Intello settings page
  • ACS (Consumer) URL Validator: [[email protected]:%._\+~#=]{2,256}\.[a-z]{2,6}\b([[email protected]:%_\+.~#?&//=]*)
  • Audience: Audience value from the Intello settings page

Go to the SSO tab, and copy the value for SAML 2.0 Endpoint (HTTP) and paste it into the Sign In URL field on the intello SAML settings page.

Select View Details underneath X.509 Certificate. Select the entire certificate, copy it, and then paste it into the Certificate field on the Intello SAML Settings page.

In order to display information about users (email, name, etc) we will have to map these values so that Intello can pull them in. Select the Add Parameter button:

In the popup, enter name in the Field name box. Also check the box Include in SAML assertion and select Save.

The new attribute you created is displayed. Click on the Value field, which is currently displaying - No default -.

Click the Value dropdown menu and select - Macro -.

At the text box, set the value to {firstname} {lastname}. Click Save.

It is also necessary to add the email attribute. Add a new field with the following settings:

And then select Email from the dropdown for Value and then select Save:

Return to Intello, with all of the fields entered, select Add SSO Connection

Your organization will have SSO enabled and every user can sign into Intello using SSO.

You can also click the require SSO button to require all users within your organization to sign in with SSO.

Did this answer your question?