Configuring SSO for OneLogin

Prerequisites

Ensure that you have the following before you start configuring OneLogin:

  • A OneLogin account with admin privileges
  • The Clumio Entity ID and Assertion Consumer Service URL, refer to this knowledge base article for instructions on how to get that information from the Clumio Dashboard.

Configuring OneLogin as an IdP for Clumio Service

  1. Log on to your OneLogin dashboard, click Applications > Applications
  1. ClickAdd App.
  2. Search for SAML and click SAML Test Connector (Advanced) SAML 2.0.
  1. Type "Clumio" in the Display Name and type "Clumio Application" in the Description. Click Save.
  1. After saving the app, click Configuration.
  1. Under Configuration, type the Entity ID from the Clumio dashboard in the Audience field. Under ACS (Consumer) URL Validator and ACS (Consumer) URL fields, copy the ACS Consumer Service URL obtained from the Clumio dashboard:
  1. Under SAML initiator, select Service Provider. Ensure that you select Email from the drop down list for SAML nameID format .
  1. Click Parameters then click the + icon:
  1. In the New Field section, configure the Field name as follows: “http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress”. Select the check box for Include in SAML assertion and click Save.
  1. Select Email from the Value drop down menu, then click Save.
  1. Under Users add those users to whom you want to grant Clumio dashboard access.
  1. Go back to Info section. Under More Actions, click SAML Metadata to download the metadata file. The Clumio service will need this file to be publicly accessible via a URL.
  1. Click Save after downloading the SAML metadata file. The Clumio app will be successfully updated after that.


Contact [email protected] with any questions or concerns.