Setting up Single Sign-On (SSO) with OneLogin

  • Updated

When connecting the OneLogin integration to Vanta, you will have the option to add a OneLogin Vanta app name.

Screenshot 2023-11-16 at 4.37.19 pm.png

This will allow users to login to Vanta using OneLogin. In order to set this up, a Vanta application must first be created within OneLogin. 

 

Prerequisites

  • Administration permissions for OneLogin. 

Procedure

  • Navigate to the OneLogin admin dashboard, hover over Applications in the navigation bar, then click on Applications in the dropdown

Screenshot 2023-11-16 at 4.29.59 pm.png

  • On Applications page, click on Add App

Screenshot 2023-11-16 at 4.31.22 pm.png

  • On Find Applications page, enter SAML Custom Connector (Advanced) into search bar and select 

Screenshot 2023-11-16 at 4.32.36 pm.png

  • Update display name to easily identify as the Vanta connector.
  • Set the Audience (entityId) to
https://www.vanta.com/sso/saml
  • Navigate back to Vanta Integrations page, and connect OneLogin. Add your OneLogin API credentials by following this article.
    • The API Credentials must have ManageAll permissions. (We will not write any data, but require the scope for checking user MFA, see this documentation.
  • Copy in the display name of the app you created in OneLogin. 
  • Copy the ACS (Consumer) URL from the Vanta connection page into your OneLogin Vanta Application.
  • Set the ACS (Consumer) URL Validator to
https://vanta.com/auth/login/onelogin/callback?domainId=number

 

    • At this point, your Vanta App within OneLogin should look something like the image below. Make sure you hit save before moving onto step 9.

  • Save the OneLogin credentials within Vanta! 
  • Don’t forget to add users to the Vanta Application within OneLogin. Once this is done, OneLogin users will be able to use OneLogin to sign in to Vanta.