Skip to main content

OneLogin SSO Configuration

How to enable SSO with OneLogin

Alexander Wulkan avatar
Written by Alexander Wulkan
Updated over 2 months ago

This feature is available for users with "Organization Administrator" permissions on Core, Advanced and Enterprise account plans.

Configuring SAML in OneLogin

  1. Navigate to 'https://xxxx.onelogin.com/apps/new/159606' where `xxxx` is your company domain.

  2. Set the associated Display Name

    mceclip0.png

  3. Click Save

  4. In the left sidebar, click on Configuration

    mceclip1.png

  5. Paste 'https://xxxx.app.estateably.com' where `xxxx` is your company domain in the SAML Audience URL input field.

    mceclip5.png

  6. Paste `https://xxxx.app.estateably.com/api/v1/auth/saml/login` where `xxxx` is your company domain in the SAML Customer URL input field.

    mceclip7.png

  7. Click Save

  8. In the left sidebar, click on SSO

  9. Select SAML Signature Algorithm and change the option to SHA-256.

  10. Click Save

  11. In the Estateably application, go to your organization’s Settings page, then click on Single sign-on in the left sidebar. Fill the form…

    1. Select the Set up SSO with a Third-party Identity Provider

    2. Type OneLogin within the Provider Name

    3. In the Identity Provider field select box, choose OneLogin

    4. In the Identity Provider Single Sign-On URL (SAML 2.0 Endpoint) input field enter the URL found in the OneLogin page in the SAML 2.0 Endpoint (HTTP) of the SSO section.

    5. In the Identity Provider Issuer (Entity ID) input field enter the URL found in the OneLogin page in the Issuer URL box of the SSO section.

    6. In the Identity Provider Certificate, paste the text value of the certificate found in OneLogin within the SSO section and in the X.509 Certificate field. To view the certificate click View Details and copy the X.509 Certificate.

    7. Click on Save Changes at the top of the Estateably Settings page.

      mceclip0.png

    8. Add any users and groups to this app in OneLogin as normal.

Configuring SCIM in OneLogin

  1. In your OneLogin, if you’ve already created an app for Estateably, click on Configuration in the left sidebar.

  2. Click Enable within the API Status Field.

  3. In the SCIM Base URL input field paste `https://xxxx.app.estateably.com/api/v1/scim' where `xxxx` is your company domain.

  4. In Estateably, within the Single Sign-On module, click

    mceclip2.png

    in the API Key field. This will generate API required to be pasted into OneLogin.

    mceclip1.png

  5. Click Save Changes

  6. In OneLogin, paste the API Key generated in Step 4 into the SCIM Bearer Token input field.

    mceclip5.png

  7. Click Save Changes

  8. In the left sidebar, click on Provisioning.

  9. Select Enable Provisioning

  10. Select Create User, Delete User & Update User

  11. Select the policy you would like to implement for when users are deleted in OneLogin.

  12. Select Do Nothing when users are suspended in OneLogin.

    mceclip8.png

  13. Click on Save at the top of the page.

Related Articles
Single sign-on setup and configuration
Adding an asset
Microsoft Entra ID SSO Configuration
Okta SSO configuration
Accounting for an active loan/line of credit
Did this answer your question?