Configuring SSO for OneLogin

Ensure that you have the following before you start configuring OneLogin

• OneLogin account with admin privileges

• The Clumio Entity ID and Assertion Consumer Service URL (See this KB article on how to get that information from the Clumio Dashboard)

Configuring OneLogin as an IdP for Clumio Service

• After logging into OneLogin dashboard, click on Applications > Applications:
  

• Then click on Add App:
  
  

• Search for SAML and click on SAML Test Connector (Advanced) SAML 2.0:
  
  

• Configure the Display Name to Clumio and in Description, add Clumio Application. Click on Save:
  
  
  
• After saving the app, click on the the Configuration section:
  
  
  
• Under Configuration, configure Audience field with Entity ID from Clumio dashboard. Under ACS (Consumer) URL Validator and ACS (Consumer) URL fields, copy the ACS Consumer Service URL obtained from the Clumio dashboard:
  
  
• Under SAML initiator, select Service Provider. Ensure that SAML nameID format is selected to Email:
  
  
  
• Click on Parameters section and click on + icon:
  
  
  
• In the New Field section, configure the Field name as follows: “http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress”. Check the box for Include in SAML assertion and click on Save:
  
  
  
• In Value field, select Email and click Save:
  
  
  
• Under Users, add appropriate users that you’d like to give Clumio dashboard access:
  
  
  
• Go back to Info section. Under More Actions, click on SAML Metadata to download the metadata file. Clumio service will need this file to be publicly accessible in a URL. :
  
  
  
• Click on Save after downloading the SAML Metadata file. The Clumio app will be successfully updated after that: