OneLogin: Setup and Configuration

Sign up for Onelogin

  1. Goto : https://www.onelogin.com/free-trial

Fill in your details in the form below 

  • Activate your account from the email received:
  • Login into your oneLogin account

Add your users into the oneLogin

  • Click on Administration
  • Click on the “Users” on the left most horizontal menu item.
  • Click the “New Users” button on the right side of the screen.
  • Fill the first three values as below
  • The email must match the Welkin User ID email address.

Setup your application

  • Click on the Applications/Applications & Add App button
  • Search for SAML Custom Connector (Advanced)
  • Choose SAML Custom Connector (Advanced)
  • Fill in the following fields – Info : Name of your application

Configuration : 

  • Goto to the  Admin product of Welkin Health and pick up your URL’s 
  • from the instructions section of Single Sign-On oneLogin for your organization/environment.
  • Fill in the information as seen below. Your URL’s will differ depending upon the organization name.
  1. Audience (EntityID)

urn:amazon:cognito:sp:us-east-1_DhmiCC4Nw

  1. Configuration > ACS (Consumer) URL Validator

https://albert-235903ba-d974-4a1b-ae7a-bf524247645d.auth.us-east-1.amazoncognito.com/saml2/idpresponse

Configuration > ACS (Consumer) URL

https://albert-235903ba-d974-4a1b-ae7a-bf524247645d.auth.us-east-1.amazoncognito.com/saml2/idpresponse

  1. Parameters: Your instructions are following:

Parameters > Add parameter > Field Name

Add Field

Field Name :http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

Value: Email

Flags: Include SAML Assertion is checked.

Click Save Button.

  • Copy the SSO Issuer URL  to the Admin product Single Sign on meta data url section
  • Make sure the user has been provided with authorization to use the application in oneLogin
  • Make sure Single Sign on is Active in Admin Product under Security Settings.
  • Make sure the Users/Security is set to Active on  Single Sign On for the users using oneLogin.