Summary: Setting up SAML SSO for OneLogin for use with the Huntress EDR portal
Setting Up the SAML App in OneLogin
Settings Up the Integration in Huntress
Setting Up the SAML App in OneLogin
1. Connect to your OneLogin portal
2. Choose the "Applications" option under the "Applications" tab
3. Search for and select the "SAML Custom Connector (Advanced) option
4. Give it a Display Name to indicate this will be used for Huntress. We'd suggest something simple, like "Huntress" or "Huntress SSO."
You will also need to provide the following required configuration details below. These are added to the page under the "Configuration" tab on the left hand side menu.
Audience (EntityID) - https://huntress.io/sso/metadata
Recipient - https://huntress.io/sso/auth
ACS (Consumer) URL Validator - ^https:\/\/huntress\.io\/sso\/auth\/$
ACS (Consumer) URL - https://huntress.io/sso/auth
Login URL - https://huntress.io/sso
SAML initiator - Service Provider
SAML nameID format - Email
SAML issuer type - Specific
SAML signature element - Both
5. In the SSO left hand navigation menu tab collect the following information. These will need to be copied to the Huntress SSO Settings modal.
- For the Huntress SSO "Certificate" field, copy the details of the “X.509 Certificate” by clicking “View Details”
- For the Huntress SSO "SSO Service URL", copy the “SAML 2.0 Endpoint (HTTP)”
- This will generally start with https://<domain>.onelogin.com/trust/saml2
- For the Huntress SSO "Entity ID (URL)" copy the “Issuer URL”
- This will generally start with https://app.onelogin.com/saml/metadata
Also, Enable "Login Hint" on this same page
Setting Up the Integration in Huntress
1. Login to your Huntress dashboard (huntress.io)
2. Navigate to the Settings menu by choosing the Hamburger menu icon in the upper right > Settings
3. Choose the "Setup SAML SSO" option
4. Enter the information you previously saved (step 5 under Setting Up SAML App above) in to the appropriate boxes
- For the Huntress SSO "SSO Service URL", paste in the “SAML 2.0 Endpoint (HTTP)”
- This will generally start with https://<domain>.onelogin.com/trust/saml2
- For the Huntress SSO "Entity ID (URL)" paste in the “Issuer URL”
- This will generally start with https://app.onelogin.com/saml/metadata
- For the Huntress SSO "Certificate" field, paste in the “X.509 Certificate”
Comments
0 comments
Please sign in to leave a comment.