How to configure SSO in the Lumu Portal using OneLogin

How to configure SSO in the Lumu Portal using OneLogin

Single Sign-on (SSO) allows you to log in to the Lumu portal through Identity Providers using their current credentials. Instead of requiring users to manage multiple usernames and passwords, SSO allows you to login to multiple applications using the profile created in your Identity Management Service.
The Lumu Portal provides SSO with OneLogin, a third-party authentication service that enables users to be logged in to the Lumu Portal seamlessly. When you configure SSO in your Lumu Portal, your users can connect without the need for separate login credentials.

Prerequisites

To configure SSO integration with the Lumu Portal, you'll need administrator access to your OneLogin organization.

OneLogin Settings

To configure Single Sign-on for the Lumu Portal using OneLogin:

1. Log into your organization’s OneLogin account and select the 'Applications' option in the Applications submenu. 

Select ApplicationsFigure 1 - Select 'Applications'

2. In the top right, under your profile name, select the Add App option. There, use the search bar and select 'SAML Custom Connector (Advanced)' from the options shown below.

Select SAML Custom ConnectorFigure 2 - Select 'SAML Custom Connector'

3. Configure the SAML Connector using the settings provided by OneLogin and assign an appropriate name to it. Optionally upload a picture to update the application logo. Read the provided instructions and requirements carefully. When you are done, select the Save option in the upper right section of the screen, right below your profile. 

Assign a name and logoFigure 3 - Assign a name and logo (optional)

4. From the menu on the left, select the Configuration tab. There, we will need to configure a few parameters. These are the parameters and their corresponding values:
  1. Recipient: https://portal.lumu.io/api/v1/users/saml/auth 
  2. ACS (Consumer) URL Validator*:   ^https:\/\/portal.lumu.io\/api\/v1\/users\/saml\/auth$
  3. ACS (Consumer URL)*: https://portal.lumu.io/api/v1/users/saml/auth
Enter the required valuesFigure 4 - Enter the required values

5. On the same screen, scroll down to the bottom, make sure to check the box for the option “Send NameID Format in SLO Request”. Save all changes by clicking the Save button. 
6. From the menu, go to the SSO tab, look for the option 'SAML Signature Algorithm'. There, open the dropdown menu and select the SHA-256 algorithm. Make sure to save all changes by clicking the 'Save' button. 

Select SHA-256Figure 5 - Select 'SHA-256' algorithm from the menu

7. Go back to the SSO tab. Under the certificate, you will find two options, click on 'View Details'. 

Select View DetailsFigure 6 - Select 'View Details'

8. Once there, make sure the SHA Fingerprint is set to SHA-256. Look for the fingerprint below and copy the value to your clipboard using the provided option. 

Copy and store the fingerprintFigure 7 - Copy and store the fingerprint

9. Send the obtained fingerprint to Lumu Support. Once received, we will finish setting up the required configuration and the SSO implementation through OneLogin will be complete.  
 

        • Related Articles

        • How to configure SSO in the Lumu Portal using Okta

          Single Sign-on (SSO) allows you to log in to the Lumu portal through Identity Providers using their current credentials. Instead of requiring users to manage multiple usernames and passwords, SSO allows you to log in to multiple applications using ...
        • How to configure SSO in the Lumu Portal using Thales (Safenet Trusted Access)

          Prerequisites Before you can configure Single Sign-On (SSO) integration with the Lumu Portal using Thales, ensure that you have the following: Administrator access to your Thales account. Lumu Support has provided you with the necessary instructions ...
        • How to configure SSO in the Lumu Portal using Entra ID Active Directory

          Microsoft Azure is now called Entra ID Prerequisites: Before you can configure Single Sign-On (SSO) integration with the Lumu Portal using Entra ID, make sure that you have the following: Administrator access to your Entra ID portal. Lumu Support has ...
        • Lumu Portal Two-Factor Authentication

          The Lumu Portal offers secure login alternatives through the use of two-factor authentication (2FA), in this case, One-time Password (OTP) on top of your account password. You can use the Authenticator app you prefer, such as Google Authenticator and ...
        • Lumu Portal

          Lumu simplifies Continuous Compromise Assessment by consolidating its management, reporting, and related contextual intelligence within a single portal. Security teams no longer need to chase down data from multiple network monitoring tools. The Lumu ...