How can I configure SSO in the Lumu Portal using OneLogin?

How can I configure SSO in the Lumu Portal using OneLogin?

Single Sign-on (SSO) allows you to log in to the Lumu portal through Identity Providers using their current credentials. Instead of requiring users to manage multiple usernames and passwords, SSO allows you to login to multiple applications using the profile created in your Identity Management Service.
The Lumu Portal provides SSO with OneLogin, a third-party authentication service that enables users to be logged in to the Lumu Portal seamlessly. When you configure SSO in your Lumu Portal, your users can connect without the need for separate login credentials.

Prerequisites

To configure SSO integration with the Lumu Portal, you'll need administrator access to your OneLogin organization.

OneLogin Settings

To configure Single Sign-on for the Lumu Portal using OneLogin:

1. Log into your organization’s OneLogin account and select the 'Applications' option in the Applications submenu. 

Select ApplicationsFigure 1 - Select 'Applications'

2. In the top right, under your profile name, select the Add App option. There, use the search bar and select 'SAML Custom Connector (Advanced)' from the options shown below.

Select SAML Custom ConnectorFigure 2 - Select 'SAML Custom Connector'

3. Configure the SAML Connector using the settings provided by OneLogin and assign an appropriate name to it. Optionally upload a picture to update the application logo. Read the provided instructions and requirements carefully. When you are done, select the Save option in the upper right section of the screen, right below your profile. 

Assign a name and logoFigure 3 - Assign a name and logo (optional)

4. From the menu on the left, select the Configuration tab. There, we will need to configure a few parameters. These are the parameters and their corresponding values:
  1. Recipient: https://portal.lumu.io/api/v1/users/saml/auth 
  2. ACS (Consumer) URL Validator*:   ^https:\/\/portal.lumu.io\/api\/v1\/users\/saml\/auth$
  3. ACS (Consumer URL)*: https://portal.lumu.io/api/v1/users/saml/auth
Enter the required valuesFigure 4 - Enter the required values

5. On the same screen, scroll down to the bottom, make sure to check the box for the option “Send NameID Format in SLO Request”. Save all changes by clicking the Save button. 
6. From the menu, go to the SSO tab, look for the option 'SAML Signature Algorithm'. There, open the dropdown menu and select the SHA-256 algorithm. Make sure to save all changes by clicking the 'Save' button. 

Select SHA-256Figure 5 - Select 'SHA-256' algorithm from the menu

7. Go back to the SSO tab. Under the certificate, you will find two options, click on 'View Details'. 

Select View DetailsFigure 6 - Select 'View Details'

8. Once there, make sure the SHA Fingerprint is set to SHA-256. Look for the fingerprint below and copy the value to your clipboard using the provided option. 

Copy and store the fingerprintFigure 7 - Copy and store the fingerprint

9. Send the obtained fingerprint to Lumu Support. Once received, we will finish setting up the required configuration and the SSO implementation through OneLogin will be complete.  
 

        • Related Articles

        • How can I configure SSO in the Lumu Portal using Okta?

          Single Sign-on (SSO) allows you to log in to the Lumu portal through Identity Providers using their current credentials. Instead of requiring users to manage multiple usernames and passwords, SSO allows you to log in to multiple applications using ...
        • How do I configure Lumu?

          Follow these simple steps to set up your network for real-time compromise assessment in minutes: Open a Lumu Free Account     Create your Lumu Free account at portal.lumu.io . Create and Configure a Collector     Deploy the best collector type for ...
        • How can I manage notifications emails?

          Access the Lumu Portal and navigate to your profile  by clicking in your user icon in the upper right corner (1). In this area, you control how Lumu will send you alert notifications and reports of malicious activity. You can set the frequency or ...
        • How can I delete a user account?

          Access the Lumu Portal and navigate to Settings > Accounts. In this area, you can manage users, roles, and deactivate or delete a user account. Only Admins have access to account management.
        • What is Lumu Insights?

          Your network traffic is your ground zero for illuminating threats and adversaries. Using existing network data sources, Lumu Insights continuously assesses the entire enterprise to determine the level of compromise. Implementing Lumu’s patent-pending ...