Single Sign-on (SSO) allows you to log in to the Lumu portal through Identity Providers using their current credentials. Instead of requiring users to manage multiple usernames and passwords, SSO allows you to login to multiple applications using the profile created in your Identity Management Service.
The Lumu Portal provides SSO with OneLogin, a third-party authentication service that enables users to be logged in to the Lumu Portal seamlessly. When you configure SSO in your Lumu Portal, your users can connect without the need for separate login credentials.
Prerequisites
To configure SSO integration with the Lumu Portal, you'll need administrator access to your OneLogin organization.
OneLogin Settings
To configure Single Sign-on for the Lumu Portal using OneLogin:
1. Log into your organization’s
OneLogin account and select the 'Applications' option in the Applications submenu.
Figure 1 - Select 'Applications' 2. In the top right, under your profile name, select the Add App option. There, use the search bar and select 'SAML Custom Connector (Advanced)' from the options shown below.
Figure 2 - Select 'SAML Custom Connector' 3. Configure the SAML Connector using the settings provided by OneLogin and assign an appropriate name to it. Optionally upload a picture to update the application logo. Read the provided instructions and requirements carefully. When you are done, select the Save option in the upper right section of the screen, right below your profile.
Figure 3 - Assign a name and logo (optional) 4. From the menu on the left, select the Configuration tab. There, we will need to configure a few parameters. These are the parameters and their corresponding values:
5. On the same screen, scroll down to the bottom, make sure to check the box for the option “Send NameID Format in SLO Request”. Save all changes by clicking the Save button.
6. From the menu, go to the SSO tab, look for the option 'SAML Signature Algorithm'. There, open the dropdown menu and select the SHA-256 algorithm. Make sure to save all changes by clicking the 'Save' button.
Figure 5 - Select 'SHA-256' algorithm from the menu 7. Go back to the SSO tab. Under the certificate, you will find two options, click on 'View Details'.
Figure 6 - Select 'View Details' 8. Once there, make sure the SHA Fingerprint is set to SHA-256. Look for the fingerprint below and copy the value to your clipboard using the provided option.
Figure 7 - Copy and store the fingerprint 9. Send the obtained fingerprint to
Lumu Support. Once received, we will finish setting up the required configuration and the SSO implementation through OneLogin will be complete.