Skip to main content

Configuring OneLogin For SSO

This section documents the standard configuration for OneLogin as an identity provider to support log in to the DataGrail app. With this configuration, user roles must be managed within DataGrail.

Persons Needed to Complete Configuration: IT Person from your organization

  1. Log in to JumpCloud as an admin and select Administration Tab in the top right corner.
  2. Navigate to Applications and then Add App.
  3. Under Find Applications, select SAML Custom Connector (Advanced).
  4. Name the application and proceed to the Configuration tab in the left-hand menu to populate the necessary details.
SAML Configuration

Audience (EntityID): https://<subdomain>.datagrail.io/saml/metadata

Recipient: https://<subdomain>.datagrail.io/saml/auth

ACS Consumer URL: https://<subdomain>.datagrail.io/saml/auth

ACS Consumer URL Validator: ^https:\/\/<subdomain>\.datagrail\.io\/saml\/auth$

SAML not valid before / not valid on or after: 3 (Default)

SAML Initiator: OneLogin (Default)

SAML NamedID Format: email

SAML Issuer Type: Specific

SAML Signature Element: Response

SAML Encryption Method: TRIPLESDES-CBC (Default)

SAML sessionNotOnOrAfter: 1440 (Default)

If you are unclear on what your subdomain would be, please confirm with your Account Manager or reach out to support@datagrail.io.

  1. Select the Parameters section in the left-hand menu.
  2. Configure required fields.
Required Fields

  1. Add a field named email, select Include in SAML assertion, and save. Once complete, select Email from the value dropdown. Select save.

  2. Add a field named first_name, select Include in SAML assertion, and save. Once complete, select First Name from the value dropdown. Select save.

  3. Add a field named last_name, select Include in SAML assertion, and save. Once complete, select Last Name from the value dropdown. Select save.

  1. Open the SSO section of the left-hand menu. Set SAML Signature Algorithm to SHA-256.
  2. Copy the Issuer URL (metadata URL) and sent it to DataGrail at support@datagrail.io. We will complete the configuration.
Inviting New Users

For more information on adding users and managing roles, see Inviting New Users.

 

Need help?
If you have any questions, please reach out to your dedicated Account Manager or contact us at support@datagrail.io.

Disclaimer: The information contained in this message does not constitute as legal advice. We would advise seeking professional counsel before acting on or interpreting any material.