Configure a OneLogin SSO integration 🔗
The OneLogin SSO integration lets your users log in to Splunk Observability Cloud using OneLogin.
Before you begin configuring the OneLogin SSO integration, ensure you have completed the steps in Configure SSO integrations for Splunk Observability Cloud, including the section Name an SSO integration to learn about naming your integrations.
Note
To use this procedure, you must be an administrator of your OneLogin organization and your Splunk Observability Cloud organization.
Open a browser tab or window for Splunk Observability Cloud, and another for OneLogin.
- In OneLogin, do the following:
Select > > .
Configure the certificate according to your organization security policy.
Make sure to pick SHA256 or better for the algorithm in the Signature field.
Copy the value of the X.509 certificate text box and and save it in a text editor so you can use it in the next steps.
Add Splunk Observability Cloud by selecting > > SignalFx.
In the dialog box, make any changes you want, then click Save.
Select SSO to open the SSO configuration page.
Select SHA-256 in the SAML Signature Algorithm box.
Copy the value of the Issuer URL text box and save it in a text editor so you can use it in the next steps.
- Back in Splunk Observability Cloud:
Log in to Splunk Observability Cloud.
Open the OneLogin guided setup . Optionally, you can navigate to the guided setup on your own:
In the left navigation menu, select
.Go to the Available integrations tab, or select Add Integration in the Deployed integrations tab.
In the integration filter menu, select All.
In the Search field, search for OneLogin, and select it.
In the Name text box, enter the name for your integration.
Copy the Integration ID value.
- Switch to OneLogin:
Go to the Configuration tab, then paste the integration ID into the SignalFx ID text box.
In the SignalFx subdomain, enter
api.<YOUR_REALM>
- In Splunk Observability Cloud:
Copy the value of X.509 certificate from the text editor and paste it into the Public Key text box.
Copy the value of Issuer URL from the text editor and paste it into the Issuer URL text box.
Select Save. The message Validated! appears. If you get an error, check the values that you copied and pasted.
The OneLogin SSO integration is now available to users in your OneLogin App portal. When users use the integration for the first time, they receive an email containing a link that they must open in order to authenticate. This only occurs the first time the user signs in. Subsequent login attempts don’t require validation.
If you want to turn off email authentication, contact Splunk Observability Cloud support.
Once you have a custom URL configured, your users can continue to log in using their existing username/password pair, or they can use their OneLogin SSO credentials instead. OneLogin SSO authentication and Splunk Observability Cloud username/password authentication are independent.
Splunk Observability Cloud generates a password for users you create in OneLogin SSO. If the OneLogin portal is unavailable, Splunk Observability Cloud users can use the reset password link on the Splunk Observability Cloud login page to get native Splunk Observability Cloud credentials.
If you are a Splunk Observability Cloud customer and are not able to see your data in Splunk Observability Cloud, you can get help in the following ways.
Available to Splunk Observability Cloud customers
Submit a case in the Splunk Support Portal .
Contact Splunk Support .
Available to prospective customers and free trial users
Ask a question and get answers through community support at Splunk Answers .
Join the Splunk #observability user group Slack channel to communicate with customers, partners, and Splunk employees worldwide. To join, see Chat groups in the Get Started with Splunk Community manual.