Single Sign-On (SSO) is a great way to improve the security and user experience for your Keepabl account – and OneLogin is one of our supported Identity Providers, or IdPs.
We’ve prepared this guide so that you can get SSO up and running with OneLogin as your IdP for Keepabl. For more information, please see our detailed Admin Guide to SSO & Keepabl.
Please note, you need to be the Super Admin in your Keepabl account to set up SSO in Keepabl.
The following provisioning features are supported with OneLogin as your IdP:
To protect the Security of your Keepabl account and to respect least privilege access practices, any new user assigned to Keepabl in an IdP is created in Keepabl with a ‘blank account’ with no access rights: they’ll see nothing when they login to Keepabl. You can then go to your Admin Portal in Keepabl and give them the exact, tailored access rights appropriate for their role.
Now let’s run through the simple steps to use OneLogin as your IdP for Keepabl.
First log into Keepabl and go to Admin Portal > Your Organisation, where you’ll see the Single Sign-On (SSO) section. Click on the Setup Identity Provider button:
You will be taken to the SSO Setup page, where, once you select OneLogin as your provider, you will see three URLs, called SAML Consumer URL, SCIM Base URL, and SAML Audience URL plus a SCIM Bearer Token. You will need to enter this into your OneLogin account.
Next, log into your OneLogin account:
Make sure you enable API Connection as shown below (you want to see the green dot and ‘Enabled’).
Then enable Provisioning (if Provisioning isn’t showing for you, you’ll need to contact your OneLogin Account Manager to discuss your OneLogin subscription level):
Once you’ve set up the Keepabl app in OneLogin, you need these 3 items from OneLogin to enter into Keepabl:
Now back to Keepabl to finish setting up SSO with OneLogin!
Go to Keepabl’s Set up SSO page where you chose OneLogin as your IdP and:
Congratulations! You’ve now set up OneLogin as your IdP and can now assign people to Keepabl in OneLogin.
Please reach out to us at firstname.lastname@example.org if you have any issues.