Before you begin: 

Sign into OneLogin with admin rights and set up a OneLogin account. 

STEPS IN ONELOGIN 

  1. Sign in to OneLogin. 
  2. From the upper menu, select Applications > Applications. 
  3. Select Add App to create a new application.  
  4. Using search, find SAML Custom Connector (Advanced) and click it.
  5. In the Portal section, configure the general settings of your app, such as name and logo, and click Save.

STEPS IN CASPIO DIRECTORIES 

  1. In Caspio directories, in the Identity providers tab, click Add identity provider. Links from the 1. Service provider information section will be needed to configure the external identity provider.

STEPS IN ONELOGIN 

  1. Go to the Configuration tab and copy-paste the links according to the following table:
Caspio Service provider informationOneLogin Configuration
Copy the Service provider identifier (Entity ID) URL...…and paste it into Audience (Entity ID) and Recipient fields in OneLogin.
Copy the Reply URL (Assertion consumer service URL) URL...…and paste it into the ACS (Consumer) URL Validator and ACS (Consumer) URL fields in OneLogin.

  1. Download x.509 Certificate. Click View Details. You will need this text in step 9c.

STEPS IN CASPIO DIRECTORIES 

  1. In Caspio directories, in the Add Identity provider right panel, perform the following actions:
    1. Enter the name and select a user identifier in 2. Identity provider information. We recommend using the default Email field. 
    2. Provide the copied links from step 6 according to the following table: 
OneLogin SSOCaspio Identity provider information
Copy the Issuer URL...…and paste it into Single sign-on URL field in Caspio.
Copy the SAML 2.0 Endpoint (HTTP) link...…and paste it into the Identity provider identifier field in Caspio.

    1. In the SAML signing certificate (x.509), upload a certificate from step 8.

Testing

  1. Add a user to an app in OneLogin.
    1. In the upper menu, select Users > Users. 
    2. Enter user information and click Save User. 
    3. Select More Actions Change Password and set a password. 
    4. From the left User info panel, select Applications.
    5. Select created SAML Test Connector, then click Continue Save Save User. 
  1. Add a user in Caspio directories.
    1. In the Users tab, create a user. 
    2. Fill in an email address of the testing user from OneLogin (step 1b of the testing procedure). User email in OneLogin and Caspio directory must match to authenticate a user. 
    3. Select sign-in method as per the identity provider name set up in step 5. 
  1. Sign in to user portal with OneLogin. 
    1. In Caspio directories, select User portal. 
    2. In the User portal URLs, click the Settings URL. 
    3. In the login page of a user portal, enter an email address of the newly created test user in Caspio directory.
    4. In OneLogin login page, sign in with the OneLogin credentials.
    5. You should be redirected to the Settings page of the user portal where you can see the profile information of the logged in user, including the email address.