OneLogin Integration Guide

Amir Avitzur
Amir Avitzur
  • Updated

Integrating OneLogin with Authomize

OneLogin can be integrated with Authomize so that Authomize will be able to analyze identity and access information held on OneLogin. Information such as users, groups, roles and applications are extracted once (when integrated) and updated regularly thereafter.

OneLogin integration workflow


Getting OneLogin Credentials

  1. Log into OneLogin:
  2. Click the Administration button on the top menu of the opening screen.
  3. Click API Credentials in the Developers drop down menu.
  4. Click the New Credential button on the API Access.
  5. Select Read All in the Create new API credential dialog and then click Save.
  6. Copy the Client ID and Client Secret from the credentials.
  7. If the credentials page closes, you can get back to it through Developers > API Access.
  8. To delete the credential, open it and click its Disable button.

Integrating OneLogin with Authomize

  1. Log into Authomize.
  2. Go to Settings/Data Sources and click Add New App.
  3. Select OneLogin.
  4. In the Integrate OneLogin dialog:
    1. In Insert integration details, enter the Cloud ID and Client Secret you copied from the OneLogin Credentials page.
    2. Enter the username and password of the OneLogin user that Authomize will use to communicate with OneLogin (this is only needed for extracting Admin Roles).
      Note 1: That user must have MFA disabled (for Authomize to be able to communicate).
      Note 2: This step is optional.
    3. Supply an Integration name.
    4. Enter the email address of the person responsible for this integration.
    5. Click Create.
  1. Wait for the integration to finish.
  2. When OneLogin is integrated you will see that it has become part of the Connected Apps list.

What Data is collected


  • First name
  • Last name
  • Email address
  • Last login date
  • Last password change date
  • MFA status (enabled/disabled)
  • User status


  • Applications

Groups and Roles

Note: Roles are normalized into Authomize Groups. The original role name is stored and listed under Original Type.



Share this

Was this article helpful?

0 out of 0 found this helpful