Integrating OneLogin with Authomize
OneLogin can be integrated with Authomize so that Authomize will be able to analyze identity and access information held on OneLogin. Information such as users, groups, roles and applications are extracted once (when integrated) and updated regularly thereafter.
OneLogin integration workflow
Getting OneLogin Credentials
- Log into OneLogin:
- Click the Administration button on the top menu of the opening screen.
- Click API Credentials in the Developers drop down menu.
- Click the New Credential button on the API Access.
- Select Read All in the Create new API credential dialog and then click Save.
- Copy the Client ID and Client Secret from the credentials.
- If the credentials page closes, you can get back to it through Developers > API Access.
- To delete the credential, open it and click its Disable button.
Integrating OneLogin with Authomize
- Log into Authomize.
- Go to Settings/Data Sources and click Add New App.
- Select OneLogin.
- In the Integrate OneLogin dialog:
- In Insert integration details, enter the Cloud ID and Client Secret you copied from the OneLogin Credentials page.
- Enter the username and password of the OneLogin user that Authomize will use to communicate with OneLogin (this is only needed for extracting Admin Roles).
Note 1: That user must have MFA disabled (for Authomize to be able to communicate).
Note 2: This step is optional. - Supply an Integration name.
- Enter the email address of the person responsible for this integration.
- Click Create.
- Wait for the integration to finish.
- When OneLogin is integrated you will see that it has become part of the Connected Apps list.
What Data is collected
Users
- First name
- Last name
- Email address
- Last login date
- Last password change date
- MFA status (enabled/disabled)
- User status
Assets
- Applications
Groups and Roles
Note: Roles are normalized into Authomize Groups. The original role name is stored and listed under Original Type.