To connect S4 and Onelogin, please open a browser to https://onelogin.com and sign in using your account with admin-level privileges.
After we have signed in, we will need to head over to the OneLogin administration console.
Once in the console, please hover over the applications tab at the top, then click on the applications link in the dropdown.
Then, in the top right corner please click on the "Add App" button.
On the next page, search for the "Digitsec" app and add it to your account.
Once you have set up the S4 app, you should then be able to add it to the dashboard of your internal users for them to log into the S4 app from their OneLogin dashboard.
To enable SSO for S4 with OneLogin account, you must retrieve your OneLogin SAML Application information. We will start by going to the application settings in OneLogin by clicking Applications in the top bar, then selecting the Digitsec application. Once the page loads, we will need to select SSO from the left bar.
After clicking the SSO link, you should be taken to a page that looks like this:
We will want to enter this information into S4 to provision Single Sign-on. We will head over to https://s4.digitsec.com/ and click on Configuration in the left bar. In the integrations tab, we will want to select Configure next to Set Up Single Sign-On. This should open the menu shown below:
In here, we will copy and paste the Issuer URL from OneLogin into the field "Identity Provider Issuer". Then we will copy and paste the "SAML 2.0 Endpoint" from OneLogin into the field "Identity Provider SSO URL" in S4. Then on OneLogin, we will click the link that says View Details below the x.509 certificate. This should open a screen like the one shown below:
We will copy and paste the entire contents of the box labeled X.509 Certificate into the field on S4 labeled "X.509 Certificate". After this has been completed, please press the Verify and Save button at the bottom of the page. Now that we have set our values up, we will need to click the copy button next to the SAML Secret in S4.
Now that we have our SAML Secret stored in our clipboard, we will need to add this value to OneLogin. With our application page still open on OneLogin, we will click on the Configuration button on the left side of the screen. In here, we will paste our SAML Secret into the Recipient Field as shown below.
After you have added the URL and clicked on the Verify and Save button, please test this new integration with S4. Start by logging out of your S4 account by clicking on the Profile widget in the upper right-hand corner of the screen and selecting "Logout" from the menu. The login page should be presented, simply click the login button. If you are already signed into OneLogin, you will be automatically redirected to the dashboard of your S4 account, otherwise, you will need to sign in with your OneLogin credentials and then you will be redirected to the S4 Dashboard. In either case, this will indicate a successful integration with OneLogin.