To connect S4 and Onelogin, please open a browser to https://onelogin.com and sign in using an account with admin-level privileges.
After sign-in, please navigate to the OneLogin administration console.
Once in the console, please hover over the applications tab at the top, then click on the applications link in the dropdown.
Then, in the top right corner please click on the "Add App" button.
On the next page, search for the "Digitsec" app and add it to your account.
Once you have set up the S4 app, you should then be able to add it to the dashboard of your internal users for them to log into the S4 app from their OneLogin dashboard.
To enable SSO for S4 with OneLogin account, you must retrieve your OneLogin SAML Application information. Begin by navigating to the application settings in OneLogin by clicking Applications in the top bar, then selecting the Digitsec application. Once the page loads, select SSO from the left bar.
After clicking the SSO link, a dialog pane similar to the image below should appear.
Enter the appropriate information into S4 to provision Single Sign-on. Please direct your browser to https://s4.digitsec.com/ and click on Configuration in the left bar. In the Integrations tab, select Configure next to Set Up Single Sign-On. This should open the menu shown below:
Please copy and paste the Issuer URL from OneLogin into the field "Identity Provider Issuer". Next, copy and paste the "SAML 2.0 Endpoint" from OneLogin into the field "Identity Provider SSO URL" in S4. Then on OneLogin, please click the link that says View Details below the x.509 certificate. This should open a screen like the one shown below:
Copy and paste the entire contents of the box labeled X.509 Certificate into the field on S4 labeled "X.509 Certificate". After this has been completed, please press the Verify and Save button at the bottom of the page. Now, please click the copy button next to the SAML Secret in S4.
With the SAML Secret stored in your clipboard, you must add this value to OneLogin. While the application page is still open on OneLogin, please click on the Configuration button on the left side of the screen. Next, please paste your SAML Secret into the Recipient Field as shown below.
After you have added the URL and clicked on the Verify and Save button, please test this new integration with S4.
To test, log out of your S4 account by clicking on the Profile widget in the upper right-hand corner of the screen and selecting "Logout" from the menu. The login page should be presented, simply click the login button. If you are already signed into OneLogin, you will be automatically redirected to the dashboard of your S4 account, otherwise, you will need to sign in with your OneLogin credentials and then you will be redirected to the S4 Dashboard. In either case, this will indicate a successful integration with OneLogin.
