This topic describes how to configure OneLogin to provide SSO for ProcessUnity using SAML. Please note that you should contact ProcessUnity first to obtain the necessary information to complete the OneLogin ProcessUnity app configuration.
-
Log into OneLogin as an admin and go to Apps > Add Apps.
-
Search for and select the ProcessUnity connector.
The initial Configuration tab appears.
-
Click Save to add the app to your Company Apps and display additional configuration tabs.
The Info tab appears.
-
Go to the Configuration tab and enter your ProcessUnity Subdomain and Account. The subdomain will be sandbox for sandboxes and app for production accounts. If you do not know your account, it can be found in the metadata provided by ProcessUnity in this format https://{subdomain}.processunity.net/{account}. Click Save.
-
Go to the Parameters tab and map ProcessUnity attributes to OneLogin attributes.
Ensure that Credentials are Configured by admin.
Ensure that the ProcessUnity field NameID are set to the value you use to log into ProcessUnity. This is set to email by default, but could be different for your company.
-
Click Save if you made any changes on the Parameters tab.
-
Go to More Actions > Download SAML Metadata to configure your ProcessUnity account with OneLogin's SAML settings. Provide the xml download to ProcessUnity Support, who will finish configurations and enable SAML.
-
On the OneLogin Access tab, assign the OneLogin roles that should have access to ProcessUnity and provide any app security policy that you want to apply to ProcessUnity.
You can also go to Users > All Users to add the app to individual user accounts.
-
Click Save.
-
Test the SAML connection.
-
Ensure that you have user accounts in both OneLogin and ProcessUnity that use the same value as the username.
You can create a test user, or you can use your own account if you choose.
-
Make sure you are logged out of ProcessUnity.
-
Log in to OneLogin as the test user.
-
Click the ProcessUnity icon on your OneLogin dashboard.
If you are able to access ProcessUnity without error, then SAML works.
-