This topic describes how to configure OneLogin to provide SSO for M-Files using SAML.
- Log into OneLogin as an admin and go to Apps > Add Apps.
- Search for and select the M-Files SAML connector. The initial Configuration tab appears.
- Click Save to add the app to your Company Apps and display additional configuration tabs.The Info tab appears.
- Go to the Configuration tab and enter you M-Files subdomain.
- Go to the Parameters tab and map M-Files attributes to OneLogin attributes.
In most cases, you should keep the Configured by admin default. For more information, see Setting Credential Configuration Options.
For most implementations, you can accept the default attribute mappings.
Click Save to save your changes on the Parameters tab.
2. Go to the SSO tab to obtain the SAML 2.0 Endpoint (HTTP) and the X.509 Certificate file that you will need to provide to the M-Files support team for setup.
a.Copy the SAML 2.0 Endpoint (HTTP) value found on the SSO tab.
b.Obtain the X.509 Certificate by selecting View Details. Then select Download to download the certificate.
You can also go to Users > All Users to add the app to individual user accounts.
4. Click Save.
5. Provide the SAML 2.0 Endpoint (HTTP) and the X.509 Certificate to your M-Files representative for setup. Once complete, you can test to confirm everything is configured correctly.
Test the SAML Connection
- Test the SAML connection.
a. Ensure that M-Files has received and processed your SAML 2.0 Endpoint (HTTP) and IdP Metadata file.
b. Ensure that you have user accounts in both OneLogin and M-Files that use the same email as the username.You can create a test user, or you can use your own account if you choose.
c. Make sure you are logged out of M-Files.
d. Log into OneLogin as an admin and give the test user access to the M-Files app in OneLogin.
e. Log into OneLogin as the test user.
f. Click the M-Files icon on your OneLogin dashboard.
If you are able to access M-Files, then SAML is working.