Installing OneLogin Protect

The OneLogin Protect mobile app can be installed directly from the App Store on your iOS device.

Adding an Authentication Factor

Your administrator may require biometric authentication for OneLogin Protect. If your device prompts you to enable biometric authentication during setup, tap Sign in with FaceID (or TouchID on iPhone 8 and below) and follow the on-screen prompts.

Using Your iOS Device

1. Log in to your OneLogin portal from the browser on your iOS device.

2. If your admin has required multi-factor authentication (MFA) and you have not already configured at least one additional authentication factor, you may see a prompt requesting that you add one now. If so, tap Continue and follow the prompts on your screen.

3. Otherwise, go to your Profile and choose Security Factors from the menu.

   
    

4. Tap Add Factor and select OneLogin Protect from the list of enabled authentication factors, then tap Activate.
   
    

   If OneLogin Protect does not appear in the list, contact your admin to ensure it has been enabled.

5. Tap Activate to launch the OneLogin Protect app.

   

6. Your OneLogin portal now appears in the home screen of OneLogin Protect and can be used for future authentication.

Using Your Computer or Another Device

1. Log in to your OneLogin portal from a web browser and go to your Profile. In the Security Factors menu, click Add Factor.

    

   

    

2. Select OneLogin Protect from the list of enabled authentication factors.

    

   

    

   If OneLogin Protect does not appear in the list, contact your admin to ensure it has been enabled.

3. In the OneLogin Protect app, tap the + to add an account. If you're prompted to allow OneLogin Protect to use your camera, tap OK. The camera activates, ready to scan a QR code.

    

   

    

4. Click Activate in your web browser. Verify that iPhone & Android is selected in the dropdown menu and scan the QR code with your mobile device.

   

   

   If you're unable to scan the QR code, consult the Troubleshooting steps below to check your camera settings or use an alternate code method.

5. When the code is accepted, the mobile app displays a green check and refreshes, displaying your account ready to authenticate.
   
    

Authenticating with OneLogin Protect

1. The next time your OneLogin account requires authentication, the login screen advises that your iOS device is ready for your approval.

    

   

    

2. OneLogin sends a notification to the device. Tap the notification, then select Accept. Unlock your device to allow one OneLogin to automatically send the OTP and log you in to your portal.

    

   If you don't receive the push notification, attempt the Troubleshooting steps below to check your notification settings or use an alternate OTP method.

Backing up your accounts

Configuring automated backups

1. In OneLogin Protect on your iOS device, swipe right to view the menu and tap Backup.
    

   
    

2. Enter your Email and Phone Number, and create a Master Password using the criteria shown on your screen.
    

   
    

3. After verifying your phone number by SMS, you receive a PDF containing a QR code and secret key for your account. Download or screenshot this file and store it in a safe place.
    

   
    

4. OneLogin Protect will now automatically update your backup whenever you add, update, or delete an account.
    

Warning: The master password and QR code are required to access your backup in the future. If you lose them, you will lose access to this backup and will need to create a new backup using a new email address and master password. Additionally, anyone with this information may be able to access your OneLogin account and all secure accounts you have connected to it. Be sure that you keep it in a secure location that only you have access to.

Creating a manual backup

1. Open OneLogin Protect and go to your Backup menu.

2. The Last Updated date shows you how recently your accounts were automatically backed up. Tap BACKUP NOW to immediately create a manual backup.
    

   
    

3. A confirmation appears at the bottom of your screen to display when your backup is in progress and has been completed. When complete, the Last Updated date changes to reflect your current backup.
    

Disabling your backups

1. Open OneLogin Protect, go to your Backup menu, and tap DISABLE BACKUP.
    

   
    

2. A warning appears, confirming that you want to remove all existing backups and permanently disable any previously generated QR codes for this backup. Tap REMOVE to confirm. Your saved codes can now be deleted from anywhere you've stored them and will no longer work to restore your backup. A new code must be generated in order to create backups for this account again the future.

Restoring from a backup

1. Open OneLogin Protect on your iOS device. Swipe right to view the menu and tap Restore.

2. Scan the QR code from your saved Recovery Kit, or tap Enter code instead to manually enter your Secret Key.

3. Enter the email and master password you created when configuring your backup and tap RESTORE. After authenticating your information, Protect will restore your backed up data.
    

   ---

    

    

Removing OneLogin Protect

Deleting an account from the device will not disable the account. You may still receive push notifications if the device remains registered and is the default factor. Follow these steps to fully remove OneLogin Protect from your authentication factors.

1. Return to Security Factors in your OneLogin Portal. Open the menu to the right of OneLogin Protect and click Remove.

    

   

    

2. If your admin has required MFA, you may be prompted to choose or create a new primary factor. Follow the prompts on your screen, then click Remove to confirm you want to remove OneLogin Protect.

Troubleshooting

I can't scan the QR code to add OneLogin.

Ensure that OneLogin Protect can access your camera. From the app menu, tap Settings and toggle Camera on.

If you're still unable to scan the code, you can enter it manually:

1. On your mobile device, tap Enter code instead.

    

   

    

2. On your other device, click Can't scan the code? and verify that iPhone & Android is selected in the dropdown menu.

    

   

    

3. Enter the displayed Activation Code into the mobile app and resume configuration.

I'm not receiving push notifications on my phone or tablet.

When your device is first added as a factor, the push notification connection may take a few hours to complete. If you're still not receiving push notifications after this time, ensure that OneLogin Protect notifications are set up by going to Settings and turning on Allow Notifications.

If you're still not receiving push notifications, contact your administrator about possible network issues preventing communication between your account and OneLogin Protect app. In the meantime, you can manually grant access by opening OneLogin protect and tapping Tap to unlock to view and enter your OTP. The OTP changes every 30 seconds and is indicated by the timer wheel to the right.

Important: Apple Watch notifications are managed by your iPhone settings and not by the OneLogin Protect settings. Any functionality that OneLogin Protect provides your Apple Watch is native to the Apple platform and not officially supported by OneLogin. If your administrator requires biometric verification to log in, the notification that arrives on your Apple Watch will need to be confirmed with a device that uses biometrics.

OneLogin Protect is using an incorrect email address.

Under some circumstances, Protect for iOS may default to using the email address associated with the user's iPhone. Administrators can resolve this in the branding configuration by ensuring the Recipient Email Field is set to Email.