👉 Create new application for Didomi Console
- Login to your Onelogin portal.
- Go to the Administration section.
- In the Menu select Applications > Applications.
- Click on Add App.
- Look for the application name SAML custom connector (Advanced).
- Enter a display name: Didomi Console.
- Click on Save.
- Under the newly created connector, go to Configuration:
-
Audience (EntityID) 👉 Add configured issuer collected from Didomi Console ACS (Consumer) URL Validator 👉 Enter the value: [-a-zA-Z0-9@:%.\+~#=]{2,256}\.[a-z]{2,6}\b([-a-zA-Z0-9@:%\+.~#?&//=]*) ACS (Consumer) URL 👉 Add the Login URL collected from Didomi Console Single Logout URL 👉 Add the Logout URL collected from Didomi Console SAML initiator 👉 Select Service Provider - Click on Save.
- Under the newly created connector, go to Parameters.
- In SAML Custom Connector (Advanced) Field, click the + button.
- In the Field name add: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
- Select the checkbox: Include in SAML assertion.
- Click on Save.
- In the Value select: Email.
- Click on Save.
👉 Collect your settings from Onelogin
- Login to your Onelogin portal.
- Go to the Administration section.
- In the Menu select Applications > Applications.
- Select the application created in the step above for “Didomi Console”.
- Go to SSO.
- Copy the below values:
SAML 2.0 Endpoint (HTTP) | 👉 This will be pasted in Didomi console field Login URL. |
SLO Endpoint (HTTP) | 👉 This will be pasted in Didomi console field Logout URL. |
Under X.509 Certificate | 👉 Click on View details, then copy the certificate. |
👉 Assign users to Didomi Console application
- Login to your Onelogin portal.
- Go to the Administration section.
- In the Menu select Users > Users.
- Follow the instruction to assign your user to the application created in the step above for “Didomi Console”.