The Umbrella Documentation Hub

Welcome to the Umbrella documentation hub. Here you'll find access to all of our Cisco Umbrella user guides.

Get Started    

Enable SSO with OneLogin

To enable single sign-on (SSO) with SAML for Umbrella, you must first add the OneLogin application for Umbrella to your organization, then follow a step-by-step wizard to complete the process in Umbrella.

  1. Navigate to Admin > Authentication.
  2. In the SAML Dashboard User Configuration section, click Enable SAML.
  1. Select OneLogin and click Next.
  1. From the Instructions tab, follow instructions as listed. You'll be asked to provide the provider metadata.
  2. To configure OneLogin for Umbrella to gather the metadata, log into your OneLogin dashboard as the user you want to configure for Umbrella and go to the Admin tab.
    Note: You must log into both dashboards with the same user —email address—or these steps will fail.
  3. Click Add Application and then Find Apps.
  1. Search for "OpenDNS" and add the application named OpenDNS with SAML 2.0 next to it. Save the app and keep the defaults for General Settings.
  1. Select the defaults for setup steps 1 through 4 (change to For example,, verifying the attribute mapping and then click Save & Publish.
  2. At Step 5 - Review, click Download next to SAML Metadata and save the onelogin-metadata-idp.xml file.
  3. Ensure all users that will need to log in to your Umbrella dashboard now or in the future have the OpenDNS application assigned to their Ping account. All users must have access to the OpenDNS application or they will not be able to log in. Save the configuration.
  4. Once you've completed the application setup, return to Umbrella, navigate to Settings > Authentication and proceed to step 3 Upload Metadata.
  1. Click Choose File, select the metadata file you downloaded from Ping Identity and click then Next.
  2. Click Test Your SAML Configuration and enter the Umbrella email for your current logged in user that was added to the Ping Identity application. After the test completes, a success message should be displayed.

From this point forward, all authentication to the Umbrella dashboard for all users in your organization will be handled by Ping Identity.

Enable SSO with PingID < Enable SSO with OneLogin > Enable SSO with Azure

Updated 2 months ago

Enable SSO with OneLogin

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.