To enable single sign-on (SSO) with SAML for Umbrella, you must first add the OneLogin application for Umbrella to your organization, then follow a step-by-step wizard to complete the process in Umbrella.
- Full admin access to the Umbrella dashboard. See Manage User Roles.
- Navigate to Admin > Authentication.
- In the SAML Dashboard User Configuration section, click Enable SAML.
- Select OneLogin and click Next.
- Download the OneLogin XML metadata file:
a. Log into your OneLogin dashboard as the user you want to configure for Umbrella and go to the Admin tab. Click Add Application and then Find Apps.
Note: You must log into both dashboards with the same user —email address—or these steps will fail.
b. Search for "OpenDNS" and add the application named OpenDNS with SAML 2.0 next to it. Save the app and keep the defaults for General Settings.
c. Assign all user that will need to log into your Umbrella dashboard. Save the configuration.
d. Select SAML Metadata and save the onelogin-metadata-idp.xml file.
e. Ensure all users that will need to log in to your Umbrella dashboard now or in the future have the OpenDNS application assigned to their OneLogin account. All users must have access to the OpenDNS application or they will not be able to log in. Save the configuration.
- Once you've completed the application setup, return to Umbrella, navigate to Admin > Authentication and proceed to Upload and Verify OneLogin Metadata. Select XML File Upload, upload the metadata file you downloaded from OneLogin, and click Next.
- Click Test Configuration and enter the Umbrella email for your current logged-in user that was added to the OneLogin Identity application. After the test completes, a success message should be displayed.
From this point forward, all authentication to the Umbrella dashboard for all users in your organization will be handled by OneLogin Identity.
Updated 3 months ago