OneLogin is an enterprise identity management and single sign-on service that integrates with applications in the cloud, on-premises, or on a mobile device. This documentation describes how to configure a single sign-on partnership between OneLogin as the Identity Provider (IdP) and the Single Sign-On Service (SSO) for Security Journey (formally HackEDU) as the Service Provider (SP). All SSO communication takes place over TLS/SSL.
Prerequisites
To integrate OneLogin with Security Journey, you need:
OneLogin Account
A user with Application Admin privileges
Configure OneLogin
1. Login to OneLogin as an Administrator and go to APPS from the top menu and click "ADD APP."
2. Search for "cognito" under Find Applications and click "AWS Cognito"
3. Enter "Security Journey" for Display Name
4. Reach our to Customer Support via our live chat or email support@securityjourney.com for our rectangular and square icons.
5. Click Save
6. Click the Configuration tab and enter the following values:
SAML Audience: urn:amazon:cognito:sp:us-east-1_CHi5tsM8X
โLogin URL: https://my.securityjourney.com/?domain=customerdomain.com
Replace customerdomain.com with your company's domain. If you are unsure what domains are permitted on your account you can see what we have configured by navigating to Admin > Settings > General > SSO. If you don't see all your required domains, please reach out to Customer Support via our live chat or email support@securityjourney.com.
6. Click the Parameters tab and click Add parameter
7. Enter Email as the Field name and check the Include in SAML assertion. Click Save
8. Select Email for the Value parameter and click SAVE
9. Click Save on the App
10. Add user assignments
Configure Security Journey
Click the MORE ACTIONS button and then SAML Metadata