• Cloud Edge Secure Access
• Welcome to SonicWall Cloud Edge!
• Prerequisites
• Installation
  • Accessing the Client Management Console
  • Installation Methods
• Networks
  • Understanding Networks
  • SDP Networks
  • Regions and Gateways
    • Adding a region
    • Adding a gateway
  • Connecting Infrastructure
    • Prerequisites
    • Site-to-Site Connections
    • IPsec Tunnel
    • WireGuard Connector
    • Connect On-Prem Resources
      • Firewalls
        • SonicWall
    • Connect Cloud Resources
      • Amazon AWS
        • AWS Virtual Gateway
        • AWS Transit Gateway
      • Alibaba Cloud
      • Microsoft Azure
      • Google Cloud Platform
      • Heroku Enterprise
      • IBM Cloud
      • Docker
• Groups and Members
  • Members
    • Inviting Members
    • Password Requirements
    • Managing Roles
  • Groups
    • Managing Groups
    • Identity Provider Groups
  • Identity Providers (IdP)
    • Integrate Identity Providers
    • Azure AD
      • Azure Active Directory (SAML 2.0)
      • Azure Active Directory
    • Google Suite
      • Google Services
      • Google Apps (SAML 2.0)
    • On-Premises Active Directory
    • SAML 2.0
      • Generic SAML
      • Active Directory Federation Services (ADFS)
      • Auth0
      • Okta
      • OneLogin
      • PingIdentity
      • JumpCloud
• Securing the Platform
  • Securing Networks
    • Segmenting Networks
    • Device Posture Check
    • Network Traffic Control
    • Firewall-as-a-Service
  • Securing User Access
    • Multi-Factor Authentication
      • MFA Authentication
      • DUO Security
    • Agent-less Access
      • Zero Trust Application
        • HTTP/HTTPS
        • RDP (Remote Desktop Protocol)
        • SSH (Secure Shell)
        • VNC (Virtual Network Computing)
      • Zero Trust Policies and Rules
    • Agent-based Access
      • SonicWall Agents
        • Downloading and Installation
      • Agents Configuration
        • User-Groups Policies
        • Managing Configurations
        • General Configurations
        • Network Configuration
        • OS-Specific Configurations
• Monitoring
  • Activity Tracking
    • Activities and Logs
    • Member Devices
  • Monitoring Dashboard
  • Integrations
    • Amazon S3
    • Azure Sentinel
    • Splunk Cloud
• Compliance
  • HIPAA
  • GDPR
  • SOC 2 Type 2
• SonicWall Support
  • About This Document

OneLogin

This article describes how to configure OneLogin for use as an identity provider for SonicWall.

• Configuring OneLogin
• Configuring SonicWall
• Access Error troubleshooting

Please follow the steps below:

Configuring OneLogin

1. Log in to your OneLogin account. If you don't already have one, you will need to create one.

2. Select Apps and then Add Apps.

   

3. Search for saml, and select SAML Test Connector (IdP w/attr).

   

4. Change the Display Name to Connector. Select Save.

   

5. Go to the SSO tab, and copy the values for SAML 2.0 Endpoint (HTTP) and SLO Endpoint (HTTP).

6. Select the View Details link at the X.509 Certificate field.

   

7. Download the X.509 certificate onelogin.pem.

   

8. Go back to the Configuration tab.

9. Enter the following values into the appropriate fields:

   • Audience: urn:auth0:sonicwall-production:tenantname-oc

   • Recipient:https://auth.sonicwalledge.com/login/callback?connection=tenantname-oc
   • ACS (Consumer) URL:https://auth.sonicwalledge.com/login/callback?connection=tenantname-oc
   • ACS (Consumer) URL Validator field: https://auth.sonicwalledge.com/login/callback?connection=tenantname-oc

   

10. On the Parameters tab, select Add Parameter.

    

11. In the popup, set a name for your new custom attribute using the Field name text box. Make sure you check the Include in the SAML assertion flag. Select Save.
    
12. The new attribute you created is displayed. Select the Value field, which is currently displaying - No default.
    
13. Select the Value dropdown menu and select Macro.
    

14. Add the following set of properties:

    • Field Name: email, Macro text box value: {email}, SAML assertion flag: Checked
    • Field Name: given_name, Macro text box value: {firstname}, SAML assertion flag: Checked
    • Field Name: family_name, Macro text box value: {lastname}, SAML assertion flag: Checked

    

At this point, we're ready to configure SonicWall.

Configuring SonicWall

1. Log in to your Management Platform, and navigate to Settings and then Identity Providers.

   

2. Select + Add Provider.
3. Choose Okta Identity Cloud (Okta connection will work for OneLogin).

4. Fill Sign In URL, Signing Certificate as follows:

   • The SAML 2.0 Endpoint (HTTP) value you saved above into the Sign In URL field
   • The SLO Endpoint (HTTP) value into the Sign Out URL field.

   • Finally, upload the onelogin.pem certificate using Upload Certificate.

     

5. Select Done.

Access Error troubleshooting

If your users are getting access error after the configuration, please check these steps.