Skip to content

Integrate OneLogin

OneLogin SAML/SSO Integration

This guide explains how to configure SAML-based Single Sign-On (SSO) between OneLogin and Tallyfy to enable automated user authentication and provisioning.

Requirements

  • OneLogin administrator account
  • Tallyfy Professional or Enterprise plan
  • SAML configuration values from Tallyfy Support

Implementation process overview

The integration involves three main phases:

  1. Creating and configuring a OneLogin SAML application connector
  2. Configuring SAML settings in both systems
  3. Enabling and testing the SSO integration

Phase 1: Create OneLogin SAML application

Step 1: Access application management

  1. Sign in to your OneLogin portal

  2. Open the Administration menu

  3. Navigate to Applications > Applications

  4. Click Add App

    Add Application button

Step 2: Select and configure the connector

  1. Search for “SAML Test Connector”

  2. Select SAML Test Connector (Advanced)

  3. Edit the Display Name to “Tallyfy”

  4. Click Save

    SAML Connector configuration

Phase 2: Configure SAML settings

Step 1: Obtain Tallyfy SAML values

To properly configure OneLogin, you need Tallyfy’s default SAML values:

  1. Contact Tallyfy Support to access your organization’s profile

  2. Navigate to the Org Settings tab

  3. Click Add Configuration Details

  4. Locate the default SAML values section

    Tallyfy organization settings Tallyfy default SAML values

Step 2: Configure the OneLogin connector

  1. Navigate to the Configuration tab in your OneLogin application connector.

  2. Enter the Tallyfy SP ACS URL into the ACS (Consumer) URL field.

  3. Enter the same URL into the Recipient field.

  4. Enter the Tallyfy SP Entity ID into the Audience (EntityID) field.

  5. Enter the ACS URL again into the ACS (Consumer) URL Validator field.

  6. Click Save.

    SAML Configuration in OneLogin

Step 3: Configure user attributes

  1. Navigate to the Parameters tab in your OneLogin application.
  2. Add the three parameters detailed below.

Add the following parameters, ensuring the Include in SAML assertion box is checked for each:

Parameter NameValue
EmailEmail
FirstNameFirst Name
LastNameLast Name
Parameters configuration

To add each parameter:

  1. Click the + button in the top-right corner of the parameters table.

  2. Enter the parameter name (e.g., “Email”) and map it to the corresponding user attribute (Value field).

  3. Check the Include in SAML assertion box.

  4. Click Save.

    Parameter configuration example 1 Parameter configuration example 2

Step 4: Assign users to the application

  1. Navigate to the Access tab in your OneLogin application

  2. Configure user access by selecting appropriate roles or users

  3. In this example, the Default role grants access to the application

  4. Click Save

    User access configuration

Phase 3: Configure Tallyfy with OneLogin information

Step 1: Obtain OneLogin SAML information

  1. Navigate to the SSO tab in your OneLogin application.

    SSO tab in OneLogin

  2. Note the SAML 2.0 Endpoint (HTTP).

  3. Note the Issuer URL.

  4. Note or download the X.509 Certificate.

Step 2: Provide information to Tallyfy Support

  1. Send the SAML 2.0 Endpoint (HTTP) to Tallyfy Support.

  2. Send the Issuer URL to Tallyfy Support.

  3. Send the X.509 Certificate to Tallyfy Support.

  4. Tallyfy Support will configure these values in your organization’s SAML settings.

    Tallyfy SAML configuration

Step 3: Enable SAML authentication

After Tallyfy Support has configured your SAML settings:

  1. Toggle the SAML activation switch to enable SSO for your organization

    Enable SAML toggle

User provisioning and access

After completing the integration:

  1. Obtain the Tallyfy login URL from the SAML configuration modal (provided by Tallyfy Support)

  2. Share this URL with your users who have access to the OneLogin application

    Tallyfy login URL

Users can now access Tallyfy through this URL:

  • Existing Tallyfy users will be automatically authenticated
  • New users will be provisioned in Tallyfy upon their first login

Troubleshooting

If users encounter authentication issues:

  • Verify the user has been assigned to the OneLogin application
  • Check that parameter mappings are correctly configured (exact names)
  • Ensure the required attribute flags are enabled
  • Confirm users are accessing Tallyfy through the SSO URL
  • Contact Tallyfy Support for assistance with persistent issues

Authentication > Integrate Okta

A comprehensive walkthrough for implementing SAML-based Single Sign-On between Okta and Tallyfy through application configuration user attribute mapping and SSO activation for automated user authentication and provisioning.

Authentication > Integrate Azure AD

The comprehensive guide outlines the complete process for setting up SAML-based Single Sign-On between Microsoft Azure Active Directory and Tallyfy including application configuration attribute mapping and user provisioning steps for seamless authentication.

Authentication > Integrate Google Suite

The comprehensive guide outlines the process of implementing SAML-based Single Sign-On between Google Workspace and Tallyfy through application setup attribute mapping and user access configuration for automated authentication.

Integrations > Authentication and SSO

Free Single Sign-On integration enables team members to access Tallyfy using their existing company credentials while providing enhanced security automated account setup and centralized user management through popular identity providers.
Get in touch
About Tallyfy