Skip to content

Integrate OneLogin SSO

OneLogin SAML/SSO Integration

Want your team to access Tallyfy with their OneLogin credentials? You’ll set up SAML-based Single Sign-On (SSO) to handle authentication automatically. Takes about 30 minutes.

Requirements

  • OneLogin administrator account
  • Tallyfy Professional or Enterprise plan
  • SAML configuration values from Tallyfy Support

Implementation process overview

Here’s what you’ll do:

  1. Create a OneLogin SAML application connector
  2. Configure SAML settings in both systems
  3. Enable and test the SSO integration

SAML Integration Flow

This diagram shows the complete OneLogin-Tallyfy SAML setup and authentication flow.

Diagram

What to notice:

  • Configuration requires exchanging metadata between OneLogin and Tallyfy Support
  • Users access through a special SSO URL after setup is complete
  • New users are automatically provisioned on first login

Phase 1: Create OneLogin SAML application

Step 1: Access application management

  1. Sign in to your OneLogin portal

  2. Open the Administration menu

  3. Navigate to Applications > Applications

  4. Click Add App

    Add Application button

Step 2: Select and configure the connector

  1. Search for “SAML Test Connector”

  2. Select SAML Test Connector (Advanced)

  3. Edit the Display Name to “Tallyfy”

  4. Click Save

    SAML Connector configuration

Phase 2: Configure SAML settings

Step 1: Obtain Tallyfy SAML values

You’ll need Tallyfy’s default SAML values to configure OneLogin properly:

  1. Contact Tallyfy Support to access your organization’s profile

  2. Navigate to the Org Settings tab

  3. Click Add Configuration Details

  4. Locate the default SAML values section

    Tallyfy organization settings Tallyfy default SAML values

Step 2: Configure the OneLogin connector

  1. Navigate to the Configuration tab in your OneLogin application connector.

  2. Enter the Tallyfy SP ACS URL into the ACS (Consumer) URL field.

  3. Enter the same URL into the Recipient field.

  4. Enter the Tallyfy SP Entity ID into the Audience (EntityID) field.

  5. Enter the ACS URL again into the ACS (Consumer) URL Validator field.

  6. Click Save.

    SAML Configuration in OneLogin

Step 3: Configure user attributes

  1. Navigate to the Parameters tab in your OneLogin application.
  2. Add the three parameters detailed below.

Add these three parameters - and don’t forget to check the Include in SAML assertion box for each one:

Parameter NameValue
EmailEmail
FirstNameFirst Name
LastNameLast Name
Parameters configuration

Here’s how to add each parameter:

  1. Click the + button in the top-right corner of the parameters table.

  2. Enter the parameter name (e.g., “Email”) and map it to the corresponding user attribute (Value field).

  3. Check the Include in SAML assertion box.

  4. Click Save.

    Parameter configuration example 1 Parameter configuration example 2

Step 4: Assign users to the application

  1. Navigate to the Access tab in your OneLogin application

  2. Configure user access by selecting appropriate roles or users

  3. In this example, we’re using the Default role to grant access

  4. Click Save

    User access configuration

Phase 3: Configure Tallyfy with OneLogin information

Step 1: Obtain OneLogin SAML information

  1. Navigate to the SSO tab in your OneLogin application.

    SSO tab in OneLogin

  2. Note the SAML 2.0 Endpoint (HTTP).

  3. Note the Issuer URL.

  4. Note or download the X.509 Certificate.

Step 2: Provide information to Tallyfy Support

  1. Send the SAML 2.0 Endpoint (HTTP) to Tallyfy Support.

  2. Send the Issuer URL to Tallyfy Support.

  3. Send the X.509 Certificate to Tallyfy Support.

  4. Tallyfy Support will configure these values in your organization’s SAML settings.

    Tallyfy SAML configuration

Step 3: Enable SAML authentication

Once Tallyfy Support confirms they’ve configured your SAML settings, it’s time to flip the switch:

  1. Toggle the SAML activation switch to enable SSO for your organization

    Enable SAML toggle

User provisioning and access

After you’ve completed the integration:

  1. Get the Tallyfy login URL from the SAML configuration modal (Tallyfy Support provides this)

  2. Share this URL with your team members who have access to the OneLogin application

    Tallyfy login URL

When users access Tallyfy through this URL:

  • Existing Tallyfy users get in immediately with automatic authentication
  • New users? They’re provisioned in Tallyfy on their first login (yes, it’s that simple)

Troubleshooting

Running into authentication issues? Check these common culprits:

  • Make sure the user has been assigned to the OneLogin application
  • Double-check parameter mappings are configured with exact names - even a tiny typo breaks everything
  • Verify the required attribute flags are enabled
  • Confirm users are using the SSO URL (not the regular Tallyfy login page)
  • Still stuck? Contact Tallyfy Support for help

Authentication > Integrate Okta SSO

Okta SAML/SSO integration with Tallyfy enables automatic user authentication and account creation through a three-phase setup process involving creating an Okta SAML application configuring settings in both systems and coordinating with Tallyfy Support to exchange configuration metadata for seamless single sign-on within 30 minutes.

Authentication > Integrate Microsoft Entra ID SSO

Microsoft Entra ID SSO integration with Tallyfy provides seamless single sign-on authentication and automatic user provisioning through a collaborative 30-minute setup process that involves creating an enterprise application configuring SAML settings and coordinating with Tallyfy Support to exchange configuration details.

Authentication > Integrate Google Workspace

Google Workspace integrates with Tallyfy through SAML-based single sign-on by creating a custom SAML application in Google Admin console configuring identity provider details and attribute mapping then working with Tallyfy Support to complete the setup for automatic user authentication and provisioning.

Integrations > Authentication and SSO

Tallyfy offers free Single Sign-On integration for paid plan customers that connects with enterprise identity providers like Microsoft Entra ID and Google Workspace within 30 minutes while providing SSO-based approval capabilities that can replace traditional e-signature solutions for internal corporate processes.
Get in touch
About Tallyfy