OneLogin single sign-on (SSO) integration

Configuring Single Sign-on (SSO) with OneLogin will allow your users to create and sign into their GetAccept accounts using OneLogin.

Updated over a week ago

Introduction

When you integrate GetAccept with OneLogin, you can:

  • Control in Azure AD who has access to GetAccept.

  • Manage your accounts in one central location - the OneLogin portal.

Before setting up the integration it is good to understand:

  • Each entity in GetAccept requires a separate Application in OneLogin.

  • The normal login page to GetAccept will not be supported for SSO. To short-link directly to SSO login, please refer to the Login URL in the GetAccept SAML settings.

How To Setup SAML

Step 1: Create a new application in OneLogin

  1. In the top menu bar, click Applications, Applications, and then click Add App.

  2. Search for SAML Test Connector, and click that option.

  3. Under Display Name, name this app GetAccept. If you'd like to add our logo, it's provided below.

  4. Once you're done, click Save.

Step 2: Enable GetAccept SSO

Follow these steps to enable GetAccept SSO support.

  1. Login to GetAccept.

  2. Go to Settings.

  3. Select Integrations.

  4. Look for Provisioning and SSO.

  5. ​Click the Settings button on the SAML Authentication connector.

  6. Keep this browser tab open for easy access to settings in later steps.

Make sure that you are logged in to GetAccept using app.getaccept.com and not a subdomain, for example, companyx.getaccept.com

Step 3: Configure the GetAccept Application

  1. Go back to OneLogin and open the Configuration tab.

  2. Copy your GetAccept ACS URL and paste it into both the Recipient and ACS (Consumer) URL* fields.

  3. Copy the GetAccept Logout URL to the OneLogin Single Logout URL.

  4. Copy the GetAccept Login URL to the OneLogin Login URL.

  5. Click Save.

Step 4: Configure GetAccept SSO

Before you proceed with connecting SAML in GetAccept, we recommend opening a new app.getaccept.com session in incognito mode. You can use that tab to test the connection at the end of this guide, that way you can easily disconnect the SAML connector if you run into any error codes when testing.

  1. On the OneLogin application page, go to the SSO page.

  2. Copy the OneLogin Issuer URL into the GetAccept IDENTITY PROVIDER ISSUER URL / ENTITY ID field.

  3. Copy the OneLogin SAML 2.0 Endpoint (HTTP) into the GetAccept SSO LOGIN REDIRECT URL / SAML 2.0 ENDPOINT field.

  4. Click View Details under X.509 Certificate.

  5. Copy the Base 64 content into GetAccept under X.509 Certificate, including the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE-----

  6. The SLO endpoint is optional. Copy the OneLogin SLO Endpoint (HTTP) into the GetAccept LOGOUT POST URL / SLO ENDPOINT field.

  7. Click View Details

  8. Click Save in GetAccept and make sure the integration says Connected.

Keep in Mind

  • GetAccept requires SAML 2.0.

  • If you enable SAML authentication while you are logged into GetAccept make sure you have another session open with an alternate account login set up. Otherwise, you could lock yourself out of the app.

  • The authenticated user from OneLogin must exist with the same email address in GetAccept.

Need help?

We are here to help you if you get stuck at any step in setting up the integration.
Use the chat icon to the right to start a conversation with our support team or send an email to support@getaccept.com 🧡​

Did this answer your question?