Skip to main content

Setting Up SSO with OneLogin

Support
Updated

Topics included in this article:

Overview

Single Sign-On is a way to sync sign-on across multiple applications, allowing you to log in to all applications with one user account and password.

Rhombus supports any SAML SSO (single sign-on) identity providers. This article covers how to configure SSO with OneLogin.

 

Prerequisites

To begin setting up Rhombus with OneLogin, you will need:

  • A Rhombus account
  • A OneLogin account with Super User privileges

Single Sign-On, or SSO, is a way to sync sign-on across multiple applications allowing you to log in to all applications with only one user account and password.

 

OneLogin Setup

To set up Rhombus with OneLogin, use the template app provided by OneLogin such as the "SAML Test Connector (Advanced)."

1. In OneLogin, navigate to "Apps," click "Add Apps," "Find Application," then search "SAML Test Connector (Advanced)."

mceclip1.png

 

2. Select "Info," and change the Display Name to "Rhombus Systems." Enable the "Visible in portal" toggle. Click "Save."

mceclip0.png

 

3. Navigate to the "Configuration" tab. To configure the Rhombus app, fill in the following Rhombus information:

ACS (Consumer) URL https://console.rhombus.com/saml/SSO
ACS (Consumer) URL Validator https://console.rhombus.com/saml/SSO
Recipient https://console.rhombus.com/saml/SSO
Audience (EntityID) com:rhombus:saml:sp
SAML nameID format Response
Sign SLO Response Check the checkbox

 

Screen_Shot_2019-11-05_at_11.42.36_AM.png

 

4. Select "Parameters," and click "Add Parameters" to add the following values:

NameID = Email

FirstName = FirstName

LastName = LastName

mceclip1.png

 

5. Ensure the SAML signature algorithm for the Rhombus app is SHA-256.

mceclip2.png

 

6. Add users that have access to the Rhombus Console here. If you do not see a user, you can create a new user within the "Users" tab on the header bar and assign the user to the Rhombus Systems application you created. Click "Save."

mceclip3.png

 

7. Navigate back to the "Info" tab and select the "More Actions" dropdown to get the "SAML Metadata." The XML file should download in the following format: onelogin_metadata_1234567.xml

mceclip4.png

 

8. Open the XML file in a text editor of your choice and and copy the contents to prepare for the Rhombus Console setup.

 

Rhombus Console

Recovery Users

A Recovery User is a user account in your organization that bypasses SAML once enabled.

Note: We recommend having at least two Super User Accounts as Recovery Users when enabling SSO to ensure you have a method of logging in and disabling SSO in the event SAML encounters errors.

Enabling a user account as a Recovery User is done during the SSO configuration process, under "Settings" and "Single Sign-On."

  1. Click the dropdown menu below that reads "Select SSO Recovery Users."
  2. Click the checkbox beside the users you wish to set as Recover Users.
  3. Click "Save" when finished.
Screenshot 2026-03-06 at 4.44.07 PM.png

 

 

Setup

1. Navigate to "Settings" and select "Single Sign-On." 

Settings > Single Sign-On.png

 

2. Under the Single Sign-On dropdown, enable "Use Single Sign-On." Paste in the XML data from the OneLogin setup into the IDP MetaData XML box and then click "Save."

 

Helpful Links

 

Contact Support or Sales

Have more questions? Contact Rhombus Support at +1 (877) 746-6797 option 2 or support@rhombus.com.

Interested in learning more? Contact Rhombus Sales at +1 (877) 746-6797 option 1 or sales@rhombus.com.

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk