Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. As an administrator or account owner in the Controller UI, access the Authentication Provider tab. See Configure Authentication Using SAML for information on accessing the tab.
  2. Select SAML as the provider.
  3. In the Login URL field, enter the SAML Login URL from your OneLogin configuration. The SAML Login URL is the URL to the SSO service at the identify provider. The identity provider provides this URL to the Controller. 
    If you do not know your SAML Login URL, you can locate it in your OneLogin configuration:
    1. Log in to your OneLogin account.
    2. Click the Apps tab in the first set of tabs.
    3. Click edit next to the application for which you want to view the Login URL.
      Click the Company Apps tab in the second set of tabs if it is not already selected.
    4. Click Single Sign-on in the third set of tabs.
      The SAML Login URL is the HTTP SAML Endpoint in the Sign-on method section.
  4. In the Logout URL field in the AppDynamics form, enter the URL to which the browser should redirect when the user logs out. This is useful for redirecting the user back to the identity provider field is optional. It's used to redirect a user who logs out to an identity provider URL instead of to the AppDynamics login screen. This field is optional. For  For example, using the following logout URL redirects would redirect the user to the OneLogin application dashboard:
     
    https://app.onelogin.com/client/apps
  5. In the Certificate field in the AppDynamics form, paste the x.509 certificate from your OneLogin configuration between the BEGIN CERTIFICATE and END CERTIFICATE delimiters. Do not copy the BEGIN CERTIFICATE and END CERTIFICATE from the OneLogin x.509 certificate field.
    To find your x.509 certificate in your OneLogin configuration:
    1. Log in to your OneLogin account.
    2. Click the Security tab in the first set of tabs.
    3. Click SAML in the second set of tabs.
  6. In the Default Roles section in the AppDynamics form, select the roles to grant to new users of the SAML-enabled controller by checking the Member check box for the role. You can select multiple roles in the list. See Configure Roles for information about roles and permissions.
    The roles that you assign here will be granted to new users when they first log in to the SAML-enabled controller if those users have not been previously created directly in the Controller. Users created prior to SAML enablement retain their original roles. 
    You must grant at least one default role.
  7. Click Save.

...