Authentication Setup

OneLogin Configuration

The OvalEdge OneLogin Configuration is a single authentication window. This is an identity management platform that provides a secure workplace for customers and partners. The OvalEdge OneLogin Configuration handles web applications that do not support storing usernames and passwords for multiple applications. This enables enterprises to provide their users with Secure Single Sign-on(SSO) for all web applications.

To register and access the OvalEdge OneLogin configuration portal, please follow the below steps.

  1. Register on the OneLogin page by providing the Business Email ID and accepting the license agreement.
    1-Apr-07-2022-10-40-33-18-AM
  2. Once after providing the required details, the To Sign in page is displayed. 
    log in-1
  3. Click on Continue button, the OneLogin page is displayed.
    Administration-1
  4. Click on Administration; the User page is displayed.
    pasted image 0 (4)-2
    1-3
  5. Go to the Applications and in the search bar, enter SAML and select SAML Custom Connector (Advanced) option. The Info page is displayed.
    3-Apr-07-2022-12-45-55-85-PM
  6. In the Info page-
    1. Enter the Display Name as SAML Custom Connector, Tab as OvalEdge, and insert an image for the regular icon and rectangular icon. Also write some descriptions, which must not exceed 200 characters, and also add notes if anything is there.
    2. Click on the Save button, the Configuration page is displayed.
      4-Apr-07-2022-12-50-58-88-PM
    3. Enter https://<DNS-IP> followed by /ovaledge/saml/metadata for Audience.
    4. Enter https://<DNS-IP> followed by /ovaledge/saml/SSO for recipient.
    5. For ACS (Consumer) URL Validator, enter ^https:\/\/<DNS-IP>\/ovaledge\/saml\/SSO$. Please set this with Regular Expression.
    6. Enter https://<DNS-IP>/ovaledge/saml/SSO for ACS (Consumer) URL.In the Configuration page
    7. After entering all the above mentioned details, click on the Save button. The entered data is saved and the Parameter page is displayed.
      3-1

    8. Click on the ‘+’ sign to add the below details.

      Note: Ensure that the “configured by admin” option is checked for credentials.

      In the Parameters page:

    9. Adding Email- For Field Name, Enter Email, and then click on save. For the value, search email in the search bar and select email. Click on save to save the data.
      Note: Ensure to enable the ‘Include in SAML assertion’ option for Flags.

    10. Follow the above step to add First Name, Last Name, Member of attributes.
      Note: Set the value as User role for Member of the attribute. For other options, Field Name and value will be the same.

    11. Click on the Save button, the entered data is saved and the SSO page is displayed.

      4-1

      5

  7. In the SSO page, go to  more actions, right click on SAML Metadata and click on Copy Link Address. This URL serves as SAML Metadata. Paste it into the oasis.properties file located under Apache Tomcat’s webapp/ovaledge/WEB-INF/classes folder or in an external folder, created.
    6
    7
  8. Go to the Tomcat’s bin folder, Edit the setenv.bat file or Create it if not existing. set CATALINA_OPS=”-DOVALEDGE_SECURITY_TYPE=saml”.
    8
    9

  9. Restart the tomcat.
  10. Once the server is up, Go to Browser and Enter the web application URL. For example, https://<DNS-IP>:<PORT>/ovaledge. The login page is displayed.
    11-1
  11. Click on Login; the credentials page is displayed.
    12
  12. Enter your Username, which you have registered for OneLogin Account. As no user is assigned to this application, an access denied window will appear after logging in.
    Access Denied-1
  13. Create roles, Groups, and Users and assign the created SAML application.
    1. Creating a new role- Place the cursor on the User and click on the role. Click on New Role.
      Roles
    2. Add the title on the bar present below Roles. Eg: OE_Admin, OE_Public. Then click on save for saving the new roles.
      19
    3. Under Users Click on Groups, the Groups page is displayed.
      13
    4. Click on New Group to create groups. Please create two types of groups, eg: OE_Admin, and OE_Public. Then click on Save.
      14

    5. Under Users Click on mapping, the Mapping page is displayed. Add new mapping for the admin role.
      15
    6. Click on the Save button to save the new mapping created for the admin role.
    7. Also, add mapping for public roles and click on the Save button.
      20
    8. Click on a new user, to create users, the Create User page is displayed.
    9. Click on New User. Enter the First Name, Last Name, Email, and Username.
      17
    10. After entering all the required information, click on the Save button and click on Authentication. The authentication window is displayed.
    11. In the authentication window, select the created group.
      pasted image 0
  14. Click on Application, the application page is displayed. Assign a role and click on save.
    24
  15. Log in to the application. The created user authorized with the Admin role is authenticated into the application.
    26