Skip to main content

Configure OneLogin

The OneLogin app is a cloud-based identity and access management provider that develops a unified access management platform for enterprise-level businesses and organizations. You can integrate Compromised Credential Management (CCM) with OneLogin to gain actionable threat insights on compromised credentials.

Create a OneLogin Instance

You can create a OneLogin instance to gather insights on compromised credentials by flagging those at risk for remediation.

Before you Start

Ensure that you have the Client ID and Client Secret to authenticate with OneLogin.

Steps

To create a OneLogin instance, follow these steps:

  1. Access DRP and click Manage Apps.

  2. From the App Store, choose OneLogin and click Install.

  3. After installing the app, create an instance by clicking on Configure.

  4. To add an instance, use the following information:

    • Instance Name (Required): Enter a unique name for the OneLogin instance. 

    • Instance Description: Enter the description for the instance.

    • Expiry: Choose the expiration period for the instance. After the expiration period, the app stops working. 

    • Set as default instance: Select this to set this instance as the default instance to gather threat insights using this app. By default, this is not selected.

      Note

      If there are no existing instances, then the instance you create will be added as the default instance.

    • Base URL (Required): Enter the base URL to access OneLogin.

    • Client ID (Required): Enter the client ID of the OneLogin account.

    • Client Secret (Required): Enter the client secret of the OneLogin account.

    • Timeout: Enter the timeout value in seconds. This is the number of seconds that requests will wait to establish a connection with OneLogin. The allowed range is 15-120. By default, the timeout value is set to 15.

    • Verify: Select this to verify SSL or TLS when making requests. It is recommended to enable this option. Not selecting it may lead to connection issues. By default, verification is enabled.

  5. To save the configuration and add the instance, click Add Instance.

After you add the instance, it monitors your company’s credentials and flags any credentials that remain compromised, enabling you to take quick action.

Supported Action

The following action is supported within the OneLogin app to gain threat insights:

Action Name

Description

Get Multiple User Details

This action retrieves the details of multiple users.

View Threat Insights

After adding a OneLogin instance, you can access Threat Insights on the Dashboard to correlate compromised credentials with user accounts, identify high-risk accounts, and prioritize actions effectively. For more information, see View Threat Insights.