Configure SAML SSO
This document contains procedures to configure SAML SSO with OneLogin and allow it to facilitate employee access to your Lacework Console.
In your OneLogin account, complete the following steps:
- Sign in to OneLogin with super user privileges.
- Go to Applications > Applications.
- Click Add App and search for Lacework.
- Click the Lacework app.
- Provide a display name and description and click Save.
The app’s settings display in the right pane. - Click Configuration.
- Provide your Lacework account name and click Save. You can find your account name in the URL you use to access the Lacework Console. For example, if your Lacework URL is
mycompany.lacework.net
, your account name ismycompany
. If your URL ismycompany.fra.lacework.net
, your account name ismycompany.fra
. - Go to More Actions > SAML Metadata.
This downloads the IDP metadata, which is required to complete the setup in the Lacework Console. - In a separate browser tab or window, sign in to the Lacework Console.
On the Lacework SAML configuration page (see SAML Configuration), upload the IdP metadata returned from step 8.
To enable JIT user provisioning, see Configure SAML JIT.