> For the complete documentation index, see [llms.txt](https://docs.welkinhealth.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.welkinhealth.com/integrations/single-sign-on/onelogin-setup-and-configuration.md). # OneLogin Setup and Configuration This guide covers setting up Single Sign-On (SSO) with OneLogin for Welkin Health. > **Note:** While setting up this configuration, it helps to have two browser tabs open — one with Welkin Admin and one with OneLogin. ## Step 1: Add users in OneLogin 1. Log in to your OneLogin account 2. Click **Administration → Users** in the left menu 3. Click **New User** and fill in the required fields 4. The email must match the Welkin user's email address ## Step 2: Create a SAML application in OneLogin 1. Go to **Applications → Applications** and click **Add App** 2. Search for **SAML Custom Connector (Advanced)** and select it 3. Fill in the application name 4. Save ## Step 3: Configure the SAML connector In the **Configuration** tab, fill in the following fields using the values from **Welkin Admin → Security Settings → Single Sign-On → OneLogin → Instructions**: | Field | Value | | ---------------------------- | --------------------------------------- | | Audience (EntityID) | Copy from Welkin Admin SSO instructions | | ACS (Consumer) URL Validator | Copy from Welkin Admin SSO instructions | | ACS (Consumer) URL | Copy from Welkin Admin SSO instructions | Your URLs will differ depending on your organization name. ## Step 4: Add email attribute parameter In the **Parameters** tab: 1. Click **Add parameter → Field Name** 2. Set **Field Name** to: `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress` 3. Set **Value** to: `Email` 4. Check **Include in SAML Assertion** 5. Click **Save** ## Step 5: Copy IdP metadata to Welkin 1. In the OneLogin application's **SSO** tab, copy the **Issuer URL** 2. In Welkin Admin → Security Settings → Single Sign-On, paste the Issuer URL into the **Metadata URL** field ## Step 6: Activate SSO * In Welkin Admin → Security Settings, set Single Sign-On status to **Active** * In the user's profile in Welkin Admin, set Security to **Active** for Single Sign-On for each user using OneLogin * In OneLogin, make sure the user has been granted authorization to use the application *** More Questions? Contact or your Implementation/CSM directly. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.welkinhealth.com/integrations/single-sign-on/onelogin-setup-and-configuration.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.