※We recommend that SSO be set up be performed by someone from the security or IT teams within your organization.
We recommend that you complete the SSO set up on Unipos before registering members on Unipos. Because before and after setting up SSO, the login method and the information in the invitation email will change.
Please see the page below before setting up SSO.
This section explains how to set up SSO in Okta.
There are 8 steps in setting up SSO on Okta.
1. Click "Add Apps" on the OneLogin menu
Please log into an account with the admin authority.
From the menu at the top of the screen, click "APPS" > "Add Apps".
2. Search and click the connector
Search "SAML Test Connector (IdP w/attr)" and choose the displayed connector.
3. Register the display name for the app
Set an optional display name and icon.
※The display name does not necessarily have to be "unipos".
The Unipos logo can be downloaded below.
https://unipos.me/ja/guideline
Then, click "SAVE" in the upper right corner of the screen.
4. Enter the required information of Unipos to the Configuration page on OneLogin
Return to the connector settings screen on OneLogin and choose "Configuration" on the menu.
Please refer to the chart below and enter the required information.
For the SSO information of Unipos, please comfirm from Team Admin > Security > SSO Settings.
OneLogin | Required information |
Audience | Entity ID(the SSO information of Unipos) |
Recipient | URL for ACS(the SSO information of Unipos) |
ACS(Consumer)URL Validator |
Regular expression URL for ACS ex) URL for ACS: https://unipos.me/a/saml/acs/xxxx Regular expression URL for ACS: ^https:Wunipos.meVaVsamlVacsVxxxx$ |
ACS(Consumer)URL | URL for ACS(the SSO information of Unipos) |
Then, click "SAVE" in the upper right corner of the screen.
5. Enter the SSO information of OneLogin to the SSO settings page on Unipos
Click on "SSO" at the top of the OneLogin screen.
Using a different tab, open the Team Admin > Security > SSO Settings page on Unipos and click "Set ID Provider".
“ID Provider" is displayed.
Please refer to the chart below and enter OneLogin's SSO information in the "ID Provider" field of Unipos.
Then, click “Save.”
OneLogin | Unipos |
Issuer URL | Entity ID |
SAML 2.0 Endpoint (HTTP) | URL for Single Sign-On |
X.509 Certificate | Certificate (Base64-encoded) |
※Please follow the steps below to enter “Certificate (Base64-encoded)”.
-
Click on the SSO tab on OneLogin > "View Details" (marked in red).
- Click on the "X.509 Certificate" copy icon and copy the text.
- Paste into the "Certificate (Base64 encoded)" input field in Unipos.
6. Grant access
On OneLogin, open the Access tab and register information about "Roles".
Then, click "SAVE" in the upper right corner of the screen.
7. Operation test (needs to be done by admins)
Please log out of Unipos before running the Operation test.
Log into OneLogin and Choose Unipos from the OneLogin app menu.
If you can log in to Unipos, SSO is successfully set up.
If you fail to log in, please confirm the settings and try again.
8. Add members from the Unipos Team Admin
Click “How to manage members on Unipos” to confirm how to add members.
This completes the process to set up SSO.