- 03 Jul 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
OneLogin
- Updated on 03 Jul 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
OneLogin's unified access management platform centralizes access across on-prem and cloud environments to give full control, management, and security for data, devices, and users.
Related Enforcement Actions:
- Append to Comment - OneLogin
- Modify User State - OneLogin
- Modify User Custom Fields - OneLogin
- Modify User Status - OneLogin
- Logout User - OneLogin
- Set a New Password for User - OneLogin
Types of Assets Fetched
This adapter fetches the following types of assets:
- Users
- Application Extensions
- Roles
- Groups
- User Extensions
- SaaS Applications
Parameters
Host Name or IP Address (required) - The hostname or IP address of the OneLogin server.
Client ID and Client Secret (required) - The API credentials that have the Required Permissions to fetch assets.
SSO Provider - If your organization uses OneLogin for SSO, you can set this select this check box (selected by default). For more information, see Connecting your SSO Solution Provider.
Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
Advanced Settings
Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to Advanced Configuration for Adapters.
- Fetch Enrolled Factors (required, default: true) - Select whether to fetch users who are enrolled in a multi-factor authentication policy.
- Comma-separated custom attributes - Enter a case-sensitive comma-separated string of custom attribute fields to display in Axonius.
- Enable rate limit override settings - Toggle on to enable rate limit override settings.
- # of requests per seconds (below) - Specify the number of requests allowed within the number of seconds specified (default: 2500).
- Timeframe (seconds) for # of requests (above) - Specify the number of seconds within which the number of requests are allowed (default: 60).
- Enable ingestion of SM-related entities (only for accounts with SaaS Management capability) - By default Axonius fetches SaaS Management-related entities. Clear this option to not fetch SaaS Management-related entities.
To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.
APIs
Axonius uses the OneLogin API version 1.
Required Permissions
The value supplied in Client ID must have Read All or Manage All permission.