help

Book a demo
Sign in
English

help

help

Integrations

>

OneLogin SAML SSO Setup for Yoffix

Configure OneLogin SAML SSO for Yoffix

Table of Contents

Yoffix supports Single Sign-On (SSO) via OneLogin using SAML 2.0.

This allows users to authenticate with their OneLogin credentials when accessing Yoffix, ensuring centralized identity management and secure access control.

For other supported SSO providers please see the dedicated pages

All SSO settings in Yoffix are available under:

Settings → SSO

How to Set Up OneLogin SAML SSO

Step 1: Log in to OneLogin Admin Dashboard

Go to:
https://<yourdomain>.onelogin.com/portal

Click Administration in the top right corner.

OneLogin Saml Instruction image 1

Step 2: Create a SAML 2.0 Application

Navigate to Applications and click Add App

OneLogin Saml Instruction image 2-1

Search for SAML and select SAML Custom Connector (Advanced)

OneLogin Saml Instruction image 2-2

Enter Yoffix as the Display Name and click Save.

OneLogin Saml Instruction image 2-3

Step 3: Configure SAML Settings

Go to the Configuration tab and enter:

  • Audience (EntityID):
    https://api.app.yoffix.com/sso/saml/metadata

  • Recipient:
    https://api.app.yoffix.com/sso/saml/metadata

  • ACS (Consumer) URL Validator:
    https://api.app.yoffix.com/sso/saml/assert

  • ACS (Consumer) URL:
    https://api.app.yoffix.com/sso/saml/assert

OneLogin Saml Instruction image 2-4

Additional settings:

  • SAML Initiator: Service Provider

  • SAML NameID Format: Email

Leave all other fields at their default values.

Click Save.

OneLogin Saml Instruction image 2-5

Step 4: Configure Parameters

Go to the Parameters tab

OneLogin Saml Instruction image 2-6

Click “+” and add the following parameters:

  • Name: email
    Value: Email
    ✔ Check “Include in SAML assertion”

OneLogin Saml Instruction image 2-7

  • Name: first_name
    Value: First Name
    ✔ Check “Include in SAML assertion”

OneLogin Saml Instruction image 2-8

  • Name: last_name
    Value: Last Name
    ✔ Check “Include in SAML assertion”

Parameter names are case sensitive.

OneLogin Saml Instruction image 2-9

Step 5: Assign Users or Groups

  1. Go to the Users tab

  2. Ensure all users or groups who should use SSO are assigned to the Yoffix application

Only assigned users will be able to authenticate via OneLogin SSO.

OneLogin Saml Instruction image 3

Step 6: Retrieve Metadata

  • Go to the SSO tab

  • Locate the SAML 2.0 Endpoint (HTTP)

OneLogin Saml Instruction image 4-1

  • Click View Details under X.509 Certificate to download or view the certificate

OneLogin Saml Instruction image 4-2

Configure OneLogin SSO in Yoffix

  1. Go to Settings → SSO in Yoffix

  2. Select SAML

  3. Enter:

  • SSO URL (SAML 2.0 Endpoint from OneLogin)

  • X.509 Certificate

You can configure up to 10 allowed email domains.

Example:
If your company email format is name@yourorgdomain.com, add:

yourorgdomain.com

Only users with configured domains will be allowed to authenticate via OneLogin SSO.

If you're still experiencing issues, contact Yoffix support at support@yoffix.com — our team will assist you.