Fortinet black logo

Administration Guide

Home Lacework FortiCNAPP Administration Guide

OneLogin SAML SSO

OneLogin SAML SSO

This topic describes how to configure SAML SSO with OneLogin to allow employee access to your Lacework FortiCNAPP Console.

In your OneLogin account, complete the following steps:

  1. Sign in to OneLogin with super user privileges.
  2. Go to Applications > Applications.
  3. Click Add App and search for Lacework FortiCNAPP.
  4. Click the Lacework FortiCNAPP app.
  5. Provide a display name and description and click Save.
    The app’s settings display in the right pane.
  6. Click Configuration.
  7. Provide your Lacework FortiCNAPP account name and click Save. You can find your account name in the URL you use to access the Lacework FortiCNAPP Console. For example, if your Lacework FortiCNAPP URL is mycompany.lacework.net, your account name is mycompany.
  8. Go to More Actions > SAML Metadata.
    This downloads the IdP metadata, which is required to complete the setup in the Lacework FortiCNAPP Console.
  9. In a separate browser tab or window, sign in to the Lacework FortiCNAPP Console. On the Lacework FortiCNAPP SAML configuration page (see SAML Configuration), upload the IdP metadata returned from step 8.

To enable JIT user provisioning, see OneLogin SAML JIT.

Previous
Next

OneLogin SAML SSO

OneLogin SAML SSO

This topic describes how to configure SAML SSO with OneLogin to allow employee access to your Lacework FortiCNAPP Console.

In your OneLogin account, complete the following steps:

  1. Sign in to OneLogin with super user privileges.
  2. Go to Applications > Applications.
  3. Click Add App and search for Lacework FortiCNAPP.
  4. Click the Lacework FortiCNAPP app.
  5. Provide a display name and description and click Save.
    The app’s settings display in the right pane.
  6. Click Configuration.
  7. Provide your Lacework FortiCNAPP account name and click Save. You can find your account name in the URL you use to access the Lacework FortiCNAPP Console. For example, if your Lacework FortiCNAPP URL is mycompany.lacework.net, your account name is mycompany.
  8. Go to More Actions > SAML Metadata.
    This downloads the IdP metadata, which is required to complete the setup in the Lacework FortiCNAPP Console.
  9. In a separate browser tab or window, sign in to the Lacework FortiCNAPP Console. On the Lacework FortiCNAPP SAML configuration page (see SAML Configuration), upload the IdP metadata returned from step 8.

To enable JIT user provisioning, see OneLogin SAML JIT.

Previous
Next