Setting up Single Sign-On with OneLogin

To enable and configure the OneLogin Single Sign-On (SSO) feature, you will need three things:

  1. A Files.com plan that supports the OneLogin SSO feature
  2. Administrator access to your Files.com site
  3. Administrator access to your OneLogin account

Adding Files.com in OneLogin

After logging in to your OneLogin account as an administrator, navigate to Applications, click the Add App button, and click SAML Test Connector (IdP w/ attr w/ sign response).

Enter Files.com for the Display Name, and click Save.

Click Configuration in the left pane, and enter the following values:

RelayState SUBDOMAIN.files.com
(replace SUBDOMAIN with your Files.com subdomain)
Audience https://app.files.com/saml/metadata
Recipient https://app.files.com/saml/consume
ACS (Consumer) URL Validator ^https:\/\/app\.files\.com\/saml\/consume$
ACS (Consumer) URL https://app.files.com/saml/consume

Click Save at the top right to save these changes.

Next, click SSO and click View Details under X.509 Certificate.

Change SHA Fingerprint from SHA1 to SHA256 and click Save.

Lastly, copy the SHA256 fingerprint, Issuer URL, SAML 2.0 Endpoint (HTTP), and SLO Endpoint (HTTP) so you can enter these when adding OneLogin in Files.com.

Adding OneLogin in Files.com

After logging in to your Files.com account as an administrator, navigate to Settings > Security > SSO Providers, and click the Add provider button. Click to select the OneLogin provider.

In the Add provider form, leave the Metadata URL field empty, and enter the following values copied from OneLogin:

  1. Enter the SHA256 fingerprint from OneLogin into the SHA256 certificate fingerprint field.
  2. Enter the Issuer URL from OneLogin into the Issuer URL field.
  3. Enter the SAML 2.0 Endpoint (HTTP) from OneLogin into the SSO endpoint field.
  4. Enter the SLO Endpoint (HTTP) from OneLogin into the SLO endpoint field.

Lastly, click the Save button to apply the change.

The OneLogin SSO method will now be available when assigning an authentication method for a user in Files.com, and the Sign in with OneLogin button will be displayed on your site’s login page.