# OneLogin SSO Setup This document lists the steps to follow in order to configure and enable SSO for your organization with OneLogin. [![Plan: Enterprise](https://img.shields.io/static/v1?label=PLAN\&message=ENTERPRISE\&color=blueviolet\&style=for-the-badge)](https://rudderstack.com/enterprise-quote) ## Configuring SSO * Navigate to your OneLogin administration page after logging in: ![](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-4014bb087cff4d0a74777f92ffe653297f2f2d69%2F1%20\(11\).png?alt=media) OneLogin Administration Page * From the top menu, choose **Applications** - **Applications**, as shown: ![Application Tab in OneLogin](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-07bc87f8600619b6b974af5b6d92f891372be6a8%2F2%20\(6\).png?alt=media) Application Tab in OneLogin * Click the **Add App** button in the top-right hand corner, as shown: ![Add App Option in OneLogin](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-b51d8d86aaf268ec9808680f111c08b128c3bc56%2F3%20\(2\)%20\(1\).png?alt=media) Add App Option in OneLogin * Search and select **RudderStack**. ![Search and select RudderStack](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-807a866e520ce8b9837b4f72de5f44277ae9efac%2Fimage%20\(58\).png?alt=media) * Then, click the **Save** button in the top-right corner, as shown: ![Save in the top right corner](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-73aec09d7907fc64e534df7b8c863e85f203e1ba%2F4%20\(4\).png?alt=media) * Choose **Configuration** from the menu on the left, as shown: ![Configuration Menu](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-47e2e266258846da4a7994c430dec1ba6eb4f74d%2Fimage%20\(32\).png?alt=media) Configuration Menu * Provide a login URL in the following format:**`https://auth.rudderstack.com/v1/start_sso?domain=example.com`** . Here, replace **`example.com`** with the domain you use for your employee email addresses. For example, if your employee email address is **`john@mywebsite.com`**, enter **`mywebsite.com`**. * Click on **Save** in the top right corner as shown above. * Then, click on the **SSO** option in the menu on the left. This **SSO** section contains information which you will be required to share with us so that we can enable the SSO for your organization. * Retrieve the contents of the following two data fields: * **Issuer URL** * **SAML 2.0 Endpoint (HTTP)** * Now, look for the field **X.509 Certificate** and click on **View Details** underneath, as shown: ![X.509 Certificate Option](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-5b85b1a7c2f0cc275597d59ece6a140aceb2da3c%2Fimage%20\(35\).png?alt=media) X.509 Certificate Option * Retrieve the certificate by clicking on **Download**. It should start with **`-----BEGIN CERTIFICATE-----`** and end with **`-----END CERTIFICATE-----`** , as shown: ![Download](https://876606571-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Lq5Ea6fHVg3dSxMCgyQ%2Fuploads%2Fgit-blob-247500a32b828015cbcaaf53a0ac5ad94101c48b%2F5%20\(8\)%20\(1\)%20\(1\).png?alt=media) * Please share the **Issuer URL**, **SAML 2.0 Endpoint (HTTP)** and **X.509 Certificate** with us. We will then enable SSO for your organization and get back to you. ## Contact Us If you need more clarity in following any of the steps in the guide, please feel free to [contact us](mailto:docs@rudderstack.com) or start a conversation in our [Slack](https://rudderstack.com/join-rudderstack-slack-community) community. We will be happy to help you.