Note: This guide provides a general idea of what the SSO connection process involves, but should not be used as a step-by-step guide for configuring your SSO. To set up SSO with Spekit, you'll need to go to the 'Connect' page within your Spekit Web App.
1) Create OneLogin Application
Log in to the OneLogin admin dashboard and select the "Applications" tab at the top. Select "Add App".
Search for "SCIM" in the text field and select the Application named "SCIM Provisioner with SAML (SCIM V2 Enterprise)".
Give your Application a descriptive Display Name such as Spekit SCIM and hit "Save".
2) Configure OneLogin SCIM
Within the SCIM Application you just created, select the "Configuration" tab on the left. Copy/Paste the API credentials from your Spekit In-App walkthrough and place them into the corresponding boxes.
Select the "Provisioning" tab on the left. Ensure that both dropdowns are set to "Suspend". Check the "Enable provisioning" box and hit "Save".
Select the "Parameters" tab on the left. Then select "Groups".
In the modal that pops up, check the box next to "Include in User Provisioning" and hit "Save".
3) Assign Users to your Spekit SCIM Application
In order for your users and groups to be synced into Spekit, you will need to assign them to this Spekit SCIM Application. Select "Users" from the top navigation menu. Next, find a user you'd like to provision to the SCIM app. Within that user profile, select the "Applications" tab on the left. Then, click the "+" symbol.
Select the appropriate app and hit "Continue".
Select "Save" in the next modal to confirm the change.
4) Assign Groups to Spekit
NOTE: There are many ways to provision groups in OneLogin. Below is one method that we recommend, but other methods can be used.
In the top navigation, Select "Users" and then "Roles" from the dropdown. Select "New Role".
Give the Role a name (this will be the name of the group), select the appropriate SCIM application, and hit "Save".
Click the "Users" tab for the role. Search for any users you'd like to assign to that role and hit "Add To Role". Then hit "Save".
Click "Save" in the next modal to confirm.
Navigate back to your SCIM app and click on the "Rules" tab on the left. Then, hit "Add Rule".
Give your Rule a name. Under "Actions", select "Set Groups in Spekit SCIM". Then, set it to "For each role with value that matches your-role-name". Hit "Save".
Within your SCIM app under the Users tab, you may then need to click on any "Pending" notifications to confirm the update for users.