Follow

SecureLogin as Single Sign-On Provider - Add a Single Sign-On (SSO) app

Introduction

SecureLogin is an Identity as a Service cloud platform that offers a set of resources to, among other things, manage the access and (access) data of users and offer Single Sign-On. Other components of SecureLogin are 2-Factor Authentication, extended policies (similar to Multi-Factor authentication), service automation and data management.

As described in the Guide for Admins, you configure Single Sign-On with oAuth2 within the workspace. This way, you configure Azure AD as IdP for the Workspace. But you still need to sign in separately to the SSO Provider to acces your apps. This scenario is illustrated below:

 

SSO_link_2.png

 

Ideally, you would connect the SSO Provider to Azure AD. This way, you can easily add your SSO apps from the SSO Provider directly into the workspace. If you click on the Single Sign-On app in the workspace, you are redirected to the SSO Provider, which checks if you are signed in (in this case with Azure AD). As you already have signed in to Workspace 365 with Azure AD, you're granted access to the SSO Provider automatically and have one identity as a user. Then you benefit from the full Single Sign-On experience. 

 

SSO_link_1.png

 

How to configure the Single Sign-On app

SecureLogin offers the possibility to configure Azure AD as IdP with SAML. You can read more on their documentation here to set up the integration with Office 365 and/or Azure AD.

https://onesecurelogin.freshdesk.com/support/solutions/articles/17000081156-hoe-kan-ik-azure-ad-bij-securelogin-integreren-

After you created the federation/single sign-on connection with Azure AD, you can start getting the unified url of an application and create a shortcut within workspace. 

First you need to get all the widgets via the API of SecureLogin. Which is also documented here:
https://{{tenantname}}.securelogin.nu/api/documentation

I'm fetching all the widgets from SecureLogin:

https://workspace.securelogin.nu/api/v1/user/widget

The response is something like this, which is JSON:

{"data":[{"id":252706,"label":"MailChimp","reference_name":"mailchimp","image":"https:\/\/workspace.securelogin.nu\/images\/widgets\/access\/mailchimp.png","description":"Marketing Automation","settings_complete":true,"requires_browser_extension":false,"start_url":"https:\/\/workspace.securelogin.nu\/api\/v1\/user\/widget\/start\/252706","setup_url":"https:\/\/workspace.securelogin.nu\/api\/v1\/user\/widget\/setup\/252706","created_at":"2019-07-24T11:43:03.000000Z","updated_at":"2019-08-02T08:40:37.000000Z"}],"links":{"first":"https:\/\/workspace.securelogin.nu\/api\/v1\/user\/widget?page=1","last":"https:\/\/workspace.securelogin.nu\/api\/v1\/user\/widget?page=1","prev":null,"next":null},"meta":{"current_page":1,"from":1,"last_page":1,"path":"https:\/\/workspace.securelogin.nu\/api\/v1\/user\/widget","per_page":15,"to":1,"total":1}}

Now that we have listed all the applications, we need to find the "reference_name" of that specific application. In this case that would be:

"reference_name":"mailchimp"

With this value we can create the shortcut url for the workspace;

https://workspace.securelogin.nu/api/v1/user/widget/name/start/{reference_name}

We can paste the url with the correct reference_name into a shortcut in the workspace.

mceclip0.png