Configure OneLogin federated authentication for Arctic Wolf web portals

You can configure OneLogin® as a Federated Identity Management (FIM) source for Arctic Wolf® web portals.

These resources are required:

  • Administrator permissions for the Arctic Wolf Unified Portal.

    You must be a primary or secondary contact. If you require this level of access, submit your request to a primary or secondary contact in your organization.

  • An OIDC-enabled application that uses the Implicit or Authentication (Basic) flow

These actions are required:

  • Allowlist all necessary IP addresses. To see the IP addresses that you must allowlist, sign in to the Arctic Wolf Unified Portal, click Resources > Allowlist Requirements, and then view the IP addresses in the section for your product.

Add the OIDC application

  1. Sign in to the OneLogin portal.
  2. Click Applications.
  3. Select OpenId Connect (OIDC).

Configure the application

  1. Click Configuration.
  2. In Application details section, configure these settings:
    • Login Url — Enter https://dashboard.arcticwolf.com.
    • Redirect URI’s — Enter https://auth.arcticwolf.com/login/callback.
  3. Click Parameters.
  4. In the Credentials are section, select Configured by admin.

Configure SSO

  1. Click SSO.
  2. In the Application Type list, select Web.
  3. In the Token Endpoint list, select Basic.
  4. Copy the Client ID, Client secret, and Issuer URL values in a safe, encrypted location. You will provide them to Arctic Wolf later.
  5. Click Save.

Register your IdP with Arctic Wolf

  1. Sign in to the Arctic Wolf Unified Portal.
  2. In the navigation menu, click Organization Profile > Federated Authentication.
  3. Click Submit New Credentials .
  4. Configure these settings:
    • Account Name — Enter a unique and descriptive name for the account. For example, OneLogin ODIC Connector.
    • Issuer URL — Enter the IdP Issuer URL.
    • Client ID — Enter the IdP-issued client ID.
    • Client Secret — Enter the IdP-issued client secret.
    • Domain Name — Enter your company email domain name.
    • Credential Expiry — (Optional) Enter the credential expiration date, if applicable.
  5. Click Submit Credentials.
  6. To apply the configuration:
    1. When prompted to sign out of the Unified Portal, click Confirm and Logout.
    2. Sign in to the Unified Portal through your identity provider (IdP).