Setup Malwarebytes cloud platform single sign-on with OneLogin

Document created by jgolomb Employee on Feb 12, 2019Last modified by bgoddard on Sep 23, 2019
Version 12Show Document
  • View in full screen mode

The following instructions assist the Identity Provider administrator with the setup of single sign-on (SSO) for Malwarebytes Administrators into the Malwarebytes Cloud portal using Microsoft OneLogin. Malwarebytes Cloud  supports the SAML 2.0 authentication protocol.

 

Get started

Note: The email address used for accessing your Malwarebytes Cloud account must match the email address used for OneLogin.

  1. Log in to your Malwarebytes cloud console with administrator credentials.

  2. Go to Settings > Single Sign-On.

  3. Log in to OneLogin with administrator credentials.

  4. Ensure your environment meets the minimum operating system and external access requirements. Refer to Malwarebytes Cloud Console Administrator Guide  for details.

 

Add a new application in OneLogin

  1. In the OneLogin portal, click ADD APP.
    Image of Add App button in OneLogin website.

  2. In the Find Applications search bar, enter "SAML Test Connector (IdP) w/ attr w/ sign response".
    Image of Find Applications search bar and results in OneLogin website.

  3. Assign a name to the application. For example: Malwarebytes Cloud Portal.
    Image of OneLogin Configuration page to create a Display Name for newly added app.

  4. In the Configuration tab, enter the following values taken from the Malwarebytes Cloud Single Sign-On page:

    • SAML Consumer URL: Copy your Assertion Consumer Service URL from the Malwarebytes Cloud Single Sign-On page.
    • SAML Audience: Leave this field blank.
    • SAML Recipient: Leave this field blank.
    • SAML Single Logout URL: Leave this field blank.
    • ACS URL Validator: Copy your Assertion Consumer Service URL from the Malwarebytes Cloud Single Sign-On page.

  5. Click the Parameters tab > Add parameter.
    Image of OneLogin Parameters tab to Add parameter.

  6. Fill or check the following values:
    • Name: email
      Note: "email" must be entered in lowercase. 
    • Value: Email
    • Flags: Check Include in SAML assertion


  7. Click SAVE.

  8. On the Parameters tab, click SAVE to save the application configuration.
    Image of Save button in the OneLogin Parameters tab.

  9. Click MORE ACTIONS > SAML Metadata to download the OneLogin metadata XML file.
    Image of More Actions drop down menu in OneLogin website.

  10. Return to the Malwarebytes Cloud > Single Sign-On page.

  11. Perform one of the following:
    • Drag the OneLogin metadata XML file to the Upload New Metadata XML square.
      or
    • Click Choose a Different File to locate the metadata XML file path.

  12. Click APPLY.
    Image of Upload New Metadata XML menu in Malwarebytes Cloud Portal.

  13. Toggle Enable Sign Sign-On (SSO) to On and click SAVE.

 

Additional information

Attachments

    Outcomes