Explore  

This article discusses functionality that is included in the Aha! Knowledge Advanced plan. Please contact us if you would like a live demo or want to try using it in your account.

Support / Aha! Roadmaps | Knowledge base SSO | OneLogin (Aha! Knowledge Advanced)

OneLogin single sign-on makes it easy for your organization to access the documentation they need — without having to remember another user name and password.

Click any of the following links to skip ahead:

How it works

When a user navigates to the knowledge base, they will be presented with the option to authenticate to the knowledge base via SSO only. If they are already logged in to the SSO provider, they will automatically be logged in to your knowledge base without any additional actions.

Top

Add the app in OneLogin

  1. Go to Add App and search for SAML Test Connector (IdP w/attr).

  2. Select SAML Test Connector (IdP w/attr) and save the configuration.

  3. Go to the SSO tab, where you'll need to copy the URL for the SAML 2.0 Endpoint (HTTP).

  4. On the SSO tab, click on View Details which appears under the X.509 Certificate field. On this page, copy the SHA Fingerprint string.

  5. You will need both the SAML 2.0 Endpoint and SHA Fingerprint to enable SSO for your knowledge base.

Top

Enable SSO for your knowledge base

  1. To enable OneLogin SSO in your knowledge base:

  2. Navigate to Settings ⚙️ Account Knowledge Knowledge bases. You will need to be an administrator with customizations permissions to configure a knowledge base.

  3. Click the knowledge base you want to configure. This opens that knowledge base's settings.

  4. On the Overview tab, find the Access settings. Next to the Authentication dropdown, select SSO.

  5. In the SSO identity provider dropdown, select +Add new provider.

    If you already have SSO set up for an ideas portal and would like to share that SSO configuration with your knowledge base, you can select the existing provider you have already set up during this step and skip adding a new one.

  6. On the next screen, enter a Name to identify the SSO configuration. Next to Type, select SAML. Click Save.

  7. The SAML 2.0 configuration will display.

  8. Select Manual Settings from Settings using.

  9. Paste the SAML 2.0 Endpoint link from OneLogin into the Aha! Roadmaps Single sign-On endpoint field.

  10. Paste the SHA Fingerprint field from OneLogin into the Certificate Fingerprint field in Aha! Roadmaps.

  11. Click Enable SSO to enable the configuration.

Top

Complete configuration in OneLogin

  1. In OneLogin, paste the SAML consumer URL into the ACS (Consumer) URL field. You can copy it from the Aha! knowledge base SSO settings by navigating to Settings ⚙️ Account Knowledge Single sign-on and selecting the OneLogin configuration. The SAML consumer URL should contain saml_callback.

  2. (Optional) If you have chosen to define the Audience in OneLogin, paste the SAML entity ID from Aha! Roadmaps into that field. You will find it in your Aha! account's single sign-on configuration for OneLogin.

Top

Troubleshooting

We have created an article to help you troubleshoot common SSO configuration issues, complete with explanations and resolutions.

The best place to start in most of these situations is the Recent SSO events for your SSO configuration, at the bottom of the configuration page. Those messages will help diagnose and solve the problem.

It is possible to invite an ideas portal user from your ideas portal settings who has not been configured with the identity provider your portal is using. The user will not be able to log in to the ideas portal until they can be authenticated by the identity provider.

Top

If you get stuck, please reach out to our Customer Success team. Our team is made up entirely of product experts and responds fast.

Suite overview
Aha! Roadmaps
    Overview