# OneLogin SAML ## Steps 1. Go to the Secoda app > Settings > Security > SAML. Copy the **ACS URL** and **Entity ID** for use in the following steps.

2. In the OneLogin console go to **Applications > Add App** and search for "SAML Custom Connector (Advanced)" and select the option. 3. Name the app `Secoda` and click **Save.** 4. In the Configuration tab set the **Audience** to the **Entity ID (Identifier)** from Step 1. Set the **Recipient**, and **ACS (Consumer)** paths to the **ACS URL** from Step 1.

Configuration tab values. *These values are an example, do not copy these values.*

5. Go to the **Parameters** tab and add a new parameter by clicking the **+** button. Add the `email`, \` `firstName`, and `lastName` parameters.

*Check "Include in SAML assertion" for all of these parameters*

*The Parameters page after completing the step*

6. Check **Both** for the SAML signature element field.

7. Change the SAML Signature Algorithm to **SHA-256**. Then save all of your changes. Copy the **Issuer URL** and submit that at Secoda app > Settings > Security > SAML as the **Metadata URL** with IdP Provider set to **Generic**. Save this configuration.

You will now be able to go to navigate to Secoda, click “Sign in with SAML”, and enter your domain to complete sign-in.