Identity Provider Integration

OneLogin

Connect TigerIdentity to OneLogin for real-time identity sync, event streaming, and context-aware access control based on authentication state.

Book a DemoView Documentation

Key Features

Real-Time Sync

Automatically sync users, groups, and roles from OneLogin within seconds of any change.

Identity Graph

Map OneLogin identities to your unified identity graph, correlating users across all systems.

SCIM Provisioning

Leverage SCIM 2.0 for bidirectional provisioning and deprovisioning workflows.

Event Streaming

Subscribe to OneLogin events for instant response to authentication and lifecycle changes.

Role Mapping

Automatically translate OneLogin roles into TigerIdentity roles and entitlements.

MFA Context

Ingest MFA verification status and authentication context for dynamic access decisions.

How It Works

1

Connect

Configure the OneLogin connector with your client credentials and region.

2

Sync

TigerIdentity performs an initial sync of users, roles, and application assignments.

3

Stream Events

Subscribe to OneLogin events for real-time updates on authentication and lifecycle changes.

Configuration Example

connector:
  type: onelogin
  name: "onelogin-production"

  config:
    region: "us"
    client_id: "${ONELOGIN_CLIENT_ID}"
    client_secret: "${ONELOGIN_CLIENT_SECRET}"

  sync:
    users: true
    groups: true
    roles: true
    applications: true

  events:
    - user.login
    - user.logout
    - user.created
    - user.updated
    - role.assigned
    - role.removed

  mapping:
    user_attributes:
      - onelogin: email
        tiger: email
      - onelogin: department
        tiger: department
      - onelogin: manager_ad_id
        tiger: reports_to

Use Cases

Workforce Identity Source

Use OneLogin as your primary identity source for employees, syncing org structure and role assignments.

MFA-Based Policies

Create access policies that require MFA verification from OneLogin before granting high-privilege access.

Just-In-Time Provisioning

Automatically provision access to downstream systems when users are assigned roles in OneLogin.

Session Revocation

Instantly revoke all active sessions across your stack when OneLogin sessions are terminated.

Ready to connect OneLogin?

See how TigerIdentity integrates with your OneLogin environment in a personalized demo.

Schedule Your Demo