Splashtop now supports logging in to your Gateway and Splashtop On-Prem app using the credentials created by your SAML 2.0 identity providers. Please follow the below instructions to create an app from OneLogin (https://app.onelogin.com/login).
Create an app on OneLogin console
1. After logging in to the OneLogin console using your OneLogin domain and account.
2. Click Administration to go to your admin console.
3. Go to Applications / Applications to click Add app button.
4. Search for SAML Custom Connector (Advanced) then click the app to add.
5. Enter Display Name, then click Save to add to your Application list.
6. Click to open the newly-created app, then go to Configuration tab to enter Audience (EntityID), Recipient, ACS (Consumer) URL Validator and ACS (Consumer) URL, then click Save.
- Audience (EntityID): onpremise.splashtop.com (Copy Entity ID in Add SSO Method from your Gateway).
- Recipient & ACS (Consumer) URL Validator &ACS (Consumer) URL: https://[Gateway Address]/api/saml/acs (Copy Assertion consumer service URL in Add SSO Method from your Gateway).
7. Done.
Assign users to the created app
1. On the Admin console, go to Users / Users.
2. Click on the user you would like to add to the app.
3. On the user profile, go to Application tab to click "+" button.
4. Click on the dropdown list, select the app you just added. Then Continue.
5. Click Save. Please note the NameID value needs to be an email address.
6. Done.
Apply for an SSO method from your Gateway
1. Go to your Gateway/management/Team Settings/Authentication/Single Sign-On tab to click Add SSO method. Select OneLogin as the IDP Type.
2. Insert the info accordingly from the app created above.
3. For X.509 certificate. By clicking View Details, click the copy icon to copy X.509 info then past it to the field on your Gateway.
4. In addition to manually entering IDP information, Gateway also supports importing IDP information via URL and XML.