# OneLogin - OIDC This guide walks you through configuring OneLogin as your OIDC identity provider. You'll create an OIDC application, add the redirect URI, provide the required OIDC values in the SSO Configuration Portal, assign access, test the connection, and then enable Single Sign-On. 1. ## Create an Application Sign in to the **OneLogin Admin Console**. Go to **Applications -> Applications**. ![Open the Applications menu in the OneLogin Admin Console](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-applications-menu.png) Click **Add App**. ![Applications page in OneLogin with the Add App button highlighted](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-add-app-button.png) In the **Find Application** search box, search for **OpenId Connect (OIDC)** and select it from the results list. ![OneLogin Find Application results with OpenId Connect (OIDC) selected](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-openid-connect-app-selection.png) Add suitable application name in **Display Name** field and optionally upload an icon. Then click **Save**. ![OneLogin OIDC application form with Display Name and icon upload fields](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-openid-connect-app-details.png) 2. ## Add Redirect URI From the **SSO Configuration Portal**, copy the **Redirect URI** under **Service Provider Details**. ![SSO Configuration Portal showing the OneLogin OIDC Redirect URI](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-sso-portal-redirect-uri.png) On OneLogin, navigate to **Configuration** tab. Paste the copied URI into **Redirect URIs** section and then click **Save**. ![OneLogin Configuration tab with Redirect URIs section populated for the OIDC app](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-redirect-uri-configuration.png) 3. ## Provide OIDC Configuration On OneLogin, Navigate to **SSO** tab. Copy the **Client ID**, **Client Secret** and **Issuer URL**. ![OneLogin SSO tab showing Client ID, Client Secret, and Issuer URL](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-client-id-client-secret-and-issuer-url.png) Add these values under **Identity Provider Configuration** in the **SSO Configuration Portal**, then click **Update**. ![SSO Configuration Portal fields for OneLogin Client ID and Client Secret](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-sso-portal-client-credentials.png) ![SSO Configuration Portal showing the OneLogin Issuer URL after update](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-sso-portal-issuer-url.png) 4. ## Assign Users/Groups On OneLogin, navigate to **Users** tab and click the user you want to assign to the application. ![OneLogin Users tab with a user selected for application assignment](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-users-tab-select-user.png) Once the user page opens, navigate to **Applications** tab from the left-side menu. Then click on **+** symbol. ![OneLogin user Applications tab with the add application action](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-user-applications-add-application.png) Select the recently created OIDC application from the **Select application** dropdown and click on **Continue**. ![OneLogin application assignment dialog with the new OIDC app selected](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-user-applications-select-application.png) 5. ## Test Single Sign-On In the **SSO Configuration Portal**, click **Test Connection** to verify your configuration. **Note:** If the connection fails, you'll see an error, the reason for the error, and a way to solve that error right on the screen. 6. ## Enable Connection Once the test succeeds, click **Enable Connection** to allow assigned users to sign in with OneLogin OIDC. ![SSO Configuration Portal with Enable Connection button for OneLogin OIDC](@/assets/docs/guides/sso-integrations/onelogin-oidc/onelogin-enable-connection.png) This completes the OneLogin OIDC SSO setup for your application.