View the latest documentation 5.5
Groups are case-sensitive and mapped to roles, by name, with OneLogin
Integrate your user roles with Lenses using the Keycloak role names. Create a group in Lenses using the same case-sensitive role name as in OneLogin.
For example, if the Engineers role is available in OneLogin, create a group with the same name:
The above group will match all the users with the equivalent OneLogin roles:
To learn how to use data centric permissions for users and service accounts check access management permissions.
Lenses is available in the OneLogin Application catalog.
Visit OneLogin’s Administration console. Select Applications > Applications > Add App
Lenses
lenses-dev.example.com
https://
Download the Metadata XML file with the OneLogin IdP details.
security.conf
lenses.security.saml.idp.metadata.file="/path/to/OneLoginIDPMetadata.xml"
Given the downloaded metadata file and a keystore, add the following configuration to security.conf:
lenses.security.saml.base.url="https://lenses-dev.example.com" lenses.security.saml.idp.provider="onelogin" lenses.security.saml.idp.metadata.file="/path/to/OneLoginIDPMetadata.xml" lenses.security.saml.keystore.location = "/path/to/keystore.jks" lenses.security.saml.keystore.password = "my_keystore_password" lenses.security.saml.key.password = "my_saml_key_password"
See all SSO options.
On this page