Connect OneLogin to Anzenna
Integrate Anzenna with OneLogin to monitor user authentication, application access, and identity management events.
Prerequisites
- OneLogin administrator access
- Anzenna account
Ability to create API credentials in OneLogin
Overview
The integration provides:
- User directory and authentication logs
- Application access monitoring
- Role and group assignments
- Security events and alerts
- Login activity tracking
Step-by-Step Instructions
Part 1: Create API Credentials in OneLogin
Navigate to your OneLogin admin dashboard
URL format:
https://<your-subdomain>.onelogin.com/admin2Click Developers in the navigation menu
Select API Credentials
Click New Credential
Enter a descriptive name:
Anzenna
Under Permissions, select Read all
Click Save
This grants read-only access to all OneLogin data
Part 2: Copy Credentials
- After creation, you'll see two values:
- Copy the Client ID
- Copy the Client Secret
Save both values immediately. The Client Secret is only shown once.
Click Done to complete credential creation
Part 3: Connect to Anzenna
Log into Anzenna at
app.anzenna.ai
Navigate to Settings > Integrations
Find the OneLogin integration card
Toggle the switch to enable the integration
Paste the Client ID into the designated field
Enter your OneLogin subdomain
Example: If your URL is
acme.onelogin.com, enteracmeEnter the complete API URL:
https://<your-subdomain>.onelogin.com
Paste the Client Secret into the secret field
Click Save to establish the connection
Verification
Verify integration shows Connected status
- Wait 15-30 minutes for initial data sync
Navigate to Anzenna's Users dashboard
Confirm user data from OneLogin is appearing
- Check authentication logs are visible
What Data is Collected
User Information
- User directory
- Email addresses
- Names and attributes
- Account status
- Custom fields
Authentication Data
- Login events
- Failed authentication attempts
- MFA usage
- Session information
- IP addresses
Application Data
- Assigned applications
- Application usage
- Access permissions
- SSO configurations
Role and Group Data
- Role assignments
- Group memberships
- Permission sets
Security Events
- Security alerts
- Policy violations
- Risk indicators
- Suspicious activity
Managing the Integration
Checking Connection Status
Go to Anzenna > Integrations
- Review OneLogin status indicator
- Check last successful sync timestamp
- Review for error messages
Regenerating Credentials
If credentials are compromised:
In OneLogin, go to Developers > API Credentials
- Find the Anzenna credential
Click Delete
Create new credential with same permissions
- Update credentials in Anzenna
Click Save
Testing Connection
- Check for recent login events in Anzenna
- Compare user counts between systems
- Verify recent authentication logs appear
- Test search functionality
Troubleshooting
Connection Fails
"Invalid credentials" error:
- Verify Client ID copied correctly
- Ensure Client Secret is complete
- Check no extra spaces in values
Confirm credentials weren't deleted in OneLogin
No Data Appearing
Users not syncing:
- Wait 30 minutes for initial sync
- Verify "Read all" permission was granted
- Check API URL format is correct
Ensure subdomain matches your OneLogin instance
API URL Issues
Cannot connect to API:
- Verify subdomain is correct
- Check HTTPS protocol is used
- Ensure no trailing slash in URL
- Confirm URL is accessible from network
Permission Errors
403 Forbidden responses:
- Verify Read all permission is selected
- Ensure credentials are active
- Check organization API settings
Confirm no IP restrictions blocking Anzenna
Security Considerations
Credential security - Store Client Secret securely
Read-only access - Integration only reads data
Audit logging - All API calls logged in OneLogin
Principle of least privilege - Read all is minimum needed
Regular reviews - Audit integration quarterly
Best Practices
Document subdomain - Record for future reference
Secure credentials - Store in password manager
Monitor sync status - Check weekly after setup
Test after setup - Verify data flow immediately
Set calendar reminders - Periodic integration health checks
Backup credentials - Keep secure copy of Client ID/Secret
Review permissions - Annual audit of API access
Integration Maintenance
Regular Checks
Perform monthly:
- Verify connection active
- Check data freshness
- Review sync timestamps
- Test sample queries
During OneLogin Updates
After platform updates:
- Test API connectivity
- Verify data still syncing
- Check for new available fields
- Update documentation if needed
Credential Rotation
If required by security policy:
- Create new credentials in OneLogin
- Test new credentials in staging
- Update Anzenna configuration
- Verify connection successful
- Delete old credentials
API Rate Limits
OneLogin enforces API rate limits:
Default: 2,500 requests per hour
Enterprise: Higher limits available
Monitoring: Check usage in OneLogin admin
If you hit rate limits:
- Anzenna will automatically retry
- Sync may be delayed temporarily
Contact OneLogin support to increase limits
Related Resources
Need help? Contact
Anzenna Support
for assistance.