Skip to main content
 

Tip

This article was accurate at the time of writing, but changes happen. If you find the instructions are outdated, leave a description in the comment field below and let us know!

Step 1: Enable console access

  1. In the OneLogin console, select Administration.

    image3.png
  2. Select Users and then New User.

    image10.png
  3. Fill in the following fields:

    image11.png
    • First name: Expel

    • Last name: SOC

    • For Email: soc+<Your_Organization_Name>@expel.io.

      Tip

      Yes, the "+" sign is part of the email address (as in soc+megacorp@expel.io) and it's important. Click here to find out why.

    • Username: same as email

    • Password: set by user

    • Company: Expel

    • Leave the other fields blank.

  4. Click Save User.

  5. Notify your engagement manager that the registration email is sent.

Step 2: Generate API Credentials

  1. Sign into your OneLogin as a user with Admin privileges.

  2. Navigate to Administration.

    image3.png
  3. Navigate to Developers > API Credentials.

    image1.png
  4. Select New Credential.

    image4.png
  5. Give the credential a name (such as Expel API) and select Read All and click Save.

    image9.png
  6. Save a copy of the Client ID and Client Secret.

    image7.png

Step 3: Configure the technology in Workbench

Now that we have the correct access configured and noted the credentials, we can integrate your tech with Workbench.

  1. Login to https://workbench.expel.io.

  2. Navigate to Settings > Security Devices.

  3. At the top of the page, click Add New Device.

  4. Search for and select OneLogin (direct).

    image8.png
  5. Select Expel Cloud Service for the SIEM.

  6. Give the device a Name and Location.

  7. Fill in fields for Client Secret and Client ID with credentials generated in Step 2.

  8. Specify the Region of the OneLogin device (US, EU).

Comments

0 comments

Article is closed for comments.