LastPass SAML setup

Enable your LastPass users to access 1Password SaaS Manager with Single-Sign-On (SSO).

Add 1Password SaaS Manager to LastPass

Create the application

  1. Log in to LastPass and open the SSO and MFA menu option.
    If you can't see the SSO and MFA menu item then check that you have a LastPass Enterprise Account.
  2. Navigate to Applications > Web App and click Add Application.
  3. Under Select your app, choose Custom and in the App Name field enter 1Password SaaS Manager.

Download the metadata file

Expand the Identity Provider step and click Metadata at the bottom right. This will download the IdP metadata file that tells SaaS Manager how to configure itself for LastPass.

Configure SaaS Manager

You now need to put the IdP metadata you downloaded from LastPass into SaaS Manager.

  1. Open SaaS Manager in a new browser tab, as you will need to switch back to LastPass shortly.
  2. Log in to your SaaS Manager site, and then go to Settings > Users > SAML providers.
  3. Click New. The New SAML Identity Provider dialog is displayed.
  4. In the Name field enter LastPass and ensure Metadata type is set to Metadata.
  5. Open the IdP metadata that you downloaded from LastPass in a text editor (e.g. Notepad or Visual Studio Code), and cut and paste the contents of the file into the Metadata field.
  6. Click Create.

Finalize configuration in LastPass

The next step requires the ACS URL and the Entity ID from SaaS Manager.

  1. Copy each URL to the clipboard by clicking on the small copy icon next to each entry.
  2. Return to LastPass and paste the URLs into the ACS and Entity ID fields.
  3. Expand Advanced Setup to move to the next step.
  4. Set Identifier to Email and ensure that the SAML signature method is set to SHA256.
  5. Finally, expand the Custom Attributes step.
  6. Ensure that Sign Assertion is selected and that Sign Response is not selected.

  7. Now add three attributes as follows:

    Attribute Value
    Email email
    First Name given_name
    Last Name family_name
  8. Click Save and assign to save the SAML configuration and assign some users to the application for testing.

Test the connection

Before you test the connection, make sure you have assigned a test user to the SaaS Manager Web App in LastPass.

Log in to LastPass as your test user and select the My Cloud Apps menu option. You should see the SaaS Manager logo. Click on it, and after a short pause you should be logged in to SaaS Manager.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.