What's New


October 2nd, 2017

IP Address Ranges in User Policy Whitelists

We have added a small but highly requested feature. The User Policy - IP Addresses tab, which controls access to the OneLogin Portal based on IP Addresses, has been enhanced to also support IP ranges. This makes the usage of IP Addresses consistent across the User Policy IP Address and MFA controls.

Read More »


September 25th, 2017

OneLogin Protect: Jailbreak & Cloning Protection

OneLogin Protect 3.3.2 for iOS and Android adds an option to prevent users from using OneLogin Protect on a jailbroken or rooted device. We have also enhanced security by preventing clones of the OTP seed from one device to another.

Read More »


September 11th, 2017

OneLogin Protect: Passcode & Fingerprint Protection

You spoke and we listened. OneLogin Protect 3.3 gives you the option to require your users to lock their device screens (using a passcode or Touch ID for iOS devices; a PIN, password, fingerprint, or pattern for Android devices). This prevents an unauthorized user from using the device to accept an MFA authentication request. If the device doesn't have screen lock enabled, OneLogin Protect will not provide a response to a push notification, nor allow the user to see the one-time password (OTP).

Read More »


August 31st, 2017

Customized Password Reset URL

Managing your passwords in an external system? Are your users trying to reset passwords in OneLogin instead? Now you can seamlessly redirect your users to the correct external password reset site right from the OneLogin password reset screen and provide them with a short message explaining what's happening.

Read More »


August 29th, 2017

Smart Password for OneLogin Directory

Now you can seamlessly migrate your users' passwords from other directories to the OneLogin Cloud Directory on the fly. As users authenticate against external directories, we save the password hashes so that later you can "flip the switch" and have users authenticate against OneLogin instead. All without ever directly storing the password, so security is improved.

Read More »


August 20th, 2017

Manage Devices Privilege

Are your devices being managed by another person in your organization, but you don't want to grant them OneLogin super admin rights? Now you won't have to! The new Manage Devices privilege lets you delegate the management of devices to the right users in your organization with two simple steps.

Read More »


July 28th, 2017

Onboarding & Offboarding GA

They say that "simplicity is the soul of efficiency." We decided to make this saying a reality when we developed our straightforward yet powerful Onboarding & Offboarding workflows. This new feature will allow you to quickly onboard new users to make sure they're all set on day one (or day 0 if you insist) and offboard users without leaving accounts behind.

Read More »


July 27th, 2017

Improved Namely Directory

If you've been using Namely as your HR directory for awhile, no doubt you have some users in your Namely system who are no longer with your company. Thanks to some new enhancements, you now have finer grained control over what OneLogin does when users are offboarded. You have three new options for handling disabled Namely users: ignore them on initial OneLogin setup, skip user update in OneLogin when they're disabled in Namely, and automatically update only the user status in OneLogin without changing anything else in the OneLogin user record.

Read More »


July 10th, 2017

RADIUS Password Expiration Policy Enforcement

OneLogin RADIUS services now allow enforcement of the password expiration policies that you've defined for your account. Password policy enforcement is enabled for new customers by default. Existing customers must go to the RADIUS configuration page to enable the password expiration enforcement option.

Read More »



July 3rd, 2017

OneLogin Protect for iOS and Android

OneLogin OTP is now OneLogin Protect. This new version of the one-time password application supports iOS and Android, and delivers a new look and feel, more streamlined device pairing, and push notifications. The existing "Send OTP" functionality has been removed and is replaced with the push notification capability.

Read More »


June 30th, 2017

Dropbox API

Dropbox is officially deprecating their API version 1. If you're an administrator in charge of a DropBox provisioning application, please go to the Configuration tab at Apps > Company Apps > DropBox, switch to API version 2, and re-authorize OneLogin.

Read More »


June 29th, 2017

New Applications Offer User Provisioning and Deprovisioning

The OneLogin App Catalog has new SCIM connectors for LucidChart, Envoy, GitHub, LogMeIn, Asana, and more, allowing automated user provisioning and deprovisioning. Set up the connector in your portal to enable OneLogin to automatically create, update, and delete user accounts in that application based on flexible mappings with your primary directory source.

Read More »


June 15th, 2017

VLDAP Password Expiration Policy Enforcement

OneLogin VLDAP services now allow enforcement of the password expiration policies that you've defined for your account. Password policy enforcement is enabled for new customers by default. Existing customers must go to the VLDAP configuration page to enable the password expiration enforcement.

Read More »



June 12th, 2017

OpenID Connect

OneLogin now supports OpenID Connect! OpenID Connect (OIDC) is a protocol to verify user identities and get user profile information similar to SAML, but with additional features that make it easier to support newer development platforms like Javascript. Got a single-page Javascript application you couldn't secure with SAML before? Now you can use an open-source OIDC library and implement SSO in no time at all.

Read More »


May 17th, 2017

New Extensions: Update Password Detection

Got a new password for an app you already have in your Portal? OneLogin browser extension captures a login with an updated password and offers to save it. Available in our Chrome extensions today. Support for Firefox, Edge, and Safari extensions will follow in one week.

Read More »


May 4th, 2017

SharePoint People Picker

Sharing SharePoint resources to OneLogin users in your organization just got easier, with a new component that enables OneLogin as a claims provider for SharePoint. Users can now easily search for users in their OneLogin subdomain by first and last name to assign access rights to the SharePoint resources that they control.

Read More »


May 4th, 2017

Terms and Conditions

Does your company require that you agree periodically to Terms and Conditions, Privacy Policies, or EULAs? If the answer is yes, we have great news for you! You can now configure OneLogin to require your users to agree to your company's Terms and Conditions before they log into the portal. Configuring it is as easy as pie.

Read More »


April 21st, 2017

Workday Realtime

OneLogin's new Workday integration now supports realtime updates for employee offboarding. When you add the OneLogin integration system to your Workday employee offboarding workflows, users will be instantly suspended from application access as soon as their termination is complete in Workday. This improves security, as we now instantly remove a terminated employee’s access to sensitive files and applications.

Read More »