Set Up OneLogin SSO for JustCall

Manage my account3 min readUpdated 2026-03-12

Set Up OneLogin SSO for JustCall

OneLogin SSO allows your team to access JustCall with their OneLogin credentials, centralizing authentication and simplifying user management. SSO is available on the Business plan.

Prerequisites

  • JustCall Business plan
  • OneLogin admin access
  • A verified email domain in JustCall

Step 1: Enable SSO in JustCall

  1. Go to Settings → Security → Single Sign-On in JustCall.
  2. Click Enable SSO and select SAML 2.0.
  3. Copy the ACS URL and Entity ID.

Step 2: Add JustCall as a SAML App in OneLogin

  1. Log into the OneLogin Admin Console.
  2. Go to Applications → Applications → Add App.
  3. Search for SAML Custom Connector (Advanced) and select it.
  4. Set the Display Name to JustCall. Click Save.

Step 3: Configure SAML Settings

  1. In the JustCall application, go to the Configuration tab.

  2. Enter:

    FieldValue
    Audience (EntityID)Paste the Entity ID from JustCall
    ACS (Consumer) URLPaste the ACS URL from JustCall
    ACS URL ValidatorPaste the ACS URL (escaped: replace . with \. and / with \/)
    SAML nameID formatEmail

  3. Click Save.

Step 4: Configure Attribute Mapping

  1. Go to the Parameters tab.

  2. Add the following custom parameters (click the + icon):

    Field NameValue (OneLogin Field)
    emailEmail
    firstNameFirst Name
    lastNameLast Name

  3. For each parameter, check Include in SAML assertion.

  4. Click Save.

Step 5: Copy OneLogin Identity Provider Details

  1. Go to the SSO tab in the JustCall application.
  2. Copy:
    • SAML 2.0 Endpoint (HTTP) — this is your SSO URL
    • Issuer URL — this is your IdP Entity ID
  3. Under X.509 Certificate, click View Details and copy the certificate content.

Step 6: Complete Configuration in JustCall

  1. Return to Settings → Security → Single Sign-On in JustCall.
  2. Enter:
    • SSO URL: SAML 2.0 Endpoint from OneLogin
    • Issuer / Entity ID: Issuer URL from OneLogin
    • Certificate: Paste or upload the X.509 certificate
  3. Set the Default Role for new SSO users.
  4. Click Save Configuration.
  5. Click Test Connection.

Step 7: Assign Users

  1. In OneLogin, go to the JustCall application.
  2. Click the Users tab (or Access tab for role-based assignment).
  3. Add individual users or assign roles/groups that should access JustCall.
  4. Click Save.

User Login Flow

  • From OneLogin: Users click the JustCall tile in their OneLogin portal.
  • From JustCall: Users click Sign in with SSO, enter their email, and are redirected to OneLogin.

Troubleshooting

IssueSolution
"Invalid audience" errorVerify the Audience (EntityID) in OneLogin matches the Entity ID in JustCall exactly.
Attributes not receivedConfirm each parameter has Include in SAML assertion checked.
Certificate validation failureRe-copy the certificate from OneLogin. Ensure no extra whitespace.
User cannot access the appCheck that the user is assigned to the JustCall application in OneLogin.

Related Articles

Was this helpful?
Set Up Okta SSO for JustCallSet Up Rippling SSO for JustCall

Related Articles

JustCall Affiliate Program
Manage my account2 min read
How to Join the JustCall Affiliate Program
Manage my account2 min read
Track Referrals and Payouts
Manage my account2 min read