Enable Single Sign-On (SSO)

Updated
  • Updated on Feb 12, 2026
  • Published on May 13, 2025
  • 3 minute(s) read
Prev Next

After you have chosen your preferred IdP and are ready to enable single sign-on (SSO) for the Payrix Pro platform, follow the instructions below for the protocol you’re using.

OneLogin Setup

You can set up OneLogin by implementing Security Assertion Markup Language (SAML) or OpenID.

OneLogin - How to Implement SAML

Complete all steps to implement SAML. Follow your IdP instructions for connection.

To access the SSO menu:

  1. Access the SAML application in the OneLogin app, then click Configurations.

  2. In the Portal, select Settings in the main side bar, then click Hosts in the Business Settings section.

  3. On the Hosts page, select the Single Sign-On tab, then click the edit icon.

  4. Select SAML2.0 from the Single Sign-On Protocol dropdown menu and copy the Entity ID and Single Logout URL values.

  5. In OneLogin, paste the copied values into the corresponding fields on the Configurations tab.

  6. Click Save in the Configurations tab.

Enable OneLogin Single Sign-On

To enable SSO for OneLogin:

  1. Select the SSO tab in the OneLogin app.

  2. Copy the following fields from OneLogin and paste them in the corresponding fields in the Portal Single Sign-On tab:

Copy from OneLogin App

Paste into Payrix Pro Portal

Notes

Issuer URL

Entity ID

None

SAML 2.0 Endpoint (HTTP)

SAML 2.0 Endpoint

None

SLO Endpoint (HTTP)

Single Logout Service Endpoint

None

XL509 certificate

XL509

To view the XL509 certificate field in OneLogin, click View Details.

Apply SSO Configuration

To apply your SSO configuration in the Portal:

  1. In the Portal, select the checkmark icon to confirm and save the changes.

  2. Access the Profile page and click Update Single Sign-On to complete your SSO setup.

OneLogin - How to Implement with OpenID

Complete all steps to implement OneLogin with OpenID. Follow your IdP instructions for connection.

To access the SSO menu:

  1. In the OneLogin app, access the OpenID application and click Configurations.

  2. In the Portal, select Settings in the main side bar, then click Hosts in the Business Settings section.

  3. On the Hosts page, select the Single Sign-On tab, then click the edit icon.

  4. Select OpenID from the Single Sign-On Protocol dropdown menu and copy the Redirect URLs values.

  5. Paste the copied values in the Redirect URLs section of the OneLogin app.

Enable OneLogin Single Sign-On

To enable SSO for OneLogin:

  1. Select the SSO tab in the OneLogin app.

  2. Copy the following fields from OneLogin and paste them in the corresponding fields in the Portal Single Sign-On tab:

Copy from OneLogin App

Paste into Payrix Pro Portal

Notes

Issuer URL

Entity ID

None

Client ID

Client ID

None

Client Secret

Client Secret

Click Show to reveal the secret to be copied.

Apply Single Sign-On Configuration

To apply your SSO configuration in the Portal:

  1. In the Portal, select the checkmark icon to confirm and save the changes.

  2. Access the Profile page and click Update Single Sign-On to complete your SSO setup.

Google

You can enable SSO for your Google organization by adding a custom SAML app. Follow your IdP instructions for connection.

To add a custom SAML app and start your setup:

  1. From the home page of the Google Admin console, access Apps, then click SAML Apps.

  2. Click Add App, then click Add Custom SAML.

  3. Enter a name on the App Details page.

  4. Download the IdP metadata or copy the SSO URL and Entity ID, then download the Certificate and click Continue.

Enable Access to the Portal

To enable access for your SAML app in the Portal:

  1. In the Portal, select Settings in the main side bar, then click Hosts in the Business Settings section.

  2. On the Hosts page, select the Single Sign-On tab.

  3. Copy the following fields from the Single Sign-On tab and paste them into the Service Provider Details window of the Google Admin console.

Copy from Payrix Pro Portal

Paste into Google Admin Console

ACS URL

ACS URL

Entity ID

Entity ID

Start URL

Start URL

Enable SSO for Your Google Organization

To enable SSO for your Google organization:

  1. From the Google Admin console, access Apps and then select your new SAML app.

  2. Click User Access, then select the On/Off for Everyone toggle:

    • On for everyone: Enables SSO with SAML for everyone in your Google organization.

    • Off for everyone: Disables SSO with SAML for everyone in your Google organization.

  3. Click Save.

Enable SSO for a Host

To enable SSO for a Host in the Portal:

  1. In the Portal, select Settings in the main side bar, then click Hosts in the Business Settings section.

  2. Select the desired Host to open the Profile page.

  3. Click Features, then select the Single Sign-On toggle to turn on SS.

Related articles