You can choose to enforce SAML SSO for Ally.io with OneLogin for added security. Once set up, users in your organization can use their managed OneLogin account credentials to sign in to Ally.io via Single Sign-On (SSO.)

To connect your SSO to your instance of Ally.io, please follow the instructions listed here: Steps to setup SSO

After you have enabled SSO within Ally.io, the next step is to create an Ally.io App within your SSO:

1. Log in to your OneLogin administrator dashboard.

2. Navigate to 'Apps > Add Apps' inside the administrator dashboard. Search for 'Ally.io’ and select the app from the search results.

3. Select 'Ally.io' from the search list and save the existing portal configurations.

4. Once you've saved your app portal configurations in Onlogin, you can start configuring your SAML info. Go to your Ally.io app, click on 'Admin' in the sidebar and navigate to 'Integrations > SSO Configuration'.

5. Copy the UUID from the ‘SAML Name’ field in the SSO Configuration page. Go to the ‘Configuration’ tab under the 'Applications' section in your Onelogin account and fill in the UUID.

6. Go to the ‘Parameters’ tab to find the below list of parameters added by default. You can add more parameters by clicking the ‘Add parameter’ link.

7. Go to the 'SSO' tab to add SAML configurations. Copy the SAML 2.0 Endpoint (HTTP), Issuer URL, and the Public X.509 Certificate and paste it in your Ally.io SAML SSO app configuration page.

8. If you want to enforce your SSO options, please select 'Force your team to log in via your SSO provider.' If you do not want to enforce your SSO (allowing users to login with other SSO credentials) then leave this field unselected.

9. Click 'Update' to complete the setup at your end.

You will now be able to use your managed OneLogin account credentials to sign in to Ally.io via Single Sign-On (SSO.)