Last updated on October 16, 2024
Overview
The purpose of this document is to enable Rublon Two-Factor Authentication (2FA) for users logging in to Sumo Logic. In order to achieve that, you have to use Rublon Access Gateway. All required steps will be described in this document.
Supported Authentication Methods
| Authentication Method | Supported | Comments |
| Mobile Push | ✔ | N/A |
| WebAuthn/U2F Security Key | ✔ | N/A |
| Passcode | ✔ | N/A |
| SMS Passcode | ✔ | N/A |
| SMS Link | ✔ | N/A |
| Phone Call | ✔ | N/A |
| QR Code | ✔ | N/A |
| Email Link | ✔ | N/A |
| YubiKey OTP Security Key | ✔ | N/A |
Before you start
You need to install and configure Rublon Access Gateway itself before configuring Sumo Logic to work with it. Please read the Rublon Access Gateway documentation and follow the steps in Installation and Configuration sections. Afterwards, follow the Configuration section in this document.
Configuration
Follow these steps to enable Rublon 2FA in Sumo Logic.
Sumo Logic
1. Log in to Sumo Logic.
2. Go to Administration → Security.
3. Select the SAML tab.
Note
If you cannot find the SAML tab, you probably have to add a new user. Go to Administration → Users and Roles and then click +Add User. Add a new user and get back to Administration → Security.
4. Locate the Allow these users to sign in using passwords in addition to SAML table on the SAML tab. We recommend you add at least the main administrator to the allowlist. This will ensure that you will still have access to the administrator’s features in case of any errors or changes in your integration.
5. Locate the Configuration List table and click +Add Configuration. Fill in the form. Refer to the following image and table.
| Configuration Name | Enter a name for your configuration, e.g. Rublon Access Gateway. The name will be displayed on the Sumo Logic log in form. |
| Issuer | Enter the value of Entity ID from Rublon Access Gateway (Applications → Information for configuring applications with Rublon Access Gateway). |
| X.509 Certificate | Download the certificate from Applications → Information for configuring applications with Rublon Access Gateway → DOWNLOAD CERTIFICATE. Open the downloaded certificate in a text editor. Copy the entire contents and paste it into the text field. |
| Attribute Mapping | Use SAML Subject |
| SP Initiated Login Configuration | Check. |
| Login Path | Rublon |
| Authn Request URL | Copy the value of SSO URL from Rublon Access Gateway (Applications → Information for configuring applications with Rublon Access Gateway) and append the following line: ?spentityid=SumoLogic. The resulting URL might look like the following: https://example.com/saml2/idp/SSOService.php?spentityid=SumoLogic |
| Sign Authn Request | Check. |
| Select Binding Type | Redirect |
| Logout Page | Optional. Set to any any page of your choice, e.g. https://www.sumologic.com or leave out empty. |
Rublon Access Gateway
1. In Rublon Access Gateway, go to Applications → Add application.
2. Fill in the form and click SAVE to add a new application. Refer to the following image and table.
| Application name | Enter a name for the application, e.g. Sumo Logic. The name will be displayed during Rublon 2FA. |
| Entity ID | SumoLogic |
| Assertion Consumer Service | Enter the value of Assertion Consumer from your SAML configuration in Sumo Logic (select your SAML configuration on Configuration List and copy the value from the field that appeared on the right). |
| Single Logout Service | https://www.sumologic.com/ |
| NameID format | urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress |
| NameID attribute | |
| Send Attributes | NameID |
| Signature algorithm | sha-256 |
| Validate Authn Request | Check. |
| Sign response | Check. |
| Sign assertion | Uncheck. |
| Certificate for signing | Select the certificate you have downloaded from Applications → Information for configuring applications with Rublon Access Gateway → DOWNLOAD CERTIFICATE. |
3. Your configuration is now complete. You can log in to Sumo Logic with Rublon 2FA.
Log in to Sumo Logic with Rublon 2FA
1. Enter the address of your Sumo Logic account in your browser. For example, if your account is called example, go to: http://example.sumologic.com/.
2. Click Rublon Access Gateway.
Note
Only users who have been added to the Allow these users to sign in using passwords in addition to SAML allowlist will have the choice between the traditional and 2FA login. All other users will have to log in using Rublon Access Gateway.
3. You will be redirected to Rublon Access Gateway login page.
4. Provide your username and password. Click SIGN IN. A window will appear with a selection of various 2FA options from Rublon. Let’s choose Mobile Push.
5. You will be sent a push notification. Tap APPROVE.
6. You will be successfully logged in to Sumo Logic.
Troubleshooting
If you encounter any issues with your Rublon integration, please contact Rublon Support.
