Configure federated login settings for OneLogin in LastPass.

Copy the Issuer URL and Client IDs from OneLogin.

1. In OneLogin, go to the SSO page of the Web OICD app.
2. Locate Enable OpenID Connect > Issuer URL. Right-click Well-known Configuration, and select Copy Link. Save this value in a text editor.
   This value is the same for all the apps that you created in Step #5: Create login apps for LastPass in OneLogin so it is OK to copy it from any of the apps.

   
3. Complete the following sub-steps for each app one by one (Desktop app, Android app, iOS app, Web app):
   1. Locate Enable OpenID Connect > Client ID. Select Copy to Clipboard.
   2. Save the copied value in a text editor, noting down which app's Client ID you are recording.
   

   Result: At the end of this step, you should have four different Client ID values.

Paste the Issuer URL and Client IDs in LastPass.

4. Return to the LastPass Admin Console at https://admin.lastpass.com/.
5. Select Users > Federated login.
6. Select OneLogin.
   
7. Locate the OpenID Connect metadata document URL field and paste the Issuer URL value that you obtained in OneLogin (in Step 2 above).
8. Paste the appropriate Client ID value that you obtained in OneLogin (in Step 3 above) into the following fields:
   • For the Web app: Web application Client ID
   • For the iOS app: iOS Client ID
   • For the Android app: Android Client ID
   • For the Desktop app: Desktop app Client ID

Enable federation.

9. Select Enabled.
10. Select Save changes.