OneLogin notifications are automated emails sent to users or administrators whenever certain conditions are fulfilled, such as alerting an account owner when their organization has run out of seat licenses, or notifying a locked-out user when their account has been unlocked. Your OneLogin account comes preconfigured with several existing notifications, but you can customize these for your organization's needs or create new notifications for various other events, such as when an Active Directory Connector fails.
Default Notifications
When your OneLogin tenant is created, it has the following notification emails prewritten and ready to send. Most are active by default, but some must be manually enabled before you or your users receive them.
Notify account owner of locked user
|
Sent to the account owner when a user has been locked out of OneLogin, providing a link for the user record where their account can be unlocked
*Disabled by default
|
Notify account owner for certificates about to expire
|
Sent to the account owner when a OneLogin certificate is due to expire, providing the certificate's name and link, the days remaining before expiration, and information on how to update certificates in OneLogin
|
Notify user of unlocked account
|
Sent to a user when their account has been unlocked, providing a sign-in link where they can access their account
*Disabled by default
|
Account approaching seat limit
|
Sent to the account owner when their OneLogin subscription is close to running out of seat licenses, providing the current and maximum number of seats on the current subscription and a link to their subscription management portal
|
Account at seat limit
|
Sent to the account owner when their OneLogin subscription has run out of seat licenses, providing a link to their subscription management portal
|
Notification for broken provisioning apps
|
Sent to the account owner when any application encounters a configuration error causing a provisioning failure, providing the app's error message and a link to configure the app's provisioning settings in OneLogin
|
Notification for throttled provisioning apps
|
Sent to the account owner when an app experiences temporary provisioning issues due to application throttling
|
Managing Notifications
To view and manage your notifications, go to Activity > Notifications in your OneLogin admin portal. Select any notification to view its details, and go to the More Actions menu for additional settings:
Enable/Disable
|
Activates or deactivates the current notification
|
Clone
|
Creates a new notification as a duplicate of the current notification
|
Delete
|
Permanently removes the current notification
|
Configuring Notifications
Click New Notification or select any existing notification to configure its conditions or message contents. You can also select the notification's title to rename it if desired; titles appear in your notification management but are not displayed to recipients, so should be descriptive of the notification's purpose.
Conditions
Use the + icon to add one or more conditions that will prompt the notification email to be sent.
All notifications must use at least one Event or Status condition. Notifications with only Group or Roles as conditions will not perform any actions.
Event
Select any event, and the notification will be triggered whenever the event occurs.
- Event conditions cannot be combined with any other condition type. If any other condition is added to a notification that includes at least one Event, that condition is ignored.
- When adding multiple Event conditions to a single notification, the notification is triggered when any one of the chosen events is fulfilled.
Status
Select any user status with the changed to or changed from conditional to trigger the notification when a user's status changes to or from that selection.
- Only one each of the Status changed to and Status changed from conditions may apply.
- For example, you may limit a notification to occur only when a user is changed from one selected status to another, but the notification will not trigger if you add multiple changed to or multiple changed from conditions.
- When using a Status condition in combination with any other condition, the notification is sent only when all conditions are fulfilled.
- For example, if you add both a Group is condition and a Roles include condition, the notification will trigger only for members of that group who are also assigned to the selected role.
Group
Select any group with the is or is not conditional to include or exclude users in that group from the notification conditions.
- Group conditions must be paired with at least one Status condition; if no status change is selected, the notification will not be triggered.
- You may only configure one Group is condition. If multiple Group is conditions are selected, the notification will not be triggered.
- When adding multiple Group is not conditions to a single notification, the notification is triggered only when the affected user is not a member of any selected group.
Roles
Select any role with the include or do not include conditional to include or exclude users in assigned to that role from the notification conditions.
- Roles conditions must be paired with at least one Status condition; if no status change is selected, the notification will not be triggered.
- When adding multiple Roles conditions to a single notification, the notification is triggered only when all Roles selections apply to the user's role assignments.
Actions
All notifications have one action configured by default, but more can be added with the + icon. For example, you may wish to include additional actions if you would like one email sent to the account owner and a different email simultaneously sent to the user when a particular event occurs.
Recipient
Select the email's recipient in the dropdown menu to the right of Email user. In addition to group admins for any specific groups you have configured, you can also choose from the following options:
Account owner
|
Notifies the owner of your organization's OneLogin tenant
|
Custom
|
Provides a text field for you to enter one or more email addresses, separated by commas
Tip! You can also use this field to indicate a custom field such as a secondary email address by entering {{user.custom_attribute_shortname}} with the shortname of your desired custom attribute.
|
Group admin
|
Notifies the administrator of the affected group
|
Super users
|
Notifies all users with super user privileges or above
|
User
|
Notifies the affected or acting user
|
Message
Customize the Subject and Body fields with your desired content. Notification emails are compatible with markdown formatting and template macros, and styled according to the email template customized in Branding. |