Institutions using OneLogin as their Identity Provider (IdP) for Single Sign-On (SSO) within Learning Management Systems (LMS) may encounter issues when attempting to embed OneLogin in an iframe. While navigating to OneLogin directly (e.g., via school.onelogin.com
) may work smoothly, attempts to access the IdP through an iframe embedded in an LMS can fail, resulting in errors such as "school.onelogin.com refused to connect."
Issue: "school.onelogin.com Refused to Connect"
This error typically occurs when the browser attempts to load OneLogin within an iframe but is blocked due to security restrictions. The issue arises from the X-Frame-Options header, which prevents the content from being embedded in external sites, like an LMS, unless explicitly allowed.
Steps to Resolve the Issue
To resolve this issue, the institution's OneLogin administrator needs to modify the settings to permit iframe embedding. Here’s how to make the necessary adjustments:
- Go to
Administration Dashboard
->Settings
->Account Settings
. - On the page, look for
Disable Framing Protection (X-Frame-Options)
and check the box.
If the institution is unable to find or adjust these settings, it is recommended to contact your LMS admin. They can provide further guidance on enabling iframe embedding and address any additional concerns related to the "refused to connect" error.
Feel free to reach out to us at support@bibliu.com if you have questions on this.
Comments
0 comments
Please sign in to leave a comment.