Skip to content

PingOne Provider Setup

This document describes the steps to configure PingOne as an Identity Provider to integrate with CYDERES. CYDERES will act as the SAML Service Provider or "SAML SP".

Configuring SSO

Adding a New Application

  1. Log in to your PingOne organization admin console.
  2. Click on the Applications link in the top navigation bar.
  3. Click on the Add Application > New SAML Application option.
  4. In the New Application wizard that appears, provider an Application Name, Application Description, and a Category. Optionally provide a custom Application Icon graphic.
  5. Click Continue to Next Step.
  6. In Application Configuration, ensure the I have the SAML configuration option is selected. In the Assertion Consumer Service (ACS) form field, paste the ACS URL provided by CYDERES.
  7. In the Entity ID field, paste the Audience URI value provided by CYDERES. Click the Continue to Next Step button at the button of the screen.
  8. In the SSO Attribute Mapping section, add the three attribute statements:

    Application Attribute Identity Bridge Attribute or Literal Value Required
    FirstName First Name Yes
    LastName Last Name Yes
    Email Email Yes
  9. Click Continue to Next Step.

  10. On the Group Access assignment page, assign the necessary users from your IdP with access to this SAML application. Only these users will be able to access CYDERES applications from your IdP.
  11. Click Continue to Next Step.
  12. On the Review Setup page, select Finish.

Gather Information

You will need to send the SAML metadata as well as the Signing Certificate from PingOne to CYDERES in order to allow CYDERES to add your PingOne instance as an IdP. Both pieces of information can be downloaded from the PingOne console by viewing the newly SAML application details and clicking on the Download links for both items.