Configure a Single Sign-On Service Provider

This topic describes how to add an external identity provider to your Pivotal Single Sign-On (SSO) service plan.

Setting up SAML

  1. Log into the SSO dashboard at https://p-identity.YOUR-SYSTEM-DOMAIN as a Plan Administrator.

  2. Select your plan and click Manage Identity Providers on the dropdown menu.

    Pingone manage id providers

  3. Click New Identity Provider to create a new identity provider.

    New id provider

  4. To create a new identity provider, perform the following steps:

    1. Enter an identity provider name into Identity Provider Name.
    2. (Optional) Enter a description into Identity Provider Description.
    3. Click SAML File Metadata (optional) follwed by clicking the Upload Identity Provider Metadata button to upload your metadata XML.
    4. (Optional) Under Advanced SAML Settings, click Attribute Mappings to enter the mappings.
  5. Click Create Identity Provider.

  6. Click Resource Permissions.

  7. Click New Permissions Mapping and perform the following steps:

    1. Enter a Group Name.
    2. For Select Permissions, select the permissions that the members of the group from the external identity provider should have access to.
  8. Navigate to the identity provider list.

  9. Click Group Whitelist and enter the group names from the external identity provider that should be propagated in the ID token.

Was this helpful?
What can we do to improve?
View the source for this page in GitHub