PingFederate Integration Guide Overview

PingFederate is a federation server that provides identity management, single sign-on, and API security for the enterprise. This documentation describes how to configure a single sign-on partnership between PingFederate as the Identity Provider (IdP) and the Single Sign-On Service (SSO) for Pivotal Web Services (PWS) as the Service Provider (SP).

SSO supports service provider-initiated authentication flow and single logout. It does not support identity provider-initiated authentication flow. All SSO communication takes place over SSL.

Prerequisites

To integrate PingFederate with (PWS), you need:

  • PingFederate

  • A PingFederate user with Administrator privileges.

Note: To configure SAML, you must contact Pivotal to have Single Sign-On enabled for your PWS organizations through plan creation. You should be added as a plan administrator. For help configuring plans, see the Manage Service Plans topic.

PingFederate Integration Guide

Configuring PingFederate with SSO

Complete both steps below to integrate your deployment with PingFederate and SSO.

  1. Configure PingFederate as an Identity Provider

  2. Configure a Single Sign-On Service Provider

Testing and Troubleshooting

Create a pull request or raise an issue on the source for this page in GitHub