Configure PingOne Cloud as an Identity Provider

Pivotal Web Services End of Availability Announced
For more information, see Frequently Asked Questions.

This topic describes how to set up PingOne Cloud as your identity provider by configuring SAML integration in both Pivotal Web Services (PWS) and PingOne Cloud. ]

Set up SAML in PWS

  1. Log into the Single Sign-On (SSO) dashboard at as a Plan Administrator.
  2. Select your plan and click Manage Identity Providers on the drop-down menu.

    Pingone manage id providers

  3. Click Configure SAML Service Provider.

    Pingone config saml service provider

  4. (Optional) Select Perform signed authentication requests to enforce SSO private key signature and identity provider validation.

    Saml auth checkbox

  5. (Optional) Select Require signed assertions to validate the origin of signed responses.

  6. Click Download Metadata to download the service provider metadata.

  7. Click Save.

Set up SAML in PingOne Cloud

  1. Sign in as a PingOne Cloud administrator.

  2. Navigate to your application by clicking on the Applications tab.

  3. Click the Add Application button and choose New SAML Application.

    Saml add application

  4. Enter the Application Name, Application Description, Category and any Graphics.

  5. Click the Continue to Next Step button to configure SAML.

    Pingone saml config

  6. In the Application Configuration section, perform the following steps:

    1. Select I have the SAML configuration.
    2. For SAML Metadata, click Download to download the identity provider metadata.
    3. For Protocal Version, select SAML v 2.0.
    4. For Upload Metadata, click Select File and select the service provider metadata.
    5. Click the Continue to Next Step button.
  7. (Optional) Under SSO Attribute Mapping, specify any application or group attributes that you want to map to users in the ID token.

    Pingone attribute mapping

  8. Click the Save & Publish button followed by the Finish button.