PingOne Cloud Integration Guide Overview

Warning: Pivotal Single Sign-On v1.11 is no longer supported because it has reached the End of General Support (EOGS) phase as defined by the Support Lifecycle Policy. To stay up to date with the latest software and security updates, upgrade to a supported version.

PingOne Cloud is an identity-as-a-service solution that delivers secure single sign-on to SaaS, legacy and web apps. This documentation describes how to configure a single sign-on partnership between PingOne Cloud as the Identity Provider (IdP) and Pivotal Single Sign‑On as the Service Provider (SP).

Pivotal Single Sign‑On supports service provider-initiated authentication flow and single logout. It does not support identity provider-initiated authentication flow. All Single Sign‑On communication takes place over SSL.


To integrate PingOne Cloud with Single Sign‑On, you must have the following:

  • PingOne Cloud
  • A user with app admin privileges

Note: To configure SAML, you must have the Pivotal Single Sign-On service broker installed on your PCF deployment. You need to create a plan, grant any plan administrators, and specify any organizations this plan should be the authentication authority for. For help configuring plans, see the Manage Service Plans topic..

PingOne Cloud Integration Guide

Configuring PingOne Cloud with Single Sign‑On

Complete both steps below to integrate your deployment with PingOne Cloud and Single Sign‑On.

  1. Configure PingOne Cloud as an Identity Provider
  2. Configure a Single Sign-On Service Provider

Testing and Troubleshooting