Configuring PingOne Cloud as an Identity Provider
Note: Pivotal Platform is now part of VMware Tanzu. In v1.12 and later, Pivotal Single Sign‑On is named Single Sign‑On for VMware Tanzu.
This topic describes how to set up PingOne Cloud as your identity provider by configuring SAML integration in both Single Sign‑On for VMware Tanzu and PingOne Cloud.
To set up PingOne Cloud as your identity provider through SAML integration:
- Set up SAML in Single Sign‑On
- Add a New SAML App
- Configure the SAML Settings
- (Optional) Specify App and Group Attributes
- Publish the SAML App
To set up SAML in Single Sign‑On, follow the steps in Configure SAML Settings.
To add a new SAML app:
Sign in as a PingOne Cloud admin.
Navigate to your app by clicking on Apps.
Click Add Application and choose New SAML Application.
Enter the Application Name, Application Description, Category and any Graphics.
Click Continue to Next Step to configure SAML.
To configure the SAML settings:
Select I have the SAML configuration.
For SAML Metadata, click Download to download the identity provider metadata.
For Protocol Version, select SAML v 2.0.
For Upload Metadata, click Select File and select the service provider metadata.
Click Continue to Next Step.
To specify app and group attributes:
Under SSO Attribute Mapping, specify any app or group attributes that you want to map to users in the ID token.
To publish the SAML app:
Click Save & Publish.