PingOne Advanced Identity Cloud Login Connector
The PingOne Advanced Identity Cloud Login connector lets you authenticate users using the default journey in PingOne Advanced Identity Cloud in your PingOne DaVinci flow.
Setup
Resources
For information and setup help, see the following:
-
Advanced Identity Cloud documentation:
-
DaVinci documentation:
Requirements
To use the connector, you’ll need:
-
An Advanced Identity Cloud license
-
A license for Identity Governance
Setting up PingOne Advanced Identity Cloud
To allow DaVinci to access PingOne Advanced Identity Cloud environment, create an application:
-
In PingOne Advanced Identity Cloud, go to Applications.
-
Click Custom Application.
-
Select OIDC - OpenId Connect, then click Next.
-
Select Web, then click Next.
-
Enter the application name and description, and select an owner. Click Next.
-
Define a client ID and secret.
The Client ID and Client Secret are needed for the connector configuration.
-
Click Create Application.
-
On the application details view, go to the Sign On tab.
-
In the PingOne Advanced Identity Cloud Login connector configuration, copy the DaVinci Redirect URL value from the connector settings and paste it into the Sign-in URLs field.
-
For Grant Types, use the defaults (
Authorization Code
,Client Credentials
, andRefresh Token
). -
For Scopes, use
openid
at minimum. You can define additional OIDC scopes, such asprofile
,email
,address
, andphone
. -
Click Save.
Configuring the PingOne Advnaced Identity Cloud Login connector
Add the connector in DaVinci as shown in Adding a connector, then configure it as follows.
Connector configuration
Client ID
The client ID you defined when configuring your application in PingOne Advanced Identity Cloud.
Client Secret
The client secret you defined when configuring your application in PingOne Advanced Identity Cloud.
Scope
The OpenID Connect (OIDC) scopes used to request certain information about the user. Separate scopes with a space, such as openid email profile
.
Using the connector in a flow
Authenticating users
You can use the PingOne Advanced Identity Cloud Login capability to authenticate users, with Advanced Identity Cloud acting as a social identity provider.
The connector redirects the browser to Advanced Identity Cloud, initiates the default journey to allow the user to authenticate, then returns to DaVinci with the authentication result.