Contentful Integration Guide

Creating a single sign-on connection

To allow PingFederate to handle single sign-on (SSO) to Contentful, create a separate service provider (SP) SSO connection.

Steps

  1. In the PingFederate administrator console, create a new SP connection: For PingFederate 10.1 or later: go to Applications → Integration → SP Connections. Click Create Connection.For PingFederate 10.0 or earlier: go to Identity Provider → SP Connections. Click Create Connection.

  2. On the Connection Template tab, select Do not use a template for this connection. Click Next.

  3. On the Connection Type tab, select Browser SSO Profiles. From the Protocol list, select SAML 2.0. Click Next.

  4. On the Connection Options tab, select only Browser SSO. Click Next.

  5. On the Import Metadata tab, select File, and then upload the metadata.xml file that you downloaded in Downloading the Contentful SAML metadata file. Click Next.

  6. If you see the Metadata Summary tab, click Next.

  7. On the General Info tab, the basic connection information is populated by the metadata XML file. Click Next.

  8. On the Browser SSO tab, complete the steps in Configuring Browser SSO.

  9. On the Credentials tab, select your signing certificate.

    1. Click Configure Credentials.

    2. On the Digital Signature Settings tab, from the Signing Certificate list, select the certificate that you exported in Exporting your PingFederate signing certificate. Click Next.

    3. On the Summary tab, click Done.

    4. On the SP Connection → Credentials tab, click Next.

  10. On the Activation and Summary tab, above the Summary section, turn on the connection. Click Save.