Creating a single sign-on connection

To allow PingFederate to handle single sign-on (SSO) to Slack, create a service provider (SP) SSO connection.

About this task

You can follow these steps to create a new SP connection, or you can modify an existing connection.

SSO isn’t required for provisioning. If you only want to use the Slack Provisioner for provisioning, skip these steps.

Steps

In the PingFederate administrator console, create a new SP connection:
1. For PingFederate 10.1 or later: go to Applications → Integration → SP Connections. Click Create Connection.
2. For PingFederate 10.0 or earlier: go to Identity Provider → SP Connections. Click Create Connection.
Configure the basic connection details with the Slack quick connection template.
1. On the Connection Template tab, select Use a template for this connection.
2. From the Connection Template list, select Slack Provisioner.
3. On the Metadata File row, select the saml-metadata.xml file that you saved in Preparing your SAML metadata file. Click Next.
4. On the Connection Type tab select Browser SSO Profiles. Click Next.
5. On the Connection Options tab, select only Browser SSO. Click Next.
6. If you see the Metadata URL tab, clear the Enable automatic reloading check box. Click Next.
7. On the General Info tab, in the Connection Name field, enter a name for your connection. Click Next.
On the Browser SSO tab, complete the steps in Configuring Browser SSO.
On the Credentials tab, configure the connection credentials.

For a complete guide, see Configuring credentials in the PingFederate documentation.
1. Click Configure Credentials.
2. On the Digital Signature Settings tab, select your signing certificate.
3. Clear the Include the certificate in the signature <KEYINFO> element check box. Click Next.
4. On the Summary tab, click Done.
5. On the SP Connection → Credentials tab, click Next.
On the Activation and Summary tab, above the Summary section, click the toggle to turn on the connection. Click Save.