--- title: Applying authentication policies to the application portal description: The application portal in PingOne is an OIDC-based application. component: pingone page_id: pingone:applications:p1_apply_application_portal_policy canonical_url: https://docs.pingidentity.com/pingone/applications/p1_apply_application_portal_policy.html revdate: January 27, 2025 section_ids: steps: Steps result: Result next-steps: Next steps --- # Applying authentication policies to the application portal The application portal itself is an OpenID Connect (OIDC) *(tooltip: \
\

An authentication protocol built on top of OAuth that authenticates users and enables clients (relying parties) of all types to request and receive information about authenticated sessions and users. OIDC is extensible, allowing clients to use optional features such as encryption of identity data, discovery of OpenID Providers (OAuth authorization servers), and session management.\

\
)*-based application. Like other OIDC-based applications, you can configure an authentication policy for the application portal. The authentication policy defines the sign-on requirements for accessing the application. * Default domain By default, the application portal **Home Page URL** is https\://apps.pingone.\/\/myapps/ * Custom domain If you use a custom domain, the **Home Page URL** is https\://\/myapps/ Learn more about how authentication policies are evaluated in [Authentication policies for applications](p1_auth_policies_for_applications.html). To apply authentication polices to the application portal: ## Steps 1. In the PingOne admin console, go to **Applications > Applications** and click the **PingOne Application Portal** application to open the details panel. 2. On the **Policies** tab, click the **Pencil** icon ([icon: pencil, set=fa]). 3. Select the policy that you want to apply. 4. Click **Save**. ## Result PingOne applies the selected policies to the **PingOne Application Portal** application. Learn more about how authentication policies are evaluated in [Authentication policies for applications](p1_auth_policies_for_applications.html). ## Next steps To control which authentication policy is used when users access the portal, append the `policy` HTTP request parameter to the end of the URL for the application when you share the URL with users. For example, the application portal is configured with three authentication policies named One, Two, and Three, and the policies are listed in that order on the **Policies** tab. You want a certain group of users to use policy Two when accessing the portal. Before you share the URL for the portal with these users, append the `policy` parameter to the URL as follows: * If you're using the default domain https\://apps.pingone.\/\/myapps/**?policy=Two** * If you're using a custom domain https\://\/myapps/**?policy=Two** | | | | - | ----------------------------------------------------------------------------------------------------------------------------- | | | To use a PingOne DaVinci flow policy instead of an authentication policy, use the policy ID for the `policy` parameter value. | If the policy name or ID doesn't match any configured policy, then PingOne returns an error.