PingOne

Managing populations

PingOne allows you to organize users into populations to simplify user and policy management.

Click the appropriate tab for instructions on:

  • Viewing your existing populations and their details

  • Adding a new population

  • Making changes to a population

  • Deleting an unused population

  • Viewing populations

  • Adding a population

  • Editing a population

  • Deleting a population

Viewing populations

Use the Populations page to view populations in PingOne.

Steps

  1. In the PingOne admin console, go to Directory > Populations and browse or search for the population that you want to view.

  2. Click the population entry to open the details panel.

Result

The population details panel shows information about the population on the following tabs:

Overview

The Overview tab shows general information about the population.

Population Name

A label for the population.

Description (optional)

A brief description of the population.

Population ID

A unique identifier for the population.

You can click the Copy icon to copy the population ID to the clipboard.
Identity Provider (optional)

The default identity provider (IdP) for the population. When nothing else is selected, PingOne is used as the default IdP during the runtime. Click the title to go to the specific identity provider. If your IdP isn’t enabled, the word Disabled displays next to the title.

Configuration

The Configuration tab displays information about settings that apply only to DaVinci. These settings are not used in sign-on policies.

Alternative Identifiers

A domain, ID, or custom value used to identify the population.

Theme

The default branding theme for this population. Learn more in Branding and themes and Adding a theme.

If a population doesn’t have a selected theme, the active theme for the environment is used.

Password Policy

The Password Policy tab shows detailed information about the password policy in use for the population.

Password Policy

The password policy assigned to the population. Click the tile to go to the Password policies page.

Description

A brief description of the password policy.

Password Policy ID

The password policy ID. Click the password ID to copy it to the clipboard.

Password Requirements

The requirements for the password.

Password Policy Rules

The password rules for the policy.

Account Lockout Rules

The lockout rules for the account.

Users

The Users tab shows the list of users currently in the population.

Groups

The Groups tab shows the list of groups currently in the population.

Screen capture of the populations default details page.

Adding a population

Use the Populations page to add a population in PingOne.

Steps

  1. In the PingOne admin console, go to Directory > Populations.

  2. Click the icon to add a population.

  3. Enter the following:

    • Population Name: A unique label for the population.

    • Description (optional): A brief description of the population.

    • Default Population: Specify the current population as the default population. Users created without a specified population are added to the default population.

      If you are changing the default population, PingOne shows a confirmation message. Click Confirm.

  4. Click Save.

Editing a population

Use the Populations page to edit existing populations.

Steps

  1. In the PingOne admin console, go to Directory > Populations and browse or search for the population you want to edit.

  2. Click the population entry to open the details panel.

  3. On the Overview tab, click the Pencil icon and edit or enter the following:

    • Population Name: A unique label for the population.

    • Description (Optional): A brief description of the population.

    • Identity Provider (Optional): The default IdP for the population.

      If you are changing the default IdP, PingOne shows a confirmation message. Validate the IdP configuration to avoid lockout and click Confirm.

      This setting is used at runtime for users in the population who do not have Authoritative Identity Provider configured in their user profile, and only for as long as they remain in the population. When a user doesn’t have an IdP configured in their user profile, the default IdP from the population PingOne is used. If Authoritative Identity Provider is set on the user profile, that setting is used to authenticate the user. The user profile setting is not updated or changed by the setting on the population.

      You must have the Identity Data Admin role or a custom role with equivalent permissions to configure this setting. Learn more in Authoritative identity providers.

    • Default population: Specify the current population as the default population. Users created without a specified population are added to the default population.

      If you change the default population, PingOne shows a confirmation message. Click Confirm.

  4. (Optional) On the The Configuration tab, click the Pencil icon and edit or enter the following:

    These settings apply only to DaVinci and aren’t used in sign-on policies.

    • Alternative Identifiers: A domain, ID, or custom value used to identify the population.

    • Theme: The default branding theme for this population. Learn more in Branding and themes and Adding a theme.

      If you don’t select a theme, the active theme for the environment is used.

  5. (Optional) On the Password Policy tab, the Standard default policy shows. Click the Pencil icon and select a different password policy that is configured in your environment.

    Learn more in Password Policies.

  6. (Optional) On the Users tab, browse or search for a user. Click the More Options (⋮) icon and click Manage User Profile.

    Result:

    The Users page opens, and the user details panel shows.

    Learn how to change a user’s population in Changing a user’s population.

    Users are added to the default population when a population isn’t specified during the new user creation.

  7. (Optional) On the Groups tab, browse or search for a group. Click the More Options (⋮) icon and click Manage Group.

    Result:

    The Groups page opens, and the group details panel shows.

    Learn more in Managing groups.

  8. Click Save.

Deleting a population

Use the Populations page to remove populations that you no longer need.

Before you begin

  • To delete a population, you must have the Environment Admin role or a custom role with equivalent permissions.

  • You must remove all users from a population before you can delete it.

Steps

  1. In the PingOne admin console, go to Directory > Populations and browse or search for the population you want to delete.

  2. On the right side of the population entry, click the More options (⋮) icon and then click Delete.

  3. On the confirmation message, click Delete.