Setting up SSO to PingOne for Enterprise or PingID
If your organization has set up PingOne for Enterprise, you can SSO from the PingOne admin console to the PingOne for Enterprise tenant. This functionality allows organizations with multiple instances of PingOne for Enterprise or PingID to keep track of each environment without having to use a unique email address for each sign on.
Before you begin
To set up SSO to PingOne for Enterprise, you must have the Organization Admin
role in PingOne.
About this task
You’ll SSO to PingOne for Enterprise by selecting the Enable SSO option on the sign-on screen. Although user mapping is accomplished by an administrator logging in with email address and password, SSO is set up using OpenID Connect (OIDC).
Steps
-
In the PingOne admin console, go to the Overview page.
-
Under Services, click the PingOne for Enterprise icon or the PingID icon.
Result:
If you don’t see the PingOne for Enterprise or PingID icons, your organization does not have those services configured. See Building solutions.
The Sign On window opens.
-
Enter your user name and password in the appropriate fields.
-
Select the Enable SSO from My Ping check box.
This check box is shown only for those with an
Organization Admin
role. -
Click Sign On.
Result:
You see the following message.
-
Click Continue.
-
To remove the SSO link to your account or map to a different account, click the Manage SSO link.
The Manage SSO link allows you to unlink your user name.
-
If you have an
Organization Admin
role and you want to unlink the environment for all administrator users, click Disable SSO.