--- title: Adding an identity provider - LinkedIn (legacy) description: Add LinkedIn as an external identity provider in PingOne to allow users to sign on with LinkedIn when accessing your application. component: pingone page_id: pingone:integrations:p1_add_idp_linkedin_prereqs_legacy canonical_url: https://docs.pingidentity.com/pingone/integrations/p1_add_idp_linkedin_prereqs_legacy.html revdate: May 29, 2025 section_ids: before-you-begin: Before you begin registering-the-application-with-linkedin: Registering the application with LinkedIn steps: Steps learn-more: Learn more adding-linkedin-as-an-identity-provider-in-pingone: Adding LinkedIn as an identity provider in PingOne before-you-begin-2: Before you begin steps-2: Steps adding-the-callback-url-to-the-linkedin-developer-page: Adding the callback URL to the LinkedIn Developer page steps-3: Steps next-steps: Next steps --- # Adding an identity provider - LinkedIn (legacy) Adding LinkedIn as an external identity provider (IdP) *(tooltip: \
\

A service that manages identity information and provides authentication services to relying clients or SPs within a federated or distributed network.\

\
)* allows your users to sign on with LinkedIn when accessing your application. | | | | - | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | | The legacy LinkedIn IdP has been deprecated, so you might be unable to connect with LinkedIn using a legacy connection. Consider using the OpenID Connect (OIDC) *(tooltip: \
\

An authentication protocol built on top of OAuth that authenticates users and enables clients (relying parties) of all types to request and receive information about authenticated sessions and users. OIDC is extensible, allowing clients to use optional features such as encryption of identity data, discovery of OpenID Providers (OAuth authorization servers), and session management.\

\
)*-based LinkedIn IdP connection. Learn more in [Adding an identity provider - LinkedIn](p1_add_idp_linkedin_prereqs.html). | ## Before you begin Ensure that you have: * A PingOne organization with an environment added. Learn more in [Starting a PingOne trial](../getting_started_with_pingone/p1_start_a_p1_trial.html). * Added your application to PingOne. Learn more in [Adding an application](../applications/p1_applications_add_applications.html). * A LinkedIn account. ## Registering the application with LinkedIn LinkedIn generates a client ID and client secret for your application. You'll need these values to connect the application to PingOne. ### Steps 1. Go to the [LinkedIn Developers page](https://developer.linkedin.com). 2. Click **Create app**. You'll be prompted to sign on to your LinkedIn account. 3. Enter the following information: * **App name**: A unique name for the application. It must be fewer than 50 characters. * **LinkedIn Page**: The LinkedIn company page to be associated with your application. * **App logo**: The logo users see when they authenticate to your application. 4. Click **Create app**. 5. On the **Auth** tab, copy the **Client ID** and **Primary Client Secret** to a secure location. 6. In the **OAuth 2.0 Settings** section, you'll see an empty field for **Redirect URLs**, which is the path in your application that users are redirected to after they have authenticated with LinkedIn. Leave this value blank for now. ### Learn more Learn more in [Sign in with LinkedIn](https://learn.microsoft.com/en-us/linkedin/consumer/integrations/self-serve/sign-in-with-linkedin) in the Microsoft LinkedIn documentation. ## Adding LinkedIn as an identity provider in PingOne Configure the IdP connection in PingOne. ### Before you begin Ensure that registration is enabled in the authentication policy. Learn more in [Editing an authentication policy](../authentication/p1_edit_auth_policy.html). You should have the following information ready: * Client ID * Client secret ### Steps 1. In the PingOne admin console, go to **Integrations > External IdPs** and click **[icon: plus, set=fa]**. 2. Click **LinkedIn (Legacy)**. 3. Click **Next**. 4. On the **Add External Identity Provider **page, enter the following information: * **Name**: A unique identifier for the IdP. * **Description** (optional): A brief description of the IdP. * **Population**: A population that overrides the authentication policy's registration population and enables just-in-time registration from the identity provider. | | | | - | ------------------------------------------------------------------------------------------------------- | | | You can't change the **Icon** and **Sign-on button** in accordance with the provider's brand standards. | 5. Click **Next**. 6. Configure the connection and enter the following information: * **Client ID**: The client ID that you copied earlier from the IdP. You can find this information on the **Auth** page on the [LinkedIn Developers page](https://developer.linkedin.com). * **Client secret**: The application secret that you copied earlier from the IdP. You can find this information on the **Auth** tab on the [LinkedIn Developers page](https://developer.linkedin.com). * **Callback URL**: Copy the **Callback URL** to a secure location. You'll provide this value to the IdP later. 7. Click **Next**. 8. Define how the PingOne user attributes are mapped to identity provider attributes. Learn more in [Mapping attributes](../directory/p1_editsamlattributemapping.html). * Enter the PingOne user profile attribute and the external IdP attribute. Learn more about attribute syntax in [Identity provider attributes](p1_idp_attributes.html). * To add an attribute, click **[icon: plus, set=fa]**. * To use the advanced expression builder, click the **Gear** icon. Learn more in [Using the expression builder](../pingone_expression_language/p1_use_expression_builder.html). * Select the update condition, which determines how PingOne updates its user directory with the values from the IdP. The options are: * **Empty only**: Update the PingOne attribute only if the existing attribute is empty. * **Always**: Always update the PingOne directory attribute. 9. Click **Save**. 10. To enable the IdP, click the toggle at the top of the details panel to the right (blue). | | | | - | ------------------------------------------------------------------ | | | You can disable the IdP by clicking the toggle to the left (gray). | ## Adding the callback URL to the LinkedIn Developer page Copy the callback URL from the PingOne admin console and paste it into the LinkedIn Developers page. ### Steps 1. In the PingOne admin console, go to **Integrations > External IdPs** and browse or search for the appropriate IdP. 2. Click the IdP to open the details panel. 3. Click the **Connection** tab. 4. Copy the **Callback URL** to a secure location. 5. Go to the [LinkedIn Developers page](https://developer.linkedin.com). 6. In the **My Apps** list, select the appropriate application. 7. On the **Auth** tab, click the **Pencil** icon in the **OAuth 2.0 settings** section. 8. Click **[icon: plus, set=fa]Add redirect URL**. 9. Paste the callback URL that you copied from the PingOne admin console. 10. Click **Update**. ## Next steps * [Add the IdP to your authentication policy](../authentication/p1_edit_auth_policy.html). * [Apply the authentication policy to your application](../applications/p1_apply_auth_policy_to_applications.html).