Add a Basic SSO (password vaulting) application
About this task
To use Basic SSO, you first need to enable it on the Setup → Dock → Configurations page. See Configuring the dock when using an identity bridge or (if you’re using PingOne directory as your identity repository) Configure the dock when using PingOne for Enterprise Directory for more information.
You’ll need to install the PingOne browser extension to add Basic SSO applications. If you’ve not already installed the browser extension, you will be prompted to do so when adding the app.
Basic SSO (password vaulting) uses the PingOne for Enterprise browser extension to relay credentials to the target cloud application. User credentials are encrypted (128 bit AES) with a user-specified privacy key and are stored in PingOne for Enterprise. The privacy key is stored in the local file system and is never sent to PingOne for Enterprise. PingOne for Enterprise uses stored encrypted credentials for single sign-on (SSO) to your cloud applications. The browser extension can access the encrypted credentials only after a user is authenticated to the identity repository.
Steps
-
Click the Applications tab. The My Applications page is displayed.
-
Click Add Application and select New Basic SSO Application.
-
If you’ve not installed the PingOne browser extension for the current browser, you’re prompted to install it. When the browser extension is installed, click Begin to launch the wizard for adding new Basic SSO applications. The wizard will guide you through training the browser extension for password vaulting into the application.
When you’re finished, the new Basic SSO application is added to your My Applications list.
-
Make the new application available to your users.
See Authorize group access to applications for instructions.