Page created: 28 Oct 2021
|
Page updated: 14 Dec 2021
Learn how to direct Cloudflare sign on using PingFederate (SP-initiated sign on).
- Configure PingFederate to authenticate against an identity provider (IdP) or datastore containing the users requiring application access.
- PingFederate’s X.509 certificate should be exchanged to verify the signature in SAML assertions.
- An Email Attribute is required in the assertion, either the SAML Subject or another SAML attribute per the SAML configuration. The value of the Email Attribute must be a valid email address. It is used to uniquely identify the user in the organization.
- Populate Cloudflare with at least one user to test access.
-
Create a PingFederate
service provider (SP) connection for Cloudflare:
-
Add the PingFederate IdP
connection to Cloudflare
-
Test the PingFederate
SP-initiated SSO integration: