1. Retrieve a valid token for admin API OAuth from your token provider.
  2. Submit a PUT to https://<pa-host>/pa-admin-api/<api version>/auth/oidc with the valid access token, where <pa-host> is the hostname:port for the PingAccess admin node and <api-version> is the API version (v3 on PingAccess 5.0 or later, and v2 on 4.X).

    The request body must contain:

    {
     "enabled": false,
    }

You can sign on normally and reconfigure the SSO from Settings > Admin UI Authentication > Authentication Method.