The authentication default for the PingAccess administrative console is HTTP Basic Authentication. Basic Authentication uses the HTTP Authorization header to transmit the user name and password credentials. The PingAccess server response contains a PA_UI cookie, which is a signed JSON web token (JWT). Subsequent HTTP requests send this cookie for authentication rather than the less secure HTTP Authorization header.

Basic Authentication supports one user: Administrator. The Administrator user name cannot be changed. If you want to allow more than one user to access the admin UI, you should use single sign-on (SSO) authentication.

  1. Click Settings and then go to Admin Authentication > Basic.
  2. Click Enable.
  3. Click Save.
  4. Click Settings and then go to Admin Authentication > UI Authentication.
  5. In the Authentication Method section, select Basic Authentication.
  6. Click Save.