Using the administrative API and a new token to disable SSO - PingAccess - 8.0

PingAccess

bundle
pingaccess-80
ft:publication_title
PingAccess
Product_Version_ce
PingAccess 8.0 (Latest)
category
Product
pa-80
pingaccess
ContentType_ce

If basic authorization is disabled but administrative APIapplication programming interface (API) A specification of interactions available for building software to access an application or service. OAuthOAuth A standard framework that enables an application (OAuth client) to obtain access tokens from an OAuth authorization server for the purpose of retrieving protected resources on a resource server. is enabled, you can also use the administrative API to disable single sign-on (SSO)single sign-on (SSO)sso The process of authenticating an identity (signing on) at one website (usually with a user ID and password) and then accessing resources secured by other domains without re-authenticating..

  1. Retrieve a valid token for admin API OAuth from your token provider.
  2. Submit a PUT request to https://<pa-host>/pa-admin-api/<api version>/auth/oidc with the valid access token, where <pa-host> is the hostname:port for the PingAccess admin node and <api-version> is the API version (v3 on PingAccess 5.0 or later, and v2 on 4.X).

    The request body must contain:

    {
     "enabled": false,
    }

You can sign on normally and reconfigure the SSO from Settings > Admin UI Authentication > Authentication Method.