Ensure you have an authorization server configured to authenticate users and issue access tokens. For more information, see Configuring the OpenID provider.

To access the PingCentral API with SSO enabled:

  1. Obtain an access token from the authorization server's response. This token will authorize your API requests.

    The access token is a long string of characters and acts as your proof of authorization to access the requested resources.

  2. Include the access token in the API request's authorization header. The PingCentral API server will verify the token's validity, authenticity, and scopes to ensure the necessary permissions.
    GET /api/resource HTTP/1.1
    Host: pingcentral.example.com
    Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyLCJhdWQiOiJhcGkiLCJpc3MiOiJpc3N1ZXIifQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c