1. Sign on to the Amazon Developer Console.
  2. On the navigation menu, click Login with Amazon.
  3. Click Create a New Security Profile.
  4. On the Name your new Security Profile screen:
    1. In the Security Profile Name field, enter a name, such as PingFederate.
    2. In the Security Profile Description field, enter a description, such as For PingFederate Social Login with Amazon.
    3. In the Consent Privacy Notice URL field, enter a URL that contains a privacy notice, such as http://www.example.com/privacy.html, then click Save.
  5. On the Login with Amazon screen, locate the security profile that you just created, hover over the Settings icon, then click Web Settings.
  6. On the Security Profile Management screen, click Edit:
    1. In the Allowed Origins field, enter the hostname or virtual hostname and port of your PingFederate server.
    2. In the Allowed Return URLs field, enter the hostname or virtual hostname and port of your PingFederate server followed by the Amazon adapter instance endpoint.
      Note: The default endpoint is /amazon-authn. If you set a custom endpoint here, enter the matching value in the Authorization Callback Endpoint field of your adapter instance configuration when you complete the steps in Configuring an adapter instance.
    3. Click Save.
  7. Click Show Secret and note the Client ID and Client Secret to use in Configuring an adapter instance.