1. Start PingFederate.
  2. In a web browser, open the sample application:

    https://pf_host:pf_port/SpSample

    If you deployed the application elsewhere, modify the host name accordingly. For help, see Advanced installation and configuration.
  3. If you customized your configuration by creating different IdP connections or deploying the SP application on a separate server, update the application configuration as shown in SP sample application configuration reference.
  4. Click Single Sign-On to begin SP-initiated SSO.

    You are redirected to the IdP login page.

    Note: If you are already signed on at the IdP, this step simply redirects back to this page, unless Force Authn selected. Click Single Logout to try again.
  5. On the identity provider sign on page, enter the following values:

    Username: joe

    Password test

  6. Click Login.
    Having completed an SP-initiated SSO, you are redirected back to the Service Provider main page, which now displays attributes sent from the IdP in the SAML assertion.
  7. Click Single Logout to begin an SP-initiated SLO transaction.

    Upon successful completion of this transaction, the service provider main page is shown again but without attributes listed.

    Note: Clicking Local Logout in the top menu has the same effect. However, since you are still logged on at the IdP, if you click Single Sign-On again (either here or at the IdP), you are not required to re-authenticate. This page is redisplayed immediately with SSO attributes available from a new IdP-generated SAML assertion.