Creating an OIDC application in PingOne - PingOne - PingFederate - PingOne MFA - PingOne Cloud Platform

Page created: 14 Jul 2022 |

Page updated: 10 Mar 2023

| 2 min read

PingFederate Integration PingOne Services PingOne MFA PingOne Cloud Platform PingOne Product Language English Integration Content Type Product documentation Audience Administrator

Create an application in PingOne to allow PingFederate to access PingOne authentication flows and policy decisions. This application represents the user-facing sign-on experience.

For information about application types, see Applications in the PingOne documentation.

On the PingOne MFA console, go to Connections > Applications.
Click the + icon.
Create the application profile by entering the following:
- Application name: A unique identifier for the application.
- Description (optional): A brief characterization of the application.
- Icon (optional): A graphic representation of the application. Use a file up to 1MB in JPG, JPEG, GIF, or PNG format.
Select OIDC for the Application Type.
OIDC applications have the following abilities:
OIDC apps
- Authentication methods:
  
  SMS
  
  Email
  
  Third-party authentication apps
  
  Push notifications
- Device integrity checks to prevent users from pairing or authenticating with compromised devices.
- Client Initiated Backchannel Authentication (CIBA) support.
Click Save.
Click the Configuration tab, then click the Pencil icon.
Click to expand the General section.
Note the application credentials.
You'll use these in Configuring an adapter instance.
In the Response Type section, select only Token and ID Token.
In the Grant Type section, select only Implicit. Click Save. Close the Application Details pane.
In the Redirect URLs field, enter any value, such as https://www.example.com. Click Save.
Redirect URLs are not relevant for this integration.
Click the Resources tab, then click the Pencil icon.
Click and drag scopes in the left column to add them to the Added Scopes column on the right. Click Save.
Scopes are not relevant for this integration.
Click the Attribute Mappings tab, then click the Pencil icon.
Map user attributes to attributes in your application. Click Save.
If you created an OIDC application for mobile device or CIBA authentication, enter your Android and iOS configuration details.
1. Click the Authenticator tab, then click the Pencil icon.
2. Click Add for your mobile app type.
3. Enter your app details.
  For help, see the following sections of the Ping Identity GitHub site:
  - PingOne Mobile SDK - Android
  - PingOne Mobile SDK - iOS
4. Optional: Turn on the Device Integrity Check.
  
  For more information, see Authentication method management.
5. Click Save.
Go to Connections > Applications, and click the toggle to turn on the application.

Creating an OIDC application in PingOne - PingOne - PingFederate - PingOne MFA - PingOne Cloud Platform - PingOne Services

PingOne MFA Integration Kit