Page created: 15 Apr 2020
|
Page updated: 8 Feb 2022
| 2 min read
Product PingFederate Integration Zscaler Private Access Zscaler Language English Integration Content Type Product documentation Audience Administrator
Register PingFederate as an identity provider in Zscaler and download the SAML metadata information.
For more information about configuring Zscaler, see Configuring an IdP for Single Sign-On and Enabling SCIM for Identity Management in the Zscaler Private Access documentation.
- Sign onto Zscaler Private Access as an administrator.
- On the Administration → Authentication → Settings page, click Add IdP Configuration.
-
On the Add IdP Configuration modal, on the IdP
Information tab, complete the basic information. Click
Next.
Note: If you cannot select an authentication domain, contact Zscaler. For more information, see Configuring Authentication Settings in the Zscaler Private Access documentation.
-
On the SP Metadata tab, click Download
Metadata. Save the file as
sp_metadata.xml
. - Click Download Certificate. You will use this in Creating a single sign-on connection. Click Next.
-
On the Create IdP tab, complete the information from
PingFederate.
- For the IdP Metadata File, upload the metadata.xml file that you exported in Exporting SAML metadata from PingFederate.
- For the IdP Certificate, upload your PingFederate signing certificate. For instructions, see Managing digital signing certificates and decryption keys in the PingFederate documentation.
-
In the Single Sign-On URL field, enter your
PingFederate single sign-on endpoint based on the following.
https://pf_host:pf_port/idp/SSO.saml2
- In the IdP Entity ID field, enter the SAML 2.0 Entity ID that you created in Enabling single sign-on in PingFederate.
-
In the SCIM section, configure SCIM provisioning. Click
Save.
- For SCIM Sync, click Enable.
- Note the SCIM Service Provider Endpoint and Bearer Token. You will use these in Creating a provisioning connection.