Use the application catalog to add
- In PingOne, go to .
- In the Search for applications field, enter Amazon Web Services.
- Click the Amazon Web Services entry to open the details panel.
Review the following:
- Name. Enter a new name to replace the default application name (optional).
- Icon. Select a new image to replace the default application icon (optional).
- Entity ID. The field is pre-populated with the correct value for AWS.
- Click Next.
On the Map Attributes page, review the AWS to PingOne attribute mappings.
Common attributes are pre-populated with the
SAMLsubject, the SAML role session name, and the SAML session duration. You must map any required attributes before you can continue. SAML (Security Assertion Markup Language) A standard, XML-based, message-exchange framework enabling the secure transmittal of authentication tokens and other user attributes across domains. Option Description To change an attribute mapping Enter or select a new attribute in the PingOneMappings list. To add an attribute Click + Add. Enter the appropriate attribute mappings. To use the expression builder, or to map the attribute to a literal string value, click the Gears icon. For more information, see Using the expression builder. To designate the attribute as required Select the Required check box. To delete an attribute mapping Click the Delete icon.
- Click Next.
For Select Groups, enter the name of the groups that you
want to have access to the application.
By default, all users have access to the application. Assigning groups restricts application access to only those groups.
The application is now configured for PingOne. You might have to perform additional configuration on the application side.
To see applications that have already been configured, click the Configured tab on the Application Catalog page.
On the Connection Details page, you can download or copy metadata
required by the application for
This information includes:
- PingOne metadata
- The PingOne signing certificate
- The PingOne Issuer ID
URL URL URL (Uniform Resource Locator) Identifies a resource according to its Internet location.
- The PingOne SSO Service URL
- The PingOne
identity provider (IdP)Metadata URL identity provider (IdP) IdP A service that manages identity information and provides authentication services to relying clients or service providers (SPs) within a federated or distributed network.
- The PingOne Initiate SSO URL
After you configure the application, you can manage it at Editing an application.. For more information about advanced settings, see