• First, add an OIDC web application and configure it so that PingOne SSO can serve as the identity provider for 1Password business accounts.
  • Then, access 1Password and configure both 1Password and PingOne SSO so that the two services can communicate with each other. Test the connection to ensure it works.
  • Finally, specify who will be able to access 1Password using SSO and how many days they have to use SSO to access 1Password before they’ll be locked out of their accounts.

Note that this type of connection does not support automated user provisioning. If this functionality is necessary, use the 1Password Business Provisioning Connector.

Before you begin

Ensure that:

  • You have PingOne SSO and 1Password Business open and available.
  • You have administrator privileges in the PingOne SSO environment.
  • You are in the Administrators or Owners group in your 1Password Business account.
  • If you do not want to turn on SSO for everyone, ensure that the 1Password users who you want to provide SSO access to are members of established 1Password groups.

Your 1Password username and email address must match a valid PingOne SSO user in your environment. The connection cannot be made if 1Password cannot verify that the user exists.