Use Cases

Configuring a PingOne for Enterprise authentication policy for PingID MFA using CyberArk PVWA

For CyberArk and Ping Identity best practices, deploy multi-factor authentication (MFA) for all single sign-on (SSO) requests to the CyberArk Password Vault Web Access (PVWA).

About this task

Configure the PingOne for Enterprise authentication policy to invoke PingID MFA.

Steps

  1. Go to Setup → Authentication Policy.

  2. In the Authentication Providers section, select the Enable authentication policy checkbox.

  3. In the Authentication Policy Context section, in the Apply on application launch section, select the applicable CyberArk application checkboxes.

    Result:PingID MFA is enabled for SAML-based SSO authentication to the CyberArk PVWA.