Contents x
    PingOne for Enterprise
    • 28 Jul 2021
    • 1 Minute to read
    • Contributors
      Contents

      PingOne for Enterprise

      • Updated on 28 Jul 2021
      • 1 Minute to read
      • Contributors
        Article Summary

        This article describes how to configure PingOne for Enterprise for use as an identity provider for Perimeter 81. 

        • Configuring your PingOne for Enterprise account
        • Configuring Perimeter 81

        Please follow the steps below:

        Note: To successfully integrate PingOne for Enterprise and Perimeter 81, you must have admin access on both platforms.

        Configuring your PingOne for Enterprise account

        1. Log in to your PingOne for Enterprise account.
        2. On the upper toolbar in your PingOne for Enterprise screen select Applications. This takes you to the My Applications screen.
        3. Click on SAML. Open the Add Application drop-down and select New SAML Application
          360011167980ScreenShot2020-04-19at135641.png
        4. On the pop-up window, fill in the following details:
        • Application Name: Perimeter 81
        • Application Description: Perimeter 81 SAML Connection
        • Category: Information Technology
        • Graphics: Add the Perimeter 81 Logo (Optional)

        360011168040ScreenShot2020-04-19at135738.png
        6. Click Continue to Next Step to proceed.
        7. On the Application Configuration window click on I have the SAML configuration.
        8. Fill in the following information:

        • Signing Certificate: PingOne Account Origination Certificate
        • Protocol Version: SAML v 2.0
        • Assertion Consumer Service (ACS): https://auth.perimeter81.com/login/callback?connection={{WORKSPACE}}-oc
        • Entity ID: urn:auth0:perimeter81:{{WORKSPACE}}-oc

        Note: The workspace should be changed to your Perimeter 81 tenant name.

        360011163079ScreenShot2020-04-19at140109.png
        9. Click Continue to Next Step to proceed. 

        10. On the SSO Attribute Mapping window, you will need to map the following attributes: | Application Attribute | Identity Bridge Attribute or Literal Value |
        | -- | -- |
        | email| Email|
        | given_name| First Name|
        | family_name| Last Name|
        | groups| memberOf|

        360011163019ScreenShot2020-04-19at140603.png
        11. Click Continue to Next Step to proceed.

        12. On the Group Access window select the user groups that should have access to the PingOne for Enterprise Login Page. To allow access to all users we recommend adding Users@Directory.
        360011168000ScreenShot2020-04-19at140414.png
        13. Click Continue to Next Step to proceed.
        14. On the Review Setup window copy the "idpid" and click on the Download link next to Signing Certificate.
        360011168620ScreenShot2020-04-19at155032.png
        15. Click Save and Close.
        16. On My Applications screen verify that the Perimeter 81 application is set to Enabled - Yes.
        360011167960ScreenShot2020-04-19at140727.png

        Configuring Perimeter 81

        You need to configure the integration from the Perimeter 81 side.

        1. Log in to your Perimeter 81 Management Platform, and navigate to Settings and then Identity Providers.
        2. Select + Add Provider.
          360008600320addprovider12.png
        3. Select SAML 2.0 Identity Cloud.
        4. Fill in the Sign In URL with the following URL: https://sso.connect.pingidentity.com/sso/idp/SSO.saml2?idpid={{idpid}} (fill in the idpid from step 14).
        5. Add your organization domains.
        6. Paste the certification from the downloaded idp-signing.crt file (begin and end line included).
          360011168680ScreenShot2020-04-19at155827.png
        7. Select Save.

        Access Error troubleshooting

        If your users are getting access error after the configuration, please check these steps.

        Was this article helpful?
        What's Next