PingOne Cloud (Enterprise)
The PingOne Cloud for Enterprise suite provides single sign-on (SSO) and identity management for cloud-based applications.
Information Stored
The following table describes the available integration tasks and stored data.
Available Integration Tasks
|
|
Application Roster
|
|
Application Access
|
|
Application Discovery
|
|
SSO Application Roster
|
Note:The SSO Name is the name of the application managed by the SSO provider.
|
SSO Application Access
|
Note:Please note the following:
|
•
|
The SSO Name is the name of the application managed by the SSO provider. |
|
•
|
The SSO Display Name is the display name of the application managed by the SSO provider. |
|
•
|
Depending on the application, the SSO Name and SSO Display Name may appear the same or different. Therefore, both names are stored in SaaS Management. |
|
Note:The information stored is subject to change as enhancements are made to the product.
Minimum Permissions Required
Global Administrator is required to generate or renew an API key. For details, refer to Ping Identity's documentation View or renew directory API credentials.
Authentication Method
Basic
Credentials Required
Integrating PingOne Cloud (Enterprise) with SaaS Management
To integrate PingOne Cloud (Enterprise) with SaaS Management, perform the following.
To integrate PingOne Cloud (Enterprise) with SaaS Management:
|
1.
|
Sign in to the PingOne admin portal with your PingOne Account Username and Account Password. |
|
2.
|
Obtain your API credentials (Client ID and API Key) by navigating to Setup, pointing to Directory Settings, and clicking API Credentials. |
|
3.
|
Add a poll subscription by navigating to Dashboard, pointing to Reporting, and clicking Subscriptions. |
|
4.
|
Click Add Subscription and enter the following. |
|
a.
|
Enter a Subscription Name. |
|
c.
|
For Subscription Type, enter Poll. |
|
d.
|
For Batch Size, enter 1000 (maximum value). |
|
5.
|
Select the poll subscription you have added and click the expand icon on the right to display the details. |
|
6.
|
Copy the Poll URL to obtain the Poll Subscription ID. |
Example Poll URL: https://admin-api.pingone.com/v3/reports/d71ffd5b-97aa-47fb-b741-a9fa350dca71/poll-subscriptions/271ec0c3-f707-4e0f-9249-4bca0dcf8cac/events
The Poll Subscription ID is the value that follows poll-subscriptions in the Poll URL. For our example, the value is 271ec0c3-f707-4e0f-9249-4bca0dcf8cac
For further details, refer to the Ping Identity documentation https://docs.pingidentity.com/bundle/pingone/page/mcc1564020494458.html
Note:For the integration task SSO Application Access:
|
•
|
Audit events are kept for 7 days and then discarded. |
|
•
|
The API is read only one time. Once audit events are consumed, they cannot be retrieved again. |
|
8.
|
Copy and paste the following PingOne information in SaaS Management. |
Tip:Once the Application Discovery integration task has been enabled after 24 hours, you can add the discovered SSO enabled applications to your list of Managed SaaS Applications. For details, refer to Adding Discovered SSO Enabled Applications to Your List of Managed SaaS Applications.
API Endpoints
Application Roster and Application Access
https://directory-api.pingone.com/api/directory/user
Application Discovery
https://admin-api.pingone.com/v3/applications/templates/available/<Account ID>
Note:Account ID is the same as Client ID.
SSO Application Roster
https://directory-api.pingone.com/api/directory/user
https://admin-api.pingone.com/v3/reports/<Account ID>/poll-subscriptions/<Poll Subscription ID>/events
SSO Application Access
https://admin-api.pingone.com/v3/reports/<Account ID>/poll-subscriptions/<Poll Subscription ID>/events