Audience: System administrators installing and configuring Sapho Server
Ping Identity is another security provider supported by Sapho that you can use to authenticate the users of Sapho micro apps.
Ping Identity setup
Go to the Security tab and select Ping Identity.
You’ll see the following fields in the dialog window:
- SSO Endpoint URL - the URL of the Ping Identity server.
- Redirect URI Parameter - the URI where the user should be redirected after a successful login (this is the URI of your Sapho Server).
- Token Name - the name of the token attribute Sapho receives after a successful login and extracts user information from.
- Cipher - the type of cipher to be used to decode token value.
- Use Sun JCE - selected if the Java Cryptography Extension is to also be used.
- Password - the password to be used to decode the token value.
- Login Attribute - the name of the login attribute in the Ping Identity schema.
- User Name Attribute - the name of the user name attribute in the Ping Identity schema.
- Email Attribute - the name of the email attribute in the Ping Identity schema.
Click DONE when you are finished entering your Ping Identity security provider settings.
You can now set which micro apps use Ping Identity for access in the Micro Apps with Access section.
Ping Identity groups
Here’s how to use Ping Identity groups for access management within Sapho:
- Go to the Provider Details page of your Ping Identity security provider.
- Fill in the Group Attribute field according to your Ping Identity settings. You should use the name of the group attribute from your Ping Identity schema.
- Manually register the Ping Identity groups you want to use within Sapho for access management by clicking ADD NEW GROUP.
- Click SAVE SETTINGS.
Now you’ll be able to use Ping Identity groups throughout Sapho, i.e. you can give access to micro apps based on your Ping Identity groups or send notifications to users based on their assigned groups.