Ping Identity setup
Last updated
Last updated
More information
Snyk privacy policy© 2024 Snyk Limited | All product and company names and logos are trademarks of their respective owners.
This page explains how to set up a Ping Identity Application and connect it to Snyk to facilitate SSO.
Before configuring your Ping Identity Application to use SSO with Snyk, obtain an entity ID and a reply URL (Assertion Consumer Service URL) from Snyk. Then follow these steps:
In the left menu, select your Group, then Settings.
Select SSO and copy the values under Entity ID and ACS URL or leave the browser tab open for easy access.
Navigate to Ping Identity and select Applications in the Connections menu. Click on the plus sign to create a new application.
Name your application appropriately, select SAML Application, and click Configure.
Enter the details you copied from Snyk, the ACS URL and Entity ID, and select Save.
Select Configuration and download the signing certificate in PEM format.
Scroll further down and copy the Single Signon Service details.
Return to the the Snyk portal and paste the single sign-in URL copied at step 2 into the Sign in URL field.
Open the downloaded certificate in your preferred text editor, copy the text and paste it into the Snyk X509 signing certificate field, and add the relevant domains that are supported by this SSO connection. Finally, verify if an IdP-initiated workflow should be enabled and then click Create Auth0 connection if you are creating a completely new connection or Save changes if you are editing an existing connection.
In Ping Identity, select Attribute mappings and click the pencil to edit.
Click the cog icon and add the following attributes:
email: Email Address
username: Username
name: the expression user.name.given + ' ' + user.name.famil
y; click the cog icon to enter an advanced description.
In the Snyk portal, decide how new users should be treated when signing in and choose the option you would like to use: Group member, Org collaborator, or Org admin.
Change the profile attributes to the attribute names you entered in Ping Identity then click Save changes.
Verify you can log in, either with the direct URL at the top of Step 3 Snyk SSO settings (not shown in the image) or by going to the generic SSO login.
As a final step, enable the application and assign it to users.