PingOne

The integration process between PingOne, a global authentication authority, and LogScale enables secure user access through SAML, OAuth, and OpenID Connect standards. Step-by-step instructions detail the configuration of SP connections, browser SSO settings, attribute contracts, and metadata file generation within PingOne for successful LogScale integration.

PingOne serves as a global authentication authority that allows any user to access securely LogScale. It integrates with identity standards like SAML, OAuth, and OpenID Connect. See the Ping Identity Documentation for more information on PingOne.

Prerequisites to configure PingOne

Prior to configuring PingOne for authentication with LogScale make sure to have the following:

Configure PingOne to integrate with LogScale

There are several steps to configure the PingOne for integration with LogScale.

To configure your PingOne account:

  1. In the dashboard click Add Environment.

    PingOne dashboard interface showing the 'Add Environment' button highlighted for creating a new environment.

    Figure 54. Add environment to account


  2. Select Customer Solution and click Next.

    PingOne environment type selection screen with 'Customer Solution' option highlighted.

    Figure 55. Select Customer Solution


  3. Click Next.

    PingOne environment configuration screen showing options to proceed to the next step.

    Figure 56. Add environment to account


  4. Name your deployment and click Next.

    PingOne deployment naming interface where users enter a name for their environment.

    Figure 57. Name the deployment


Your dashboard should appear similar to this:

Fully configured PingOne dashboard showing the created environment ready for connection configuration.

Figure 58. PingOne account configured


Once you have created the environment, proceed with configuring the environment.

  1. Click your environment you created. You should see a page similar to the following:

    PingOne environment overview page showing the newly created environment with configuration options and navigation menu.

    Figure 59. Open the environment


  2. Navigate to Connections and Applications and click the + (plus) icon.

    PingOne Connections and Applications page with the plus icon highlighted to add a new application connection.

    Figure 60. Navigate to create a connection


  3. Enter a name in the Applications Name and select SAML Application. Click Configure.

    PingOne application creation interface with Application Name field and SAML Application type selection option.

    Figure 61. Create a connection


  4. Click the radio button for Manually Enter and enter the ACS URL and Entity ID. Click Save.

    PingOne SAML configuration screen showing the manual entry form with fields for ACS URL and Entity ID.

    Figure 62. Enter ACS URL and Entity ID


  5. Click Configuration. This is where you will find the SAML settings you will use later.

    PingOne Configuration page displaying SAML settings including endpoints and certificate information.

    Figure 63. Metadata created and download options


  6. Click to download the Identity Provider Certificate and save this in a certs directory where your native app is running.

The last task in the PingOne dashboard is to add users.

  1. In the PingOne dashboard click Identities then Users and Add User.

    PingOne Identities section showing Users tab with Add User button highlighted.

    Figure 64. Add users in the dashboard


  2. In the pop-up that appears scroll down and enter the username as an email address and click Save.

    PingOne user creation form showing email address entry field and save button.

    Figure 65. Enter username


  3. Once the user is created, click Reset Password. This will allow you to set a password for the user to use at login.

    PingOne user management page showing a created user with Reset Password option highlighted.

    Figure 66. User created and reset password


Now you are ready to configure LogScale, using the metadata information and certificate you just exported.

Configure LogScale to use PingOne

When PingOne is configured to work with LogScale, you must configure LogScale to work with PingOne.

Important

For Cloud customers, gather the information on Requirements for identity provider configuration and Configure SAML for LogScale Cloud, then contact Support to set up your chosen IdP service.

Test the PingOne integration setup

Once all of the necessary steps to set up the PingOne authentication for LogScale are completed, you need to test the setup.

  1. Go to a Terminal and start LogScale with the following command:

    shell
    ./run.sh

    Allow two to three minutes for LogScale to start.

  2. Connect to localhost in a browser. It should redirect you to a PingOne login.

  3. Sign in to your PingOne. You should be taken to LogScale.