PingOne

The integration process between PingOne, a global authentication authority, and LogScale enables secure user access through SAML, OAuth, and OpenID Connect standards. Step-by-step instructions detail the configuration of SP connections, browser SSO settings, attribute contracts, and metadata file generation within PingOne for successful LogScale integration.

PingOne serves as a global authentication authority that allows any user to access securely LogScale. It integrates with identity standards like SAML, OAuth, and OpenID Connect. See the Ping Identity Documentation for more information on PingOne.

Prerequisites to configure PingOne

Prior to configuring PingOne for authentication with LogScale make sure to have the following:

Configure PingOne to integrate with LogScale

There are several steps to configure the PingOne for integration with LogScale.

To configure your PingOne account:

  1. In the dashboard click Add Environment.

    PingOne dashboard interface showing the 'Add Environment' button highlighted for creating a new environment.

    Figure 68. Add environment to account


  2. Select Customer Solution and click Next.

    PingOne environment type selection screen with 'Customer Solution' option highlighted.

    Figure 69. Select Customer Solution


  3. Click Next.

    PingOne environment configuration screen showing options to proceed to the next step.

    Figure 70. Add environment to account


  4. Name your deployment and click Next.

    PingOne deployment naming interface where users enter a name for their environment.

    Figure 71. Name the deployment


Your dashboard should appear similar to this:

Fully configured PingOne dashboard showing the created environment ready for connection configuration.

Figure 72. PingOne account configured


Once you have created the environment, proceed with configuring the environment.

  1. Click your environment you created. You should see a page similar to the following:

    PingOne environment overview page showing the newly created environment with configuration options and navigation menu.

    Figure 73. Open the environment


  2. Navigate to Connections and Applications and click the + (plus) icon.

    PingOne Connections and Applications page with the plus icon highlighted to add a new application connection.

    Figure 74. Navigate to create a connection


  3. Enter a name in the Applications Name and select SAML Application. Click Configure.

    PingOne application creation interface with Application Name field and SAML Application type selection option.

    Figure 75. Create a connection


  4. Click the radio button for Manually Enter and enter the ACS URL and Entity ID. Click Save.

    PingOne SAML configuration screen showing the manual entry form with fields for ACS URL and Entity ID.

    Figure 76. Enter ACS URL and Entity ID


  5. Click Configuration. This is where you will find the SAML settings you will use later.

    PingOne Configuration page displaying SAML settings including endpoints and certificate information.

    Figure 77. Metadata created and download options


  6. Click to download the Identity Provider Certificate and save this in a certs directory where your native app is running.

The last task in the PingOne dashboard is to add users.

  1. In the PingOne dashboard click Identities then Users and Add User.

    PingOne Identities section showing Users tab with Add User button highlighted.

    Figure 78. Add users in the dashboard


  2. In the pop-up that appears scroll down and enter the username as an email address and click Save.

    PingOne user creation form showing email address entry field and save button.

    Figure 79. Enter username


  3. Once the user is created, click Reset Password. This will allow you to set a password for the user to use at login.

    PingOne user management page showing a created user with Reset Password option highlighted.

    Figure 80. User created and reset password


Now you are ready to configure LogScale, using the metadata information and certificate you just exported.

Configure LogScale to use PingOne

When PingOne is configured to work with LogScale, you must configure LogScale to work with PingOne.

To configure PingOne to work with LogScale, you must set the configuration variables as described in Configure SAML for LogScale Self-Hosted.

Test the PingOne integration setup

Once all of the necessary steps to set up the PingOne authentication for LogScale are completed, you need to test the setup.

  1. Go to a Terminal and start LogScale with the following command:

    shell
    ./run.sh

    Allow two to three minutes for LogScale to start.

  2. Connect to localhost in a browser. It should redirect you to a PingOne login.

  3. Sign in to your PingOne. You should be taken to LogScale.