Configuring single sign-on to ADAudit Plus using Ping Identity
Step 1: Configure ADAudit Plus in Ping Identity
Log in to the Ping Identity portal.
Click Applications → My Applications → SAML → Add Application → New SAML Application.
On the Application Details page, enter Application Name, Application Description, and Category. You can choose to assign an application icon. Click Continue to Next Step.
On the Application Configuration page, provide the ACS URL and Entity ID.
Note: To find the values for the ACS URL and Entity ID, log in to the ADAudit Plus console, navigate to Admin → Administration → Logon Settings → Single Sign-On. Check the box next to Enable Single Sign-On, andselect SAML Authentication → Identity Provider (IdP) → Ping Identity. Copy the ACS/Recipient URL value, and paste it in the ACS URL field. Copy the Issuer URL/Entity ID value, and paste it in the Entity ID field.
Click Save & Publish.
Once the configuration is complete, the metadata file can be downloaded.
Step 2: Configure Ping Identity in ADAudit Plus
Log in to the ADAudit Plus web console with admin credentials. Navigate to Admin → Administration → Logon Settings → Single Sign-On. Check the box next to Enable Single Sign-On, and select SAML Authentication.
Select Okta from the Identity Provider (IdP) drop-down. Under SAML Configuration Mode, select Upload Metadata File. Click Browse, and upload the metadata file obtained at the end of Step 1.
If you want to enable single logout, follow these steps:
Copy the SP Logout URL in ADAudit Plus, and paste it in the Single Logout Endpoint field in Ping Identity’s SAML Application page.
Download the X.509 Certificate in ADAudit Plus. In Ping Identity’s SAML Application page, click on Browse next to Primary Verification Certificate, and upload the downloaded certificate.