Ping Identity

Follow the below steps to configure your SSO login with Ping Identity.

1. In the Ping Identity Admin Console, go to Applications list (Connections-> Applications)

2. Click on + icon and select OIDC Web App in the Application Type.
3. Configure the Application as follow:

   1. Resource Access: Click on Resource Access (Overview -> Resource Access) and select email and profile scopes and click on Save.
   2. Configuration: Click on Configuration tab, and click on Edit icon:

      • Under Response Type: Check Code and Token

      • Under Grant Type: Check Authorization Code and Implicit

      • Under Redirect URIs: Enter - https://app.balkan.id/authn/self-service/methods/oidc/callback/pingidentity-XXXXXXX, where XXXXXX should be the name of your PingIdentity account.

      • Under Token Endpoint Authentication Method: chooseClient Secret Post.
4. Click Save.

5. Retrieve the Client ID,Client Secret and Issuer URL and send them to BalkanID using a secure channel. We can extract the above data as follow:

   • Issuer URL: Under Configuration Tab, under URLS section, copy Issuer

   • Client ID: Under ConfigurationTab, under General section, copy Client ID

   • Client Secret: Under Configuration Tab, under General section, copy Client Secret
6. Open PingIdentity Admin Console. You should be able to view BalkanID app under Applications.

7. Go to the login URI: https://app.balkan.id/?oidc=pingidentity-XXXXXX where XXXXXX should be the name of your Ping Identity account. Your account will be setup!