Setting Up Single Sign (SSO) on with Pingone

Prerequisite

User should have admin access on pingone.
For azure, should have the permission to add new enterprise application.
User should have admin access to Kpifire and access to set single sign on in Kpifire.

Configure License Type for different Users

1. Create groups in Pingone/azure by navigating to Users -> Group

2. Group name should be from below table.

Group Name	License Type	Priority
Kpifire.Admin	Admin	7
Kpifire.Executive	Executive Viewer	6
Kpifire.Strategy	Manager	5
Kpifire.Project	User	4
Kpifire.TeamMember	Team Member	3
Kpifire.Idea	Idea Creator	2
Kpifire.Viewer	Viewer	1

3. Group name are case insensitive. We can add prefix or suffix to group name.
Example: TestCompany.Kpifire.Admin.License is also valid as it has group name part form above table.

4. Then assign users to the group based on organization need.

5. License type for current user will be affected after logout and login again from website.

6. If user is present in multiple groups, then user will have the license type that has higher priority.
Example: If a user is present in Kpifire.Viewer, Kpifire.Project. Then user will have license type of Kpifire.Project.

Example: If a user is present in Kpifire.Viewer, Kpifire.Project. Then user will have license type of Kpifire.Project.

Settings for Pingone SSO

A graphic comparing strategy execution and planning, with distinct sections for each

1. Settings on Ping one Side

Login to ping one using url https://admin.pingone.com/
Navigate to Setup -> Identity Repository
Set identity provider as Ping one and do following

Then Navigate to Applications –> My Applications
Add an application and do the following steps as shown below.

1. Application Details

A leadership principle diagram, emphasizing strategic thinking with a flowchart design

2. Application Url Configuration

An infographic showing how goals align with company objectives, using directional arrows

3. Application Attribute Configuration

An image of a metric input form, providing data entry options for project analysis

4. Application Group Configuration

A strategic planning meeting photo, with a whiteboard and sticky notes in use

5. Application Review Screen

A balanced scorecard diagram, breaking down different performance indicators

2. Settings on Kpifire

Login to Kpifire as administrator.
Navigate to settings -> Single Sign On @ https://app.kpifire.com/#/admin/sso

Set the following attribute email, first name, last name fields
1. Email Attribute: user.email
2. First Name Attribute: user.givenname
3. LastName Attribute: user.surname

Test SSO

Login to ping one site
Navigate to Application -> my application
Click on the application -> Single sign on
Then user will be redirected to Kpifire with login.

Kyla Kozole2024-09-23T20:36:47+07:00August 1st, 2020|Blog|

About the Author: Kyla Kozole

Kyla Kozole has the official title of Director of UI/UX at KPI Fire. She also has the unofficial nickname of "pixel police". She is a talented digital designer, and also a world class multi-medium artist. She is a teacher/trainer of humans and animals. As an excellent communicator, she not only translates her artistic vision into captivating designs but also fosters collaboration and understanding within diverse teams creative force, weaving together her skills in design, art, animal training, and communication to make a lasting impact in the worlds she touches.

Setting Up Single Sign (SSO) on with Pingone