1. Sign in to the PingOne Admin portal and navigate to the "Applications" tab.


  2. Click "Add Application" > "New SAML Application."


  3. Give your application a name, like "EasySSO Jira," a description, and a category. Optionally you can also add an icon for the app. When you're done, press "Continue to Next Step."


  4. Click on "Download" to download the metadata from PingOne.


  5. On EasySSO, check the "Enable SAML" box, go to the "Certificates" tab, upload the metadata, and hit "Save."


  6. Go to the "General" tab. Set up EasySSO with your desired configuration, check out EasySSO with SAML Configuration for more information. Note that PingOne does not support signed log in so checking the "Sign SP Login request" box will have no effect.
  7. Once you're done, make sure to click "Save" at the bottom of the page, then save the EasySSO metadata to a file (by right-clicking anywhere below the text and selecting "Save As...").


  8. Upload that metadata to the PingOne application you are creating by clicking on "Select File."


  9. Press the "Continue to Next Step" button.


  10. Click on "Add new attribute" to add a new attribute. You'll need to add 4 attributes in total and fill them in with the following:
    urn:oid:0.9.2342.19200300.100.1.3 → Email (Work)
    urn:oid:2.5.4.42 → First Name
    urn:oid:2.5.4.4 → Last Name
    urn:oid:0.9.2342.19200300.100.1.1 → SAML_SUBJECT

    Note that the image below has some of the attribute ids cut off.
    Make sure to select check all the boxes in the "Required" column.


  11. Click "Continue to Next Step."


  12. Click "Continue to Next Step."


  13. Once you're happy with your configuration, press the "Finish" button.


  14. Finally, for users to successfully log in, they must also have permission to access the application. Depending on your user and user directory configuration, this can be either via: default groups, groups synced from G Suite or manually assigned groups.
  15. You should be set up and ready to log in!

Encrypted Assertions (Optional)

EasySSO Side

  1. Follow the details given on EasySSO with SAML - Configuration
  2. Download the certificate from EasySSO
  3. Check the Encrypt Assertions checkbox on EasySSO
  4. Save the settings

PingOne Configuration

  1. Open your SAML Administration page
  2. Open the SAML Client configuration
  3. Check the encrypt assertions box


  4. Upload the SP Certificate previously downloaded into the encrypted certificate section



EasySSO side

Follow the details given on EasySSO with SAML - Configuration

EasySSO articles

Try for free

EasySSO for Jira, Confluence, Bamboo, Bitbucket and Fisheye/Crucible

Try for free