Ping Identity

Bugcrowd offers a Security Assertion Markup Language (SAML) based Single Sign-On (SSO) integration with Ping Identity to help you create an easy and centralized way to log in to Crowdcontrol. This section provides the steps to configure Ping Identity.

• Adding Bugcrowd to Your Ping Identity Account
• Accessing SAML Information in Bugcrowd
• Adding SAML Information in Ping Identity
• Mapping Ping Identity to Crowdcontrol
• Verifying Domain
• Logging in Using SSO

Specific Role Required to Configure SSO: To configure SSO for your program, you must be an Organization Owner. Organization Owners can log in using Username and Password.

Adding Bugcrowd to Your Ping Identity Account

1. Log in to your Ping Identity account.

2. Click Applications.

   

3. Click Add Application > New SAML Application.

   

4. Specify the following:

   • Application Name: Bugcrowd
   • Application Description: Crowdsourced Cybersecurity
   • Category: Engineering

5. Pause at this screen and continue to next Step.

Accessing SAML Information in Bugcrowd

1. In Crowdcontrol, click Settings and then click Authentication.

   

2. Click Single Sign-on (SSO).

   

   The SSO Configuration for Demo Organization is displayed.

3. Click Single Sign-on (SSO).

   

   The SSO Configuration for Bugcrowd Operations page is displayed.

4. Make a note of the Single sign on URL and SP Entity ID.

   

   Single Logout: Bugcrowd only supports logouts Identity Provider (IdP) initiated logouts, that is logging out of Bugcrowd will not log you out of your SSO provider.

Adding SAML Information in Ping Identity

1. Go back to Ping Identity (last step in the first section).

2. Specify the following:

   • Assertion Consumer Service (ACS): Paste the Single sign on URL you copied from your Bugcrowd account.
   • Entity ID: Paste the SP Entity ID you copied from your Bugcrowd account.

   

3. Save and publish.

Mapping Ping Identity to Crowdcontrol

1. Click View Setup Instructions.

2. Download the Certificate and SAML Metadata file and open these files using a text editor.

   

3. From the SAML metadata xml file, copy the entityID and paste it into the IdP Entity ID field in Crowdcontrol.

   

4. Copy the Initiate Single Sign-On (SSO) URL from Ping Identity into the IdP SSO Target URL field in Bugcrowd.

   

5. Copy the contents from the Certificate file and paste it into the IdP Certificate field in Bugcrowd.

   

   After completing, the settings must be similar to the following screenshot.

   

6. Click Save Authentication Settings.

   Domain Verification is required for SSO to function properly.

Verifying Domain

All domains must be verified by Bugcrowd. You will not be able to login until the email address domains are verified.

1. In Crowdcontrol, go to Settings and then click Domains.

   

   The Domain verification page is displayed.

2. Specify the domain and click Add Domain.

   

   A verification code is displayed.

3. Add a TXT record at the domain’s root with this code.

   

   For information about adding a TXT record, consult your DNS provider. For any additional help verifying domains, send an email to support@bugcrowd.com.

   DNS verification may take up to 24 hours to succeed.

Logging in Using SSO

After you have enabled SSO, your team members can navigate to the Company Apps in Ping Identity and click the Bugcrowd app to log in. If SSO is set up properly, members will be logged into Crowdcontrol.

---