Ping Identity

Bugcrowd offers a Security Assertion Markup Language (SAML) based Single Sign-On (SSO) integration with Ping Identity to help you create an easy and centralized way to log in to Crowdcontrol. This section provides the steps to configure Ping Identity.

Specific Role Required to Configure SSO: To configure SSO for your program, you must be an Organization Owner. Organization Owners can log in using Username and Password.

Adding Bugcrowd to Your Ping Identity Account

  1. Log in to your Ping Identity account.

  2. Click Applications.

    applications

  3. Click Add Application > New SAML Application.

    new-saml-application

  4. Specify the following:

    • Application Name: Bugcrowd
    • Application Description: Crowdsourced Cybersecurity
    • Category: Engineering
  5. Specify the following information from Bugcrowd (Settings > Authentication > Single Sign-on (SSO)):

    • Assertion Consumer Service (ACS): Paste the Single sign on URL from your Bugcrowd account.
    • Entity ID: Paste the SP Entity ID from your Bugcrowd account.

    settings

  6. Save and publish.

Mapping Ping Identity to Crowdcontrol

  1. In Ping Identity, click View Setup Instructions.

  2. Download the Certificate and SAML Metadata file and open these files using a text editor.

    mapping

  3. From the SAML metadata xml file, make a note of the entityID, Initiate Single Sign-On (SSO) URL, and Certificate information.

  4. Navigate to the Single Sign-On screen in Crowdcontrol and scroll to the SAML Settings section.

  5. Specify the following information from Okta:

    • IdP Entity ID: Paste the entityID information from Ping Identity.
    • IdP SSO Target URL: Paste the Initiate Single Sign-On (SSO) URL information from Ping Identity.
    • IdP Certificate: Paste the Certificate information from Ping Identity.

    saml-settings

  6. Click Save Authentication Settings.

    Domain verification is required for SSO to function properly. For more information, see verifying domain.

Logging in Using SSO

After you have enabled SSO, your team members can navigate to the Company Apps in Ping Identity and click the Bugcrowd app to log in. If SSO is set up properly, members will be logged into Crowdcontrol.

example