Creating a new SAML v2.0 application on Ping Identity

Last Updated : Jun 10, 2026 |

About this task

Use this procedure to configure a new application for SSO on Ping Identity using the PingOne console.

When configuring the application, you obtain an identity provider alias and configuration file. You will need this data later when configuring an Ping Identity SAML v2.0 identity provider on Keycloak.

Before you begin

  • Register an account on Ping Identity.

  • Install the PingID application. For information, see PingID Downloads.

  • Install the PingOne application. For information, see PingOne for Customers.

Procedure

  1. Log in to the PingOne console as the administrator.
  2. Navigate to Connection > Applications.
  3. On the Applications page, click Add Application.
  4. On the Choose Connection Type page, select WEB APP.
  5. Select SAML and then click Configure.
  6. On the Create App Profile page, in Application Name, type a name for your SAML 2.0 application and then click Next.
  7. On the Configure SAML Connection page, complete the following fields:
    1. In ACS URLS, enter https://<AADS_FQDN>/auth/realms/SolutionRealm/broker/<IDP_ALIAS>/endpoint.

      In these strings, <AADS_FQDN> is the Avaya Aura® Device Services front-end FQDN. <IDP_ALIAS> is an identity provider alias of your choice. For example, PingIdentitySAML.

    2. In ENTITY ID, enter https://<AADS_FQDN>/auth/realms/SolutionRealm.
    3. In ASSERTION VALIDITY DURATION, enter 300.
    4. Leave default values for all other fields.
  8. Remember the identity provider alias that you used in the previous step.

    You will use this alias later when creating a Ping Identity SAML v2.0 provider on Keycloak.

  9. Skip the configuration of settings on the Attribute mappings page.
  10. Click Save.

Next Steps

Obtain the Ping Identity configuration file in XML format.