Who is this article for?

IT Personnel who want to configure SSO to authenticate PingIdentity.

Administrator permissions are required.

This guide is intended to help configure single sign on/SAML 2.0 for Lucidity Software to be able to authenticate using PingIdentity as the preferred IdP.

1. Creating a Lucidity application
2. Further reading

1. Creating a Lucidity application

1. Sign into your PingIdentity administration console: https://console.pingone.asia
2. From within the console select Connections, Applications and then click the plus button.

3. Enter the following:

   • Application Name: Lucidity
   • Description: <optional>
   • Icon: <optional>
   • Select SAML Application.

4. From the SAML Configuration section select Manually Enter and enter the following and select Save. Substituting <your-subdomain> with the subdomain of your Lucidity instance:

   • ACS URLs: https://<your-subdomain>.luciditysoftware.com.au/simplesaml/module.php/saml/sp/saml2-acs.php/<your-subdomain>
   • Entity ID: https://<your-subdomain>.luciditysoftware.com.au/simplesaml/module.php/saml/sp/metadata.php/<your-subdomain>

5. Select the Attribute Mappings tab and click the pencil icon in the top-right corner.

6. Select the + Add button and enter the following:

   • Attributes: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn

   • PingOne Mappings: Email Address

   • Required: Check this box

   • Click Save.

7. Enable the new application.

8. Navigate to the Configuration tab of the new application and click Download Metadata.

9. Send this file to your Lucidity Customer Success representative for final setup.

2. Further reading