Enable users on Splunk Intelligence Management using Ping Identity

Install and configure the Ping Identity app that provides single sign-on (SSO) access to the Splunk Intelligence Management web app. The Ping Identify app uses the SAML 2.0 standard to enable SSO. For more information on SAML, see Okta's SAML documentation.

Ping SSO does not impact or change API credentials. Usage of Python SDK or any other vendor integrations remain unimpacted when you switch a user from non SSO to SSO-enabled login credentials.

When using the Ping Identity app for SSO, Ping is the identity provider (IDP) and Splunk Intelligence Management app is the service provider (SP).

Prerequisite
You must be a Ping Identity administrator to complete these steps.

Follow these steps to configure Splunk Intelligence Management web app with Ping:

1. Install the Splunk Intelligence Management app for PingOne.
2. Enable Ping single sign on in Splunk Intelligence Management web app.

Install the Splunk Intelligence Management App in PingOne

Perform the following steps to install the Splunk Intelligence Management app in PingOne:

1. In Ping, search for Splunk Intelligence Management in the Search bar.
2. When you have located the Splunk Intelligence Management app, click Add.
3. Click the Applications tab to see the Splunk Intelligence Management app listed under My Applications.
4. Click Add Application to display a dropdown menu and select New SAML Application.
5. Edit the fields in the dialog box as shown in the following table:

   Field	Value
   Application Name	Splunk Intelligence Management
   Application Description	Splunk Intelligence Management web app
   Category	Information Technology

6. (optional) Click the Application icon.
7. Click Continue to Next Step to display a configuration dialog box.
8. Click I have the SAML configuration.
9. Edit the fields as shown in the following table:

   Field	Value
   Assertion Consumer Service (ACS)	https://station.trustar.co/saml/SSO
   Entity ID	https://station.trustar.co/saml/metadata
   Application URL	https://station.trustar.co

10. Click Continue to Next Step.
11. Click Continue to Next Step.
12. Click Download to download the SAML metadata file.
13. Contact Splunk Intelligence Management Support to request activation. Include the following information in the email:
    • Subject line format: <Your company name> - Ping metadata. For example: ABC Co - Ping metadata
    • Body of email: Enter text requesting activation and attach the downloaded metadata file to the email.

Splunk intelligence Management enables your Ping SSO configuration within two weeks. After receiving a confirmation, you can enable users in Ping.

Enable Ping single sign on in Splunk Intelligence Management web app

Prerequisite
Users must have an account with the Splunk Intelligence Management web app before you can enable SSO for the users.

Perform the following steps to enable SSO for each user:

1. Log in to the Splunk Intelligence Management web app using a company administrator account.
2. On the User Account Management page, enter the link https://station.trustar.co/settings/users to your browser, or click User Settings in the navigation bar and select Settings from the dropdown menu.
3. For each user that you want to enable, click Edit.
4. Click SSO Enabled.
5. Click Save User.

Repeat the steps for each user in your company that you want to enable with Ping SSO. After completing the configuration steps, verify that all users can click a link on their Ping hub at the bottom of the Splunk Intelligence Management section that says "Click the link to open the Single Sign-On page".