Configure SAML with Ping

Set up

1. Create app

In the Ping Identity dashboard, go to applications and create a new application by clicking on the "+" icon in the upper part of the application.

PingIdentity dashboard

2. Configure app

Fill the necessary data, select "SAML" as application type and finally click on "Configure":

Create SAML app

3. ACS URL and audience

Fill the ACS URL (which is https://virustotalcloud.firebaseapp.com/__/auth/handler) and the entity ID (which will be used as audience in the Google Threat Intelligence config). The entity ID must be unique so make sure not to use a generic string such as "test" or "example". After that click on "Save".

ACS URL and audience

4. Retrieve app data

Enable the app and retrieve the necessary data required on the Google Threat Intelligence configuration: the certificate, issuer ID and SSO URL:

Certificate, issuer ID and SSO URL

5. Google Threat Intelligence configuration

Fill this data in the Google TI configuration:

VT configuration

6. Attribute mappings

Edit the attribute mappings to use email instead of user ID. To do so, go back to the PingIdentity dashboard and click on the "Attribute mappings" tab. Click on the "edit" button highlighted in the following screenshot:

Correct attribute mappings

7. Login URL

Share the login URL with your users to login in Google TI.