PingFederate SAML Implementation
This article contains PingFederate specific help for configuring Login with SSO via SAML 2.0. For help configuring login with SSO for another IdP, refer to SAML 2.0 Configuration.
Configuration involves working simultaneously with the Bitwarden web app and the PingFederate portal. As you proceed, we recommend having both readily available and completing steps in the order they are documented.
Log in to the Bitwarden web app and open the Admin Console using the product switcher:
Open your organization's Settings → Single sign-on screen:
If you haven't already, create a unique SSO identifier for your organization and select SAML from the the Type dropdown. Keep this screen open for easy reference.
You can turn off the Set a unique SP entity ID option at this stage if you wish. Doing so will remove your organization ID from your SP entity ID value, however in almost all cases it is recommended to leave this option on.
tip
There are alternative Member decryption options. Learn how to get started using SSO with trusted devices or Key Connector.
The following is a sample SAML 2.0 implementation with Bitwarden in the PingFederate Portal:
The following is a sample SAML 2.0 implementation with PingFederate in the Bitwarden Single Sign-On screen:
