Ping SSO: Set up and find SSO configuration information

Learn to set up and find the correct information to configure single sign-on for your Dotdigital account using Ping SSO.

Before you start

This article is part of a process. Start with the article Set up Single Sign-On (SSO) for your account, and we will direct you to this article at the correct point in the process.

Step 1: Add a new Application

1. In Ping SSO, go to Applications.
2. Select + to add a new application.
   
3. For Application name, enter a name for your application.
   

   Use a name that's easy to identify, such as Dotdigital.

4. If you want, enter a description and add an icon.
5. For Choose Application Type, select OIDC Web App.
6. Select Save.

Step 2: Edit your application configuration

1. After adding your application, select the Configuration tab.
2. For Response type, keep the default setting of Code.
3. For Grant Type, keep the default settings of Authorization Code, and PKCE Enforcement Optional.
4. Under Grant Type, select Refresh Token. Keep your Refresh Duration and Refresh Token Rolling Duration as the default 30 Days and 180 Days.
5. For Redirect URLs, enter `https://login.dotdigital.com/Sso/Authenticate`.
6. For Token Endpoint Authentication Method, select Client Secret Post.
7. Select Save.
8. A list of URLs is displayed. Copy the OIDC Discovery Endpoint (also called: metadata endpoint), Client ID, and Client Secret. and save them for later.

Step 3: Edit your resources and enable the application

1. Go to the Resources tab, then select Edit.
2. From the SCOPES menu, drag email, phone, and profile into the ALLOWED SCOPES section.
   
3. Select Save.
4. Turn on the toggle switch to enable the application.

Next steps

You now have all the information you need to set SSO up on your account.

• Go back to Set up Single Sign-On (SSO) for your account and complete the process.