Setup Guide

PingOne Setup Guide

Follow the steps below to connect (where supported) or set up an export-based workflow. Either way, Aurora tracks source, timestamps, ownership, and freshness so evidence stays reusable between reviews.

At a Glance

ConnectionDirect connection

CategoryIdentity

Guide4 steps

Need help?

We'll confirm what can be automated, what stays export-based, and how to keep evidence current between review cycles.

Steps

Use these as a starting point, then verify collection inside Aurora.

1
Create a PingOne Worker application (client credentials) in the target environment.
2
Assign roles/permissions that allow reading Users, Groups, Password Policies, and User Role Assignments (roleAssignments).
3
Store environment_id, client_id, and client_secret.
4
[object Object]

Credentials

The inputs Aurora needs to authorize and collect proof.

environment_idclient_idclient_secret

Permissions

Aurora requests only the minimum access needed for collection and checks.

Permissions depend on the selected collection mode and configured scope.