Ping Identity + Nectar Single Sign-On

Enable secure, enterprise-grade access to Nectar with Ping Identity single sign-on.

With Ping Identity + Nectar, employees authenticate using corporate credentials while IT maintains centralized identity governance and advanced security controls.

Overview

The Ping Identity + Nectar Single Sign-On integration allows organizations to authenticate users through Ping Identity (e.g., PingFederate or PingOne), delivering secure, centralized access to Nectar.

This integration is ideal for:

• Enterprise IT teams managing federated identity systems
• Organizations requiring advanced authentication policies
• Companies enforcing MFA and adaptive security
• Enterprises with strict compliance and governance requirements

By enabling SSO with Ping Identity, companies simplify employee access to Nectar while maintaining full control over authentication, authorization, and security policies.

How It Works

Nectar integrates with Ping Identity using standard identity federation protocols to securely authenticate users.

What data syncs

Ping Identity SSO focuses on authentication and identity verification rather than HR data syncing. Common identity attributes include:

• Work email address
• Display name
• Unique user identifier (NameID)
• Optional group or role claims (if configured)

Authentication method

The integration typically supports:

• SAML 2.0 single sign-on
• (If applicable) OpenID Connect (OIDC)

Login behavior

• Employees select “Log in with SSO” on Nectar
• Authentication is redirected to Ping Identity
• Ping verifies identity and returns a secure authentication assertion or ID token
• Nectar validates the assertion and grants access

Access can be centrally managed through Ping user, role, or group policies.

Where users interact

Employees log in through Nectar’s SSO option. IT administrators configure Nectar as a service provider within Ping Identity’s admin console.

Key Features & Benefits

• Enterprise-grade single sign-on through Ping Identity
• Federated authentication support for complex identity environments
• Advanced security policy enforcement, including MFA and adaptive authentication
• Centralized identity governance for SaaS access
• Reduced password fatigue and login friction
• Improved compliance and audit visibility

Setup & Implementation

Setting up Ping Identity SSO with Nectar is straightforward for experienced IT administrators.

High-level setup steps

1. Enable SSO within Nectar’s authentication settings  
2. Configure Nectar as a service provider in Ping Identity
3. Set up SAML (or OIDC) configuration
4. Exchange metadata (ACS URL, Entity ID, certificates)
5. Map required claims (email, NameID, etc.)
6. Test login flow and assign users or roles

Requirements

• Ping Identity administrator access
• Nectar admin permissions
• SAML 2.0 or OIDC configuration capability

Estimated setup time: 30–60 minutes

IT involvement is typically required for configuration and testing.

For detailed setup instructions, visit the Help Center documentation.

Use Cases

• Enable employees to log into Nectar using corporate credentials
• Enforce MFA and adaptive authentication policies
• Centralize access control across enterprise applications
• Reduce password-related support tickets
• Meet compliance requirements for identity and access management

Security & Compliance

The Ping Identity + Nectar integration supports enterprise security standards.

It includes:

• SAML 2.0 or OIDC-based authentication
• Encrypted authentication assertions or ID tokens
• Support for Ping MFA and adaptive security controls
• Role-based admin controls within Nectar
• Alignment with Nectar’s SOC 2 compliance standards (if applicable)

Only authorized administrators can configure or manage SSO settings.

Support & Resources

Helpful links:

• Ping Identity SSO Help Center Article (link placeholder)
• Nectar Support Team: support@nectarhr.com
• Ping Identity Documentation (if approved for linking)