Ping Identity (PingOne)

Pull users, groups, group memberships, and admin role assignments from your PingOne environment. Authenticates via OAuth2 client-credentials using a PingOne worker application.

Source connector

Source connector — pulls identity and access data from Ping Identity (PingOne) into ComplianceScout where it is scored against your compliance frameworks and violation rules.

What ComplianceScout collects

After a successful sync, the following data is available in your ComplianceScout dashboard for violation detection and reporting.

All PingOne users with profile data (email, username, name, title, department, phone, locale, timezone)
Lifecycle status (active, suspended, deprovisioned) including account-locked detection
Groups with type and description, plus user-to-group memberships
PingOne admin role assignments (Organization Admin, Environment Admin, Identity Data Admin, etc.) per user
Population ID and external ID passthrough for cross-system correlation

Required credentials

These fields are collected when you add the connector in the ComplianceScout dashboard. Secrets are encrypted at rest using AES-256-GCM and are never logged.

Field	Type	Required	Notes
Environment ID	Text	Required	PingOne environment UUID. Found in PingOne Admin → Settings → Environment Properties.
Client ID	Text	Required	Worker application client ID from PingOne → Applications → your worker app → Configuration.
Client secret	Secret	Required	Worker app client secret. Requires roles: Identity Data Read-Only and Read Role Assignments.
Region	Select	Required	Options: North America (api.pingone.com) · Europe (api.pingone.eu) · Canada (api.pingone.ca) · Asia-Pacific (api.pingone.asia) · Singapore (api.pingone.sg)

How to set up this connector

Follow these steps to gather the credentials above and connect Ping Identity (PingOne) to ComplianceScout.

Log in to the PingOne Admin Console and select the environment you want ComplianceScout to read from. Copy the Environment ID from Settings → Environment Properties.
Navigate to Applications → + Add Application → Worker. Name it "ComplianceScout" and click Save.
On the application's Roles tab, assign at minimum the Identity Data Read-Only role (Environment scope) and the Read Role Assignments role so admin role assignments are visible.
On the Configuration tab, copy the Client ID and Client Secret. Note your tenant's region (North America, Europe, Canada, Asia-Pacific, or Singapore).
In ComplianceScout, go to Data & Secrets → Integrations → Add Connector → Ping Identity (PingOne). Paste Environment ID, Client ID, Client Secret, and choose your Region. Click Test Connection, then Save.

Ready to connect Ping Identity (PingOne)?

Start a free trial — your tenant is provisioned instantly and you can wire up this integration from the connectors page.

Start a free trial Add connector →