Ping Identity DaVinci Connector

You can use the HUMAN Security Connector to enable PingOne DaVinci to detect and take action when an end user attempts to create or log in to an account using a compromised credential. Through this integration, a PingOne DaVinci administrator can ensure all credentials being used have not been previously compromised using HUMAN Credential Intelligence.

This connector allows you to analyze if the credentials are compromised to safeguard accounts during account login, account creation, and password update. For any of the above flows, we recommend the following actions in case the credentials are compromised: forcing a password reset, requesting a different password on account creation, or password update. This flag can also be used to conditionally initiate an MFA step. This way, the account is not vulnerable to credential-stuffing attacks or to attackers gaining unauthorized access using compromised credentials.

You can use the HUMAN Security connector to validate whether the credentials entered are flagged as compromised or not, then act upon the result.

Prerequisites

• Access to PingOne DaVinci
• HUMAN auth token - used for authorization with the HUMAN backend.
• HUMAN app ID - The HUMAN Security application ID

Integration

In DaVinci, add the HUMAN Connector. For help, see Adding a PingOne connectors

To use the connector:

1. Log in to DaVinci.
2. Navigate to Connectors > Add Connector.
3. Connect the left side of the connector to the submit action of your login form.
4. Connect the right side of the connector to both a successful login connector (All Triggers True) and whatever action you want to take when the credentials are flagged as compromised. For example, you may want to use a password reset form (All Triggers False).
5. Click on the HUMAN Security Connector. Then, click Configure and add your HUMAN authentication token and application ID.

Testing capabilities

You can test each capability individually. For more information, see Testing credentials.