DocumentationRelease Notes
Log In
Documentation

Ping DaVinci Connector

Suggest Edits

BeyondTrust has partnered with Ping Identity to deliver a Remote Support (RS) connector leveraging the PingOne DaVinci no-code orchestration service. An orchestration platform integrates multiple applications and services to automate a process or provide real-time data synchronization and flow.

PingOne DaVinci is a cloud orchestration service for creating user journeys across various applications via a drag-and-drop interface. DaVinci is an open interface with integrations and connections across multiple applications and identity ecosystems. You can start by building and designing your workflows or refine one of the existing workflow templates to customize your user journeys. Optimize your flows easily with A/B testing and deploy changes in quick succession.

Possible use cases

The BeyondTrust RS/PingOne DaVinci connector gives an organization the ability to terminate all RS sessions on a host (by hostname) and/or terminate all RS sessions that a particular identity (by username) might have across the environment.

These use cases provide examples of how the BeyondTrust RS connector can be used:

  • A security incident has occurred on one or more host, requiring the termination of any RS sessions by any user on those affected hosts. The security incident can be discovered by any XDR or SOAR system that also has a DaVinci connector capable of supplying the RS connector with a hostname of the affected system.
  • Regular IT tasks of user moves, changes, or deletions might require any open RS sessions in use by an identity across the infrastructure to be terminated. A DaVinci connector from any iDP that can provide the RS connector with an identity (username) can be used as part of the workflow to terminate any open RS sessions. The hostname and/or identity can also be provided to the connector through a static HTML form.
  • The RS connector provides a result, error, or success, which can be sent to a ticketing system as part of the DaVinci workflow, using any available third-party ITSM connector.

Prerequisites

The following are required to use the Remote Support connector:

  • A PingOne SaaS instance.
  • PingOne DaVinci added as a service to the PingOne SaaS instance.
  • A supported version of BeyondTrust Remote Support. To confirm your version is supported, contact support or refer to the BeyondTrust End of Life Policy.

API account

Using the RS connector in PingOne DaVinci requires an API account in RS, with the Command API permission set to full access. This must be created if it does not already exist.

The OAuth Client ID and the OAuth Client Secret for this API account are required to install the integration.

ℹ️

Note

For more information, see Add or Edit an API Account.

Configure the Ping DaVinci connector

Start the DaVinci site

  1. Sign in to your PingOne SaaS instance.
  2. Click Services on the Overview page.
  3. Select PingOne from the list.
  4. After a short delay, the DaVinci instance starts and there is a link to it in the list of active services.
  5. Click PingOne under Services.
  6. The DaVinci site opens.

Start the connector

  1. In the PingOne DaVinci site, click Connectors in the left menu, and then click Add Connector in the upper right.
  2. Search for BeyondTrust in the search bar.
  3. Select the RS connector by clicking the plus sign (+) next to it.
  4. Enter the name of your choice for the connector.
  5. Click Create.
  6. The Connectors window refreshes with the BeyondTrust connector, displayed with the name entered above.
  7. At the right end of the line with the BeyondTrust connector, click the ellipsis.
  8. Select Edit from the menu.
  9. In the connector details screen, enter:
    • The URL for your Remote Support instance, including the https:// suffix. For example https://customername.beyondtrustcloud.com .
    • The OAuth Client ID and the OAuth Client Secret for your API account in Remote Support.
  10. Click Apply and then Close.

Test the Ping DaVinci connector

Before you add the RS connector to a production Ping DaVinci flow, we recommend testing the integration.

Start a workflow

  1. In the PingOne DaVinci site, click Flows in the left menu, and then click Add Flow in the upper right. Select Blank Flow and provide a name and description of your choice.
  2. Click Create.
  3. In the blank flow page, click the plus sign (+) on the bottom right.
  4. Search for BeyondTrust in the search bar under the Existing List tab.
  5. Click BeyondTrust Remote Support.
  6. The BeyondTrust RS connector appears on the flow screen.

Create a form

  1. Click the small square external link icon next to the right of Forms in the left menu.
  2. A new window opens. Here you create the test form flow. Click the plus sign (+) next to DaVinci Forms.
  3. Enter your desired Form Name. A Form Description is optional. Then click Add Form.
  4. Click Blank Form.
  5. Drag the Text Input field from the list on the left to the new blank form.
  6. In the next page, provide names for the Key and Label fields.
  7. Click Save in the top right, click Save again in the popup message, and then click Close in the top right.
  8. Navigate back to the DaVinci workflow page.
  9. Click the plus sign (+), and then click the New tab.
  10. Search for PingOne Forms, and then click that in the list of search results.
  11. Give the new connection your desired name, and then click Create.
  12. The form connector appears on the workflow screen.
  13. Click the small connection point on the right of the form connector and, while keeping your mouse button pressed, drag the connection line from the form connector to the BeyondTrust RS connector.
  14. Confirm the result appears as follows:
  15. Double-click the form you created and click Show Form.
  16. On the Show Form panel, click Select under the General tab.
  17. Click the hostname form you created from the list.
  18. Click Apply and then Close.
  19. Double-click the BeyondTrust - Remote Support connector and select Terminate RS Jump Session by hostname.
  20. Click {} in the Hostname field and click the form you created.
  21. In the list that appears, click the output value you created for the hostname.
  22. Click Apply and then Close.

Create an output form

Now you create an HTTP form to show the output of a terminated session.

  1. Click the plus sign +, and then click the New tab.
  2. Search for http, and then click that in the list of search results.
  3. Enter your desired name for the connector output form and click Create.
  4. The HTTP output connector appears on the workflow screen.
  5. Click the small connection point on the right of the form connector and, while keeping your mouse button pressed, drag the connection line from the BeyondTrust RS form connector to the new HTTP connector.
  6. Double-click the HTTP connector you created and click Custom HTML Message.
  7. In the Message section, click the {} and click BeyondTrust - Remote Support.
  8. From the menu that appears in the next screen, select the entire output object by clicking the plus sign (+) to the right of the object row.
  9. Click Apply and then Close.

Test the workflow

  1. In the upper-right corner of the screen, click Deploy.
  2. Wait for the Successfully Deployed flow message to appear in the lower-left corner of the screen.Log in to your Remote Support representative console or web rep console.
  3. Initiate a session to any host you have access to.
  4. Back on your DaVinci workflow page, click Try Flow in the upper right.
  5. A web browser page opens, with a field to enter a hostname.
  6. Enter the hostname of the session you initiated in your Remote Support representative console or web rep console.
  7. Click Submit.
  8. The session terminates, and a status window provides details of the session, including the result Successfully Terminated Session.
  9. If the session does not terminate as expected, review the configuration and test steps or contact Support.

Updated 5 days ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.