Summary
ExtremeCloud applications will discontinue support for PingID-based Single Sign-On (SSO) in June 2026. Customers currently using PingID must transition to the natively available (Self-service) SSO to maintain uninterrupted access to ExtremeCloud applications and authentication functionality.
Products Affected
- ExtremeCloud IQ
- ExtremeCloud IQ New
- ExtremeCloud Intuitive Insights
- Extreme Platform ONE Networking
- Extreme Platform ONE Security
- ExtremeCloud SD-WAN
Symptoms
SSO authentication will not authenticate, resulting in the user being unable to login and manage devices.
Workaround
Migration to self-service SSO will prevent customers from losing access before June 2026. If users lose access through SSO, they will have to login using their local username and password.
Solution
To maintain uninterrupted access to ExtremeCloud applications, customers using PingID for SSO must migrate to the in-house SelfService SSO before PingID support ends in June 2026.
Customers can complete the migration by configuring SelfService SAML SSO with their preferred Identity Provider (e.g., Microsoft Entra ID, Okta, etc.) using the steps outlined in the official Extreme Networks documentation. These guides provide end-to-end instructions for setting up SSO, importing/exporting metadata, mapping attributes, assigning roles, and validating authentication flows.
Key Documentation Resources:
Additional notes:
Customers can have both PingID SSO and self-service SSO simultaneously configured. Upon completion and validation of self-service SSO, customers can migrate away from PingID.
Once the configuration is complete and validated, organizations will be fully migrated and no longer dependent on PingID.
Please see the full Field Notice here for more details and future updates.
