Configuring an adapter instance
Configure the ForgeRock Intelligent Access IdP Adapter to determine how PingFederate communicates with ForgeRock Intelligent Access.
About this task
To begin the integration, deploy the ForgeRock Intelligent Access Integration Kit files to your PingFederate directory.
Steps
-
In the PingFederate administrative console, go to Authentication → Integration → IdP Adapters and click Create New Instance.
-
On the Type tab, set the basic adapter instance attributes:
-
In the Instance Name field, enter a name for the adapter instance.
-
In the Instance ID field, enter a unique identifier for the adapter instance.
-
From the Type list, select ForgeRock Intelligent Access IdP Adapter. Click Next.
-
-
Optional: On the IdP Adapter tab, in the Response Mappings section, map attributes from the ForgeRock Intelligent Access response to the attribute contract:
-
In the Local Attribute field, enter a name of your choosing for an attribute.
-
In the Action column, click Update.
-
To add more attributes, repeat steps a-b.
Result:
These attributes become available in your PingFederate authentication policy.
-
-
On the IdP Adapter tab, configure the adapter instance by referring to ForgeRock Intelligent Access IdP Adapter settings reference. Click Next.
-
On the Extended Contract tab, add any attributes that you included in the ForgeRock Intelligent Access Response Mappings section of the IdP Adapter tab. Click Next.
-
On the Adapter Attributes tab, set pseudonym and masking options as shown in Set pseudonym and masking options in the PingFederate documentation. Click Next.
-
On the Adapter Contract Mapping tab, configure the contract fulfillment details for the adapter as shown in Define the IdP adapter contract in the PingFederate documentation. Click Next.
-
On the Summary tab, review your configuration. Click Save.