PingOne

Configuring a channel

To complete your PingOne provisioning configuration, map the necessary attributes in your channel configuration.

About this task

For more information about these steps, see Managing channels in the PingFederate documentation.

Steps

  1. On the Manage Channels tab, click Create.

  2. On the Channel Info tab, in the Channel Name field, type a unique name. Click Next.

  3. On the Source tab, on the Active Data Store list, select the data store that you configured in Supported attributes reference. Click Next.

  4. On the Source Settings tab, click Next.

  5. On the Source Location tab, in the Base DN field, type a base DN that includes the users that you want to provision.

  6. In the Users section, complete the Group DN or Filter fields to identify the users that you want to provision. Click Next.

  7. On the Attribute Mapping tab, map the required attributes. For a list of attributes, see Supported attributes reference.

    For general information about attribute mapping, see Mapping attributes in the PingFederate documentation. Custom attributes can also be mapped after being added. For more information on adding custom attributes, see Adding user attributes and the PingOne Platform API Reference.

    1. On the Username row, click Edit.

    2. On the Username Attribute Mapping tab, in the Root Object Class and Attribute lists, select the attribute in your data store that matches the Username attribute in PingOne. For more information, see User and group management.

    3. Click Add Attribute, and then click Done.

    4. On the Population ID row, click Edit.

    5. On the Population ID mapping tab, do one of the following:

      • Map a static population ID.

        From the Default Value list, select the PingOne population that you want to target. Click Done.

        The Default Value list is only available if you entered the correct client credentials from Connecting PingFederate to PingOne so the provisioner will populate the list accordingly.

      • Map a dynamic population ID.

        In the Root Object Class and Attribute lists, select the user attribute in your data store that contains the population ID.

        Click Add Attribute, and then click Done.

        To get the ID for a population, see View populations in the PingOne documentation.

    6. If you want to manage users and devices for the PingOne MFA service, map any combination of the MFA Device Email and MFA Device SMS attributes, and map or assign the MFA Enabled attribute. For details, see Supported attributes reference.

    7. Click Next.

  8. On the Activation and Summary tab, on the Channel Status row, click Active. Click Done.

  9. On the Manage Channels tab, click Done.