PingOne

Configuring a channel

To complete your PingOne provisioning configuration, map the necessary attributes in your channel configuration.

About this task

Learn more about the following steps in Managing channels in the PingFederate documentation.

Steps

  1. On the Manage Channels tab, click Create.

  2. On the Channel Info tab, in the Channel Name field, enter a unique name, then click Next.

  3. On the Source tab, in the Active Data Store list, select the datastore that you configured in Supported attributes reference, then click Next.

  4. On the Source Settings tab, click Next.

  5. On the Source Location tab, in the Base DN field, enter a base DN that includes the users that you want to provision.

  6. In the Users section, complete the Group DN or Filter fields to identify the users that you want to provision, then click Next.

  7. On the Attribute Mapping tab, map the required attributes.

    You can find a list of attributes in the Supported attributes reference. Learn more about attribute mapping in Mapping attributes in the PingFederate documentation.

    You can also map custom attributes after adding them. Learn more about adding custom attributes in Adding user attributes and the PingOne Platform API Reference.

    1. On the Username row, click Edit.

    2. On the Username Attribute Mapping tab, in the Root Object Class and Attribute lists, select the attribute in your datastore that matches the Username attribute in PingOne.

      Learn more in User and group management.

    3. Click Add Attribute, and then click Done.

    4. On the Population ID row, click Edit.

    5. On the Population ID mapping tab, do one of the following:

      Choose from:

      • Map a static population ID:

        1. In the Default Value list, select the PingOne population that you want to target, then click Done.

          The Default Value list is only available if you entered the correct client credentials from Connecting PingFederate to PingOne. The provisioner will populate the list accordingly.

      • Map a dynamic population ID.

        Learn more about getting the ID for a population in View populations in the PingOne documentation.

        1. In the Root Object Class and Attribute lists, select the user attribute in your datastore that contains the population ID.

        2. Click Add Attribute, and then click Done.

    6. If you want to manage users and devices for the PingOne MFA service, map any combination of the MFA Device Email and MFA Device SMS attributes, and map or assign the MFA Enabled attribute.

      Learn more in Supported attributes reference.

    7. Click Next.

  8. On the Activation and Summary tab, on the Channel Status row, click Active, then click Done.

  9. On the Manage Channels tab, click Done.