PingAccess

Setting up IWA using PingFederate

About this task

Set up an application to be protected with Kerberos authentication using PingFederate’s Kerberos Adapter, while PingFederate is protected by PingAccess:

Steps

  1. Configure your Kerberos adapter in PingFederate.

    For more information, see Configure a Kerberos adapter instance in the PingFederate documentation.

  2. Add a new site in PingAccess.

    1. Go to Applications → Sites and click Add Site.

    2. In the Name field, enter a desired name for the site.

    3. In the Targets field, enter one or more hostname:port pairs for the site.

      The host and port to point to PingFederate on port 9031.

    4. Click Save.

    For more information, see Adding sites.

  3. Add a new application in PingAccess.

    1. Go to Applications → Applications and click Add Application.

    2. In the Name field, enter a desired name for the site.

    3. In the Context Root field, specify the first part of the URL path for the application and its resources.

    4. In the Virtual Host field, enter the host desired for the target application.

    5. In the Destination list, select Site.

    6. In the Site list, select the PingFederate site previously created.

    7. Configure the remaining fields as desired. Click Save.

    For more information, see Adding an application.

  4. Enable the application.

    Result:

    The protected application can utilize the Kerberos protocol for authentication through PingAccess, using PingFederate.