PingAccess

Setting up IWA using PingFederate

About this task

Set up an application to be protected with Kerberos authentication using PingFederate’s Kerberos Adapter, while PingFederate is protected by PingAccess:

Steps

  1. Configure your Kerberos adapter in PingFederate.

    Learn more in Configure a Kerberos adapter instance in the PingFederate documentation.

  2. Add a new site in PingAccess.

    1. Go to Applications > Sites and click Add Site.

    2. In the Name field, enter a desired name for the site.

    3. In the Targets field, enter one or more hostname:port pairs for the site.

      The host and port should point to PingFederate. The default port for PingFederate traffic is 9031. Learn more in Port requirements.

    4. Click Save.

      Learn more in Adding sites.

  3. Add a new application in PingAccess.

    1. Go to Applications > Applications and click Add Application.

    2. In the Name field, enter a desired name for the site.

    3. In the Context Root field, specify the first part of the URL path for the application and its resources.

    4. In the Virtual Host field, enter the host desired for the target application.

    5. In the Destination list, select Site.

    6. In the Site list, select the PingFederate site previously created.

    7. Configure the remaining fields as desired. Click Save.

      Learn more in Adding an application.

  4. Enable the application.

    Result:

    The protected application can use the Kerberos protocol for authentication through PingAccess, using PingFederate.