PingFederate Server

Creating token exchange generator groups

A token exchange generator group maps requested token types to your token generator instances. You can create multiple token exchange generator groups. If you assign resource URIs to the groups, clients can use the URI in the resource parameter of its requests to specify a group.

Before you begin

Before you create a token exchange generator group, configure the token generator instances. See Managing token generators.

About this task

In the Generator Groups window, create a generator group for a token exchange instance.

Steps

  1. Go to the Applications → Token Exchange → Generator Groups window.

  2. Click the Add Generator Group button.

    The Token Exchange Generator Group window opens.

  3. On the Manage Generator Group tab, enter the group ID, Name, and enter absolute Resource URIs.

  4. On the Requested Token Type Mapping tab, from the Token Generator list, select an instance and enter the Token Type. Click Add.

  5. Repeat step 4 for each type of token that you want the token exchange generator group to handle.

    If this is the default token exchange generator group and clients will use the requested_token_type parameter to request specific types of tokens, then map all token types that clients can request.

  6. On the Summary tab, review the token exchange generator group. Click Done.

    The Generator Groups window opens.

  7. If you want to make the new token exchange generator group the default group, click Set as Default in the Action column.

  8. Click Save.