Managing IdP token processor mappings
Identity provider (IdP) token processors are responsible for validating incoming security tokens as part of an STS operation. A configured and deployed token processor in PingFederate is known as a token processor instance. Map, edit, remove, or save a token processor instance.
About this task
You can map one or more token processor instances into an service provider (SP) connection to satisfy multiple session-management requirements where needed. The same token processor instances can be mapped in multiple SP connections.
When token processor instances are restricted to certain virtual server IDs, the allowed IDs are displayed in the Virtual Server IDs column.
Steps
-
In the Token Creation window, click the IdP Token Processor Mapping tab.
-
To map a token processor instance, click Map New Token Processor Instance.
Choose from:
-
To edit the mapping configuration of a token process instance, open it by clicking on its name, select the setting that you want to reconfigure, and complete the change.
-
To remove a token processor instance or cancel the removal request, click Delete followed by Save or Undelete.
-
-
If you are creating a new connection and you are finished with mapping configuration, click Done.
-
If you are editing an existing configuration and want to keep your changes, click Save.