Adding virtual issuers for OpenID Connect
You can define one or more virtual issuers for OpenID Connect, with or without a relative path. When minting an ID token, PingFederate populates the issuer claim according to the virtual issuer setting and the authorization request.
About this task
To add a virtual issuer to PingFederate, perform the following procedure. If you have multiple virtual issuers, ensure the combination of host and path values are unique.
|
After you define virtual issuers, you can map them to sets of ID token signing keys. For more information, see Mapping ID token signing keys to virtual issuers. |
Steps
-
Go to System > OAuth Settings > Virtual Issuers.
-
Click Add Virtual Issuer.
-
Enter a unique issuer Name.
-
Enter the Host.
-
Optional: Enter the relative Path, which must start with the value of the
pf.runtime.context.pathproperty in therun.propertiesfile. -
Click Save.