Adding web session scope rules - PingAccess - 7.2

PingAccess

bundle
pingaccess-72
ft:publication_title
PingAccess
Product_Version_ce
PingAccess 7.2
category
Product
pa-72
pingaccess
ContentType_ce

Add web session scope rules, which examine the contents of the PingFederate validation response and determine whether to grant access to a backend target site based on a match found between the scopes of the validation response and the scope specified in the rule.

Support for the web session support rule might require the PingFederate access token to contain the scope superuser. To configure this, see Configuring access token attributes for superuser scope in PingFederate.

  1. Click Access and then go to Rules > Rules.
  2. Click + Add Rule.
  3. In the Name field, enter a unique name up to 64 characters long.

    Special characters and spaces are allowed.

  4. From the Type list, select Web Session Scope.
  5. From the Scope list, select the scope you want to match to values returned from the access token.
    Info:

    This is one scope requirement in the set of scopes associated with the access token.

  6. From the Rejection Handler list, select the rejection handler you want to associate with this rule.
  7. Click Save.