Defining a unique group ID - PingFederate

Defining a unique group ID - PingFederate - 10.0

PingFederate Server

bundle

pingfederate-100

ft:publication_title

PingFederate Server

Product_Version_ce

PingFederate 10.0

category

Product

pf-100

pingfederate

ContentType_ce

Page created: 12 Sep 2019 |

Page updated: 19 Mar 2020

| 1 min read

PingFederate 10.0 Product Configuration User task Single Sign-on (SSO) Capability Administrator Audience Product documentation Content Type Software Deployment Method

On the Unique Group ID screen, create an LDAP filter to resolve groups for SCIM operations. PingFederate uses this expression in conjunction with the Base DN value (defined on the Location screen) to add new groups.

Note:

This screen appears only if you are configuring an LDAP user store for provisioning and the User and Group Support option is selected on the Connection Type screen.

Enter the statement in the Filter text field.
The filter is in the form: attribute=${value}
Note:
Unlike filters used to retrieve LDAP attributes for adapter mapping, do not enclose the statement in parentheses.

The left-side variable is an attribute in your user-datastore. Click the link near the lower-left corner of the screen to see a list of available attributes.
The right side of the filter generally uses one or more attribute values passed in from the SCIM request. Variables for these attributes, including the correct syntax, are listed under SCIM Attributes.
Tip:
If you are unfamiliar with writing LDAP queries, please refer to the documentation accompanying your LDAP installation.