Before you perform the following procedure, define the token exchange processor policies (see Defining token exchange processor policies) and configure the token generator instances (see Managing token generators).

To map the attributes from a token exchange processor policy to the attributes from a token generator instance:

  1. On the OAuth Server page, in the Token Exchange section, click Token Generator Mappings.
    The Token Generator Mappings page opens.
  2. In the Source Instance list, select a token exchange processor policy. In the Target Instance list, select a token generator from a token exchange generator group. Click the Add Mapping button.
    The Mapping Configuration wizard opens.
  3. If the token generators needs additional attribute sources for contract fulfillment, use the Attribute Sources & User Lookup tab to add them.
  4. On the Token Contract Fulfillment tab, select a Source and Value for each attribute.
  5. If you want to specify conditions that attributes must satisfy for PingFederate to exchange the token, use the Issuance Criteria tab to add them.
  6. On the Summary tab, review the mapping configuration. Click Done.
    The Token Generator Mappings page opens.
  7. Click Save.