Selecting attribute sources (SAML 2.0) - PingFederate

Selecting attribute sources (SAML 2.0) - PingFederate - 10.0

PingFederate Server

bundle

pingfederate-100

ft:publication_title

PingFederate Server

Product_Version_ce

PingFederate 10.0

category

Product

pf-100

pingfederate

ContentType_ce

Page created: 12 Sep 2019 |

Page updated: 19 Mar 2020

| 1 min read

PingFederate 10.0 Product Configuration User task Single Sign-on (SSO) Capability Administrator Audience Product documentation Content Type Software Deployment Method SAML Standards, specifications, and protocols

For SAML 2.0 connections, the server can be configured to use only assertion attributes for user provisioning or to retrieve more attributes from the IdP in a follow-on Attribute Query transaction. The User Attributes screen displays the attributes expected in the assertion from this IdP.

Note:

Attribute Query is a SAML 2.0 profile. For OpenID Connect, SAML 1.x, and WS-Federation connections, this screen is not presented; PingFederate uses only attributes from the assertion for user provisioning.

If you and your IdP partner have agreed to use the Attribute Query profile for provisioning, select that option before leaving this screen.
You configure the Attribute Query profile later in the task flow.