To use the PingFederate WS-Trust STS for partner connections, start by enabling the WS-Trust protocol on the System > Protocol Settings > Roles & Protocols screen. Once the protocol is enabled, you must identify the STS server with a unique federation identifier for both SAML 2.0 and SAML 1.1 tokens (unless these IDs are already established for corresponding browser-based SSO protocols).

In addition, also under Server Settings, you have the option of requiring authentication globally for access to STS endpoints.