The PingFederate STS provides validation for JSON web tokens (JWTs).

  • On the Instance Configuration screen, provide the required information.
    Refer to the following table for information about each field.
    Field Description
    JWKS Endpoint URI The URI of the JWKS endpoint. A set of JSON Web Keys (JWK) are downloaded from this endpoint and used for JWT signature verification.
    Issuer A unique identifier for the issuer of the JWT.
    Expiry Tolerance The amount of time (in seconds) to allow for clock skew between servers. Valid range is 0 to 3600.