The Connection Set Authentication Selector enables PingFederate to choose configured authentication sources or other selectors based on a match found between the target service provider (SP) connection used in a single sign-on (SSO) request and SP connections configured within PingFederate.
This selector allows you to override connection authentication selection on an individual connection basis in one or more authentication policies.
When you place this selector instance as a checkpoint in an authentication policy, it forms two Yes and No policy paths. If the invoking SP connection matches one of the connections from the set, the selector returns true. The policy engine regains control of the request and proceeds with the policy path configured for the result value of Yes. If the invoking SP connection matches none of the connections from the set, the selector returns false. The policy engine regains control of the request and proceeds with the policy path configured for the result value of No.