Page created: 16 Jul 2021 |
Page updated: 19 Jan 2022
When configuring the OAuth authorization server to exchange security tokens, if it uses an access token manager instances to generate requested tokens, then map the attributes in the attribute contract produced by the token exchange processor policy to the attributes in the tokens created by the access token manager instances.
- Define the token exchange processor policies. See Defining token exchange processor policies.
- Configure the access token managers instances. See Managing access token management instances.
In the Access Token Mapping window, map the attributes from a token exchange processor policy to the attributes from an access token manager instance.
- Go to .
- In the Context section, from the Context list, select a token exchange processor policy.
From the Access Token Manager list, select an access
token manager. Click Add Mapping.
The Access Token Mapping configuration window wizard opens.
- On the Attribute Sources & User Lookuptab, add access token manager attribute sources for contract fulfillment as needed. Click Next.
- On the Contract Fulfillment tab, select a Source and Value for each attribute. Click Next.
- On the Issuance Criteria tab, add and specify conditions that attributes must satisfy for PingFederate to exchange the token as needed. Click Next.
On the Summary tab, review the access token mapping.
The Access Token Mapping window opens.
- Click Save.