When your PingFederate server is redirected to its own token endpoint, it must trust the certificate used to sign its tokens.
- Go go .
- In the Action menu for the certificate that PingFederate will use to sign its tokens, select Export.
- On the Export Certificate tab, select Certificate Only, and click Next.
- On the Export & Summary tab, click Export.
- Click Done.