As an identity provider (IdP), you must specify how PingFederate obtains user-authentication information and use it to create single sign-on (SSO) tokens appropriate for your service provider (SP) partner, including additional user attributes as needed.
If you are a federation hub bridging a service provider to one or more identity providers, you can associate one or more authentication policy contracts to the SP connection. For more information, see Federation hub use cases.
The configuration involves choosing an identity-mapping method, if applicable; establishing an attribute contract, as needed; and mapping one or more IdP adapter instances, authentication policy contracts, or both.
- Go to .
- Click on the SP connection that you want to configure.
- Follow the steps to reach the Browser SSO tab for your connection. For more information, see Configure IdP Browser SSO.
- On the Assertion Creation tab, click Configure Assertion Creation.