Complete the following to configure attribute source and user lookups for the HTML Form Adapter instances.
- On the Attribute Sources & User Lookup tab, click Add Attribute Source.
- On the Data Store tab, enter an attribute source ID and description of your choosing.
- In the Active Data Store list, select the datastore connection that you created in Configuring an LDAP connection.
-
On the LDAP Directory Search tab, in the Base
DN field, enter the base DN that contains the users whose
attributes you want to retrieve.
CN=Users,DC=contoso,DC=com
- In the Root Object Class list, select <Show All Attributes>.
- In the Attribute list, select objectGUID. Click Add Attribute.
- In the Attribute list, select userPrincipalName. Click Add Attribute. Click Next.
- On the LDAP Binary Attribute Encoding Types tab, click Next.
-
On the LDAP Filter tab, enter a filter to limit the
search, and then click Next.
(|(sAMAccountName=${username})(userPrincipalName=${username}))
Note:In this context,
${username}
contains the username from the HTML Form Adapter that PingFederate presents during browser-based SSO. - Click Done.