The following figure illustrates how PingFederate and the Token Processor interacts with the CTS:

Processing Steps

  1. A WSC sends a Request Security Token (RST) message containing a CoreBlox session token to the PingFederate STS IdP endpoint.
  2. The CoreBlox Token Processor validates and authorizes the token from the WSC with the CTS and returns a valid token back to the Token Processor.
  3. PingFederate STS embeds the mapped attributes in a SAML assertion wrapped in a Request Security Token Response (RSTR) back to the WSC.
  4. The SAML assertion is sent to the WSP.