Deploying and configuring the X.509 Certificate Integration Kit - PingFederate

Intune Integration Kit
bundle
pingfederate-intune-ik
ft:publication_title
Intune Integration Kit
Product_Version_ce
category
Administrator
Audience
ContentType
English
Integration
Intune
Language
Microsoft
Product
Productdocumentation
integrationdocx
pingfederate
ContentType_ce
Integration
Product documentation

The Intune Integration Kit requires the X.509 Certificate Adapter to parse information out of the user's client certificate.

  1. Follow the steps in Deploying the integration files in the X.509 Certificate Integration Kit documentation.
  2. Follow the steps in Configuring an adapter instance in the X.509 Certificate Integration Kit documentation with one of the following modifications.
  3. If you want to base security posture results on the user's current device using the deviceId attribute, on the Extended Contract tab, add the CN attributes to parse from the SubjectDN certificate.
  4. If you want to base security posture results on all of a user's devices using the userPrincipalName attribute, do the following:
    1. On the IdP Adapter tab, in the Advanced Fields section, select the Include Subject Alternative Name (SAN) check box.
    2. On the Extended Contract tab, add the deviceId or userPrincipalName attribute. The attribute that you add determines the type of security posture result you get from Intune. For details, see Device Lookup Attribute in Intune IdP Adapter settings reference.