These steps build on the local identity profile that you created as part of Setting up self-service registration in the PingFederate documentation.

  1. On the PingFederate administrator console, go to Authentication > Policies > Local Identity Profiles.
  2. Open the local identity profile that you created in your initial self-service registration configuration.
  3. Optional: On the Profile Info tab, select the Enable Profile Management check box.
    This allows the user to sign on to a profile management page.
  4. Optional: Enable email address verification.
    For help, see Configuring email ownership verification options in the PingFederate documentation.
    1. On the Fields tab, click Create New Field.
    2. In the ID field, enter a name, such as emailVerified.
    3. In the Label field, enter a label, such as Email verification status.
    4. From the Type list, select Hidden.
    5. Click Done.
    6. On the Email Verification tab, from the Email Address Field, select the email attribute, such as lipEmail.
    7. From the Ownership Status Field, select the email verification status attribute, such as emailVerified.
    8. On the Data Store Configuration tab, map the new attribute to a data store attribute.
      For help, see in the PingFederate documentation.
  5. On the Registration tab, configure registration to use the policy fragment that you created in Creating a policy fragment.
    For help, see Configuring registration options in the PingFederate documentation.
    1. From the Username Field list, select the field that you want to use as the username for the authentication session, for example, lipEmail.
    2. From the Registration Workflow list, select the policy fragment that you created in Creating a policy fragment.
    3. For Execute Workflow, select Before Account Creation.
  6. On the Profile Management tab, select the Enable Profile Deletion check box.
  7. Click Save.