Page created: 24 Jul 2019
|
Page updated: 8 Feb 2022
| 2 min read
Product PingFederate Integration Zscaler Internet Access Zscaler Language English Integration Content Type Product documentation Audience Administrator
To allow PingFederate to manage users in Zscaler Internet Access, create a service provider (SP) connection.
-
In the PingFederate
administrator console, create a new SP connection:
- For PingFederate 10.1 or later: go to Applications > Integration > SP Connections. Click Create Connection.
- For PingFederate 10.0 or earlier: go to Identity Provider > SP Connections. Click Create Connection.
-
Configure the basic connection details
with the Zscaler Internet Access quick connection template:
- On the Connection Template tab, select Use a template for this connection.
- In the Connection Template list, select Zscaler ZIA Provisioner.
- In the Metadata File row, upload the zscaler-metadata.xml file that you saved in Getting SAML details from Zscaler. Click Next.
- On the Connection Type tab, select only Outbound Provisioning. Click Next.
- On the General Info tab, in the Connection Name field, enter a name for the connection. Click Next.
-
On the Outbound
Provisioning tab, configure provisioning, as shown in Configuring outbound provisioning in the PingFederate documentation, with
the following details:
-
On the Target page, enter the Base
URL and Bearer Token values that you
noted in Getting a base URL and bearer token from Zscaler.
Note:
PingFederate verifies the access token when you activate the channel and SP connection.
- Optional: In the Provisioning Options section, customize the provisioning connector actions as shown in Provisioning options reference. Click Next.
- On the Manage Channels page, create a channel as shown in Managing channels in the PingFederate documentation. Click Done.
Note:For more information about the attributes available in your channel configuration, see Supported attributes reference.
- On the Outbound Provisioning tab, click Next.
-
On the Target page, enter the Base
URL and Bearer Token values that you
noted in Getting a base URL and bearer token from Zscaler.
- On the Activation and Summary tab, above the Summary section, click the toggle to turn on the connection. Click Save.