On the Identities tab, choose whether to connect PingFederate Bridge to a directory server. If you connect to a directory server, LDAP is used for user lookup and credential validation.

Note:

You do not need to use a directory server if you are only using PingID VPN or if you are configuring PingFederate Bridge to function as a test identity provider. If this is the case, select No, Don't Connect a Directory Server and click Next.

To connect to a directory server:

  1. Select Yes, Connect a Directory Server.

    You can create a new data store reuse an existing data store in this configuration.

    Create a new data store

    Provide the required information to connect to a directory server and then click Next.

    For more information about each field, refer to the following table.

    Field Description
    Directory Type Select the type of the directory server from the list.

    Refer to System requirements for a list of supported directory servers.

    Data Store Name Enter the name of the data store.
    Hostname Enter the location of the directory server.

    It can be the IP address, the host name, or the fully qualified domain name of the directory server. The entry may include a port number.

    Service Account DN Enter the distinguished name (DN) of the service account that PingFederate Bridge can use to communicate with the directory server.
    Password Enter the password associated with the service account.
    Search Base Enter the DN of the location in the directory where PingFederate Bridge begins its data store queries.
    Search Filter Enter the LDAP query to locate a user record for attribute lookup and potentially credential validation.

    The default value is either sAMAccountName=${username} or uid=${username}, depending on the selected directory type.

    If you require a more advanced search filter, ensure the value is a valid LDAP filter. For more information, consult your directory administrators.

    When you click Next, PingFederate tries to establish a secure (LDAPS) connection to the directory server.

    Use an existing data store

    Click Begin and then follow the on-screen instructions to create an SP connection to PingOne for Enterprise.