1. Go to Connections > Resources.
  2. Click the + icon.
  3. For Create resource profile, enter the following information:
    • Resource name. A unique identifier for the resource.
    • Audience. (Optional) The intended audience for the resource. If you don’t provide a value, PingOne will default to the resource name.
    • Description. (Optional) A brief characterization of the resource.
    • Access token time to live. The maximum time that the access token will be valid for use in the application, in seconds.
  4. Click Next.
  5. For Attributes, map resource attributes to user attributes in PingOne. Enter a resource attribute and then select the corresponding PingOne attribute from the list. For example, you could map the OIDC family_name attribute to the PingOne Family Name attribute. You can add more attributes after you have created the custom resource. See Mapping attributes.
    • To add an attribute, click the + Add button. Enter an OIDC attribute and the desired PingOne mapping. Click the gears icon to use advanced expressions. See Using the expression builder.
    • To delete an attribute, click the trash can icon for the appropriate attribute.
    Note:

    Resources can use JSON attributes in their attribute mappings. You can use these attributes to pass complex information to applications through an access token. To add an attribute, see Adding user attributes.

  6. Click Next.
  7. For Scopes, configure the appropriate scopes for the resource. Each resource can have one or more scopes. To add a scope, click + Add scope. Enter the following:
    • Scope name. The name of the scope to be used for this resource. Scopes are defined by the resource server.
    • Description. (Optional) A brief characterization of the scope.
    Note:

    You can add more scopes after you have created the custom resource. See Editing a resource.

  8. Click Save.