- PingFederate 10.3
Before creating the policy, you must have an Identifier First Adapter instance and an HTML Form Adapter configured. For more information, see Configuring an Identifier First Adapter instance and Configuring an HTML Form Adapter instance.
For information on authentication policies, see Defining authentication policies.
- Go to Add Policy. , and then click
- From the Policy list, select IdP Adapters and then select your Identifier First Adapter instance.
Click Rules and configure the sign-on flow for users
according to the following example.
This determines which IdP the user will authenticate against.
Configure the authentication policy according to the following example.
- Click Done.
When users from Company B sign-on using their IdP, the IdP sends the assertion to the PingFederate SP endpoint. PingFederate provides the necessary attributes to the IdP endpoints, which are then used to generate an authentication response to Company A's application.