In PingFederate, establish an Active Directory datastore connection for retrieving user attributes for outbound connections.
Component
PingFederate 10.1
Processing steps
Almost every customer using PingFederate as an identity provider (IdP) has at least one connection to a datastore. A datastore connection allows PingFederate to retrieve user attributes for outbound connections. Active Directory is the most common data source used to connect to PingFederate.
- The user initiates single sign-on (SSO) and activates PingFederate.
- The user enters credentials in the htmlForm page. PingFederate query’s the connected datastore for authentication.
- A SAML assertion is sent to the service provider containing the select attributes for SSO.