Create an SP connection in PingFederate using the policy contract created in the previous task.
- Go to Create Connection. and then click
- On the Connection Template tab, select whether to use a template for this connection, and then click Next.
- On the Connection Type tab, select the Browser SSO Profiles check box, and from the Protocol list, select SAML 2.0. Click Next.
- On the Connection Options tab, select the option that applies to the connection, and then click Next.
- On the Import Metadata tab, import metadata from a file or URL if desired. Click Next.
- On the General Info tab, complete the Partner's Entity ID and Connection Name fields, and then click Next.
- On the Browser SSO tab, click Configure Browser SSO, and then select the applicable SSO profiles. Click Next.
- On the Assertion Lifetime tab, configure the assertion lifetime and then click Next.
- On the Assertion Creation tab, click Configure Assertion Creation.
- On the Identity Mapping tab, select the type of name identifier that you will send to the SP, and then click Next.
- On the Attribute Contract tab, extend the contract if desired. Click Next.
- On the Authentication Source Mapping tab, click Map New Authentication Policy.
- From the Authentication Policy Contract list, select the policy contract you created in step 1. Click Next.
- On the Mapping Method tab, choose to retrieve additional values from your data stores if desired. Click Next.
- On the Attribute Contract Fulfillment tab, from the Source list, select Authentication Policy Contract.
- From the Value list, select a value from the authentication policy contract and then click Next.
- On the Issuance Criteria tab, configure conditional authorization if desired, and then click Next.
- On the Summary tab, click Done.
- Click Next and Done until you reach the Protocol Settings tab. Click Configure Protocol Settings.
- On the Assertion Consumer Service URL tab, from the Binding list, select a binding, and in the Endpoint URL field, enter the endpoint URL. Click Add and then click Next.
- Click Next until you reach the Credentials tab, configuring the desired settings.
- On the Credentials tab, click Configure Credentials.
- On the Digital Signature Settings tab, from the Signing Certificate list, select a signing certificate. Click Next and Done until you reach the Activation & Summary tab.
- Click Save.