Note:

These steps include specific field configurations. For comprehensive instructions for configuring an LDAP PCV instance, see Configuring the LDAP Username Password Credential Validator.

To create an LDAP password credential validator (PCV) in PingFederate:

  1. Go to System > Data & Credential Stores > Password Credential Validators.
  2. On the Type tab, in the Instance Name list, select the LDAP datastore you created in Creating an LDAP datastore in PingFederate.
  3. In the Type list, select LDAP Username Password Credential Validator. Click Next.
  4. On the Instance Configuration tab:
    1. Configure the Search Base field.
    2. Configure the Search Filter field.

      For example, sAMAccountName=${username} for Active Directory and uid=${username} for Oracle Directory Server (ODS) and PingDirectory.

    3. Click Show Advanced Fields.
    4. Configure the Display Name Attribute, Mail Attribute, SMS Attribute, PingID Username Attribute, and Mail Verified Attribute fields.
    5. Configure the Mail Search Filter, Username Attribute, and Mail Verified Attribute fields for username recovery.
    6. For detailed password requirements, select the Enable PingDirectory Detailed Password Policy Requirement Messaging check box.
    Note:

    For more information about each field, see step 3 in Configuring the LDAP Username Password Credential Validator.

  5. Click Next.
  6. On the Summary tab, click Save.