Configuring SailPoint IdentityIQ with PingDirectory and PingFederate
This document describes how to integrate PingDirectory and PingFederate with SailPoint IdentityIQ.
Implementing an LDAPS connection with PingDirectory and IdentityIQ
Configure PingDirectory and IdentityIQ to implement an LDAP over SSL (LDAPS) connection from IdentityIQ to PingDirectory.
The IdentityIQ LDAPS integration to PingDirectory is a straightforward integration with the following caveats:
-
PingDirectory must use a trusted certificate.
-
IdentityIQ only supports the simple authentication bind mechanism.
Implementing SAML-based SSO with PingFederate and IdentityIQ
Configure PingFederate and IdentityIQ to implement SAML-based single sign-on (SSO).
The IdentityIQ integration to PingFederate acting as the identity provider (IdP) for SSO authentication is a straightforward standards integration with the following caveats:
-
The IdentityIQ application requires that the assertion portion inside the SAML response message is always signed.
-
This system is tested with PingFederate 9.2 and higher and with IdentityIQ 7.3.