Please enter search query.
Search <product_name> all support & community content...
Article: 100054128
Last Published: 2022-12-21
Ratings: 0 0
Product(s): Appliances
To enroll a Flex appliance as a service provider for PingFederate
- Download the Flex Appliance service provider metadata.xml from the Flex Appliance Console or with the following Flex API:
https://<flex appliance>/api/v1/single-signon/metadata.
- Log in to your PingFederate account.
- If you already have an Environment with the SSO solution, use that environment and skip to step 5.
- If you do not have an environment, click Add Environment. On the screen that appears, do the following:
- Select Build your own solution.
- Select PingOne SSO.
Finish the Environment setup and open the environment.
- Click Connections in the navigation bar on the left.
- Click the plus icon next to Applications.
- Enter a name for the application. Under Choose Application Type, select SAML Application and click Configure.
- Configuration the application with one of the following methods:
- Import Metadata: Choose Import metadata and click Select a file. Upload the metadata file that you downloaded in step 1. Once the metadata file uploads successfully, the correct ACS URL and the Entity ID are shown. Click Save.
- Import From URL: Enter the following Flex Appliance service provider URL:
https://<flex appliance>/api/v1/single-signon/metadata.
Click Import. Once the metadata file uploads successfully, the correct ACS URL and the Entity ID are shown. Click Save.
- Manually Enter: Enter the ACS URL and the Entity ID, which you can get from the following service provider URL :
https://<flex appliance>/api/v1/single-signon/metadata
. In general, the ACS URL ishttps://<flex appliance>/api/v1/single-signon/acs,
and the Entity ID ishttps://<flex appliance>/api/v1/single-signon/metadata.
- If you used the Manually Enter option in the previous step, click Edit Configuration and add the URL's for the
SLO Endpoint
and theSLO Response Endpoint
ashttps://<flex appliance>/api/v1/logout.
Click Save. - Select the newly created app and click Attributes.
- Change the attribute mappings as shown in the following screen and click Save.
- (Optional) Veritas recommends that you enable encryption for assertions. To do so, perform the following steps:
- Refer to www.veritas.com/support/en_US/article.100054258 to obtain the Flex Appliance authservice certificate.
- Click Edit Configuration and select Enable Encryption.
- Upload the Flex Appliance certificate.
- Select the application and move the slider on the top bar to enable it.
- Click Configuration and then click Download Metadata. Use this file when you add the PingFederate IDP on your appliance.
Attachments
PingFederate Add App Save.png0.1166 MB
PingFederate Add Application.png0.246 MB
PingFederate Add Attribute Map.png0.1542 MB
PingFederate Configure.png0.4657 MB
PingFederate Connection.png0.3041 MB
PingFederate Create Env.png0.365 MB
PingFederate Edit.png0.1522 MB
PingFederate Enable App.png0.0286 MB
PingFederate Enable Encryption.png0.0843 MB
PingFederate Env.png0.1607 MB
PingFederate Import from URL.png0.0782 MB
PingFederate Save Attribute Map.png0.1047 MB
References
JIRA : FLEX-664