Reputation: 6634
PingFederate multiple Identity providers
In my project, I am using PingFederate and want to integrate AD of two separate domains. It is pretty simple to integrate one but wasnt able to find any documentation on how to integrate 2 separate ADs of different domains. Additionally, I want to have IP restrictions as well (like users from IP1 would be authenticated against AD1 and users from IP2 would be authenticated against AD2).
I am using Agent-less integration.
Upvotes: 0
Views: 327
Answers (1)
Reputation: 356
Using PingFederate as the Identity PRovider (IdP), you would use an Authentication Selector, specifically the CIDR Selector for IP Restriction. This inspects the HTTP request for IP ranges using CIDR notation. The configuration for the Authentication Selector would then define a specific HTML Form Adapter using a specific Password Credential Validator (PCV). For example, CIDR Selector for IP1 would invoke the HTML1 form adapter that uses PCV to AD1, and then the CIDR Selector for IP2 would invoke HTML2 form adapter that uses PCV to AD2, and so forth. Authentication selectors have a default if none of the IP ranges match, which could redirect to an error page or goto some default authentication HTML Adapter form.
Upvotes: 2
Related Questions
- SAML SSO Using PingIdentity as an IDP
- Ping federate asp.net configuration saml sso
- PingFederate: Error Signature Required on SP Initiated Login
- Creating SAML protocol sign-in request programatically with .net libraries
- Ping federate as IDp, consuming the SAML 2.0 response in ASP .net web forms
- Ping Federate Identity Provider
- Configuring Ping Federate and Spring SAML to authenticate application
- PIngFederate SSO Multiple IdPs
- Netsuite as an Identity Provider - Ping (SAML 2.0)
- Integrating PingFederate with Salesforce