Configuring Talend Administration Center SSO with PingFederate

author
Talend Documentation Team
EnrichVersion
6.5
EnrichProdName
Talend Data Fabric
Talend Data Services Platform
Talend Big Data Platform
Talend Real-Time Big Data Platform
Talend Big Data
Talend MDM Platform
Talend Data Integration
Talend Data Management Platform
Talend ESB
Talend Cloud
task
Administration and Monitoring > Managing authorizations
EnrichPlatform
Talend Administration Center

PingFederate Overview

Configure PingFederate to enable secure outbound and inbound solutions for single sign-on (SSO) to Talend Administration Center.

PingFederate provides browser-based SSO to enable secure identity information exchange across domains. It extends employee, customer, and partner identities without passwords, using only standard identity protocols such as SAML 2.0.

For more information on system requirements and getting started with PingFederate, refer to the PingFederate documentation.

Creating Certificates in PingFederate

Before you begin

You must have an administrator PingFederate account configured.

Procedure

  1. Go to the Server Configuration tab.
  2. Under Certificate Management, click SSL Server Certificates.
  3. Click Create New.
  4. On the Create Certificate tab, enter the required information and click Next.
    The Common name is the host name.
  5. Verify the information on the Summary tab, then click Done.
  6. On the Certificate Management tab, click Activate for Runtime Server then Activate for Admin Console.
  7. Click Export to download the certificate.
  8. On the Export Certificate tab, select Certificate Only and click Next.
  9. Verify the information on the Export & Summary tab, then click Export.
    Add the certificate to the Talend Administration Center server's Java keystore.
  10. After clicking Done, you are directed back to the Certificate Management tab.
  11. Click Save.

Importing a Certificate for Signing

Procedure

  1. Go to the Server Configuration tab.
  2. Under Certificate Management, click Signing & Decryption Keys & Certificates.
  3. Click Import.
  4. On the Certificate Management | Import Certificate page, upload your certificate and enter your password, then click Next.
  5. Verify the information on the Summary tab, then click Save.
    You are directed back to the Server Configuration page.

Creating a Credential Validator

Procedure

  1. Go to the Server Configuration tab.
  2. Under Authentication, click Password Credential Validators.
  3. Click Create New Instance.
  4. Fill in the required information on the Type tab, then click Next.

    In the TYPE field, select Simple Username Password Credential Validator.

  5. On the Instance Configuration tab, click Add a new row to 'Users'.
    Fill in the required information, then click Update and Next.
  6. Verify the information on the Summary tab, then click Done.
    You are directed back to the Manage Credential Validator Instances page.
  7. Click Save.

Creating Adapters

Procedure

  1. Go to the IdP Configuration tab.
  2. Under Application Integration, click Adapters.
  3. Click Create New Instance and create the following adapters:
  4. Click Save.

Results

Creating a HTML Form IdP Adapter

Procedure

  1. Navigate to the Type tab on the Manage IdP Adapter Instance | Create Adapter Instance page.
  2. Fill in the required information (Instance Name and Instance ID) and select the HTML Form IdP Adapter as Type, then click Next.
  3. On the IdP Adapter tab, click Add a new row to 'Credential Validators' and select the validator created in Creating a Credential Validator.