Island Enterprise Browser Device Trust Integration Kit

Configuring an adapter instance

Configure the Island Enterprise Browser Device Trust IdP Adapter to determine how PingFederate communicates with Island Enterprise.

About this task

You must have permission to configure integrations in the Island management console (fulladmin, system admin). Learn more in Configure Verified Device Access Integration in Island (requires sign-on).

While enabling permissions, identify the advanced settings criteria that align with your organization’s requirements. Keep these criteria in mind when configuring a Island Enterprise Browser Device Trust IdP Adapter adapter instance.

Steps

  1. In the PingFederate admin console, go to Authentication > Integration > IdP Adapters. Click Create New Instance.

  2. On the Type tab, set the basic adapter instance attributes:

    1. In the Instance Name field, enter a descriptive name for the adapter instance.

    2. In the Instance ID field, enter a unique identifier for the adapter instance.

    3. In the Type list, select Island Enterprise Browser Device Trust IdP Adapter. Click Next.

  3. (Optional) On the IdP Adapter tab, in the Island Device Trust API Response Mappings section, map attributes from the response issued by the Island Verify Challenge Response API endpoint to the attribute contract:

    1. Click Add a new row to ‘Island Device Trust API Response Mappings’.

    2. In the Local Attribute field, enter a name of your choice for an attribute.

    3. In the Verify Challenge Response Attribute Mapping field, enter the JSON Pointer syntax for the source Island Device Trust API attributes as described in JSON Pointer syntax.

      Example:

      The JSON pointer /deviceSignals/displayName returns the machine display name.

    4. In the Action column, click Update.

    5. To add more attributes, repeat steps a - d.

  4. On the IdP Adapter tab, configure the adapter instance by referring to Island Enterprise Browser Device Trust IdP Adapter settings reference. Click Next.

  5. On the Actions tab, test your connection to the Island Generate Challenge API endpoint. Resolve any reported issues, then click Next.

  6. On the Extended Contract tab, add any attributes you included in the Island Device Trust API Response Mappings section of the IdP Adapter tab. Click Next.

  7. On the Adapter Attributes tab, set pseudonym and masking options as shown in Set pseudonym and masking options in the PingFederate documentation. Click Next.

  8. On the Adapter Contract Mapping tab, configure the contract fulfillment details for the adapter as shown in Define the IdP adapter contract in the PingFederate documentation. Click Next.

  9. On the Summary tab, check and save your configuration. Click Save.

Next steps

Use Island Device Signals.