CIS14: Early Peek at PingFederate Administrative REST API
-
Upload
cloudidsummit -
Category
Technology
-
view
182 -
download
1
description
Transcript of CIS14: Early Peek at PingFederate Administrative REST API
![Page 1: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/1.jpg)
PINGFEDERATE ADMINISTRATIVE APIS Scott Tomilson – Technical Product Manager John DaSilva – Technical Training
Confidential — do not distribute
![Page 2: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/2.jpg)
![Page 3: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/3.jpg)
PingFederate Overview
![Page 4: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/4.jpg)
PingFederate – Some History …
![Page 5: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/5.jpg)
Administration
![Page 6: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/6.jpg)
Administration
![Page 7: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/7.jpg)
Administration
![Page 8: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/8.jpg)
API Interfaces
• Integration Kits – OpenToken (Java / .NET), Agentless (REST API)
• PingFederate SDK – Custom Adapters, Data Sources, PCVs, etc.
• SSO Directory Service • Connection Management Service • OAuth Client Management Service • copyconfig Services
Administration
Integration
![Page 9: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/9.jpg)
PingFederate Administrative APIs
APIs
Self-Service
Common Admin
Config Scaling
Config Mgmt
Focus Areas • Self-Service – provide
partners and developers with tools to administer themselves
• Common Admin – to support PingAccess and other add-on components
• Config Scaling – to enable deployments into the 1,000's of connections
• Config Management – to improve migration as well as auto-administer connections
![Page 10: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/10.jpg)
PingFederate Administrative API’s
• REST-based API’s • Flexible Authentication Options • Centralized Authorization Model
– Based on existing delegated admin model, with planned future expansions
• Validation and Error Handling model comparable to Admin UI • API audit trail • Consistent API modeling across all Ping Products
![Page 11: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/11.jpg)
Interactive API Documentation
![Page 12: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/12.jpg)
Interactive API Documentation
![Page 13: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/13.jpg)
Interactive API Documentation
![Page 14: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/14.jpg)
Interactive API Documentation
![Page 15: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/15.jpg)
Platform Centric
PingAccess PingFederate
![Page 16: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/16.jpg)
Platform Centric
PingAccess PingFederate
![Page 17: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/17.jpg)
How we’re using APIs at Ping …
Confidential — do not distribute
DEMO
Copyright © 2014 Ping Identity Corp. All rights reserved. 17
![Page 18: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/18.jpg)
Q4 ‘13 / Q1 ‘14 Q2 ‘14 2H 2014 2015
Interactive API Documentation
Auditing
Authentication Basic Auth
IdP Connections SAML 2.0 Browser SSO
Certificate Management Signing Key Pairs
Server Settings Role Management
Federation Info
OAuth AS Settings
Adapter Mapping AT Mapping
Client Management OpenID Connect Policies
Clustering Status
Replication
Initial Public Release OAuth
AT Management Plugins
Adapters IdP / SP Adapters
Adapter Hierarchies
Configuration Archive Import / Export
IdP Connections Metadata Export
Certificate Management HTTPS Certificates
Trusted CA Certificates
Data Sources LDAP JDBC
Custom
Password Credential Validators
OAuth RO Grant Type Mapping
Authentication OAuth
Mutual TLS
IdP Connections Full Profiles & Protocols
SP Connections
Kerberos Realms
Server Settings
Licensing
Delegated Auth Fine-grained Entitlements
Future Releases
PingFederate API Roadmap
Delivered Designing Planning Legend:
7.2 R2 / 7.3 7.2 7.1 R2 / R3
![Page 19: CIS14: Early Peek at PingFederate Administrative REST API](https://reader033.fdocuments.us/reader033/viewer/2022042601/54b6bb954a7959fa048b4582/html5/thumbnails/19.jpg)
What can you build today?
• Service Providers: – Self-Service SSO-enablement portal for IdPs (SAML 2)
– Custom certificate notification framework
• OAuth – Self-Service app registration (client, URLs, scopes) for
OAuth clients and OpenID Connect Relying Parties