I installed PingFederate on AWS EC2 running Windows_Server-2008-R2_SP1-English-64Bit-Base-2014.04.09. I have a Java application that uses Spring Security for authentication.
I read about how with PingFederate I can configure an identity provider (IdP) and a service provider (SP). I realized that IdP will be the Application User providing the login credentials (Identity) and passing this to the SP, which has the target application separate from the SP in this diagram on this page here:
http://documentation.pingidentity.com/display/PF66/Service+Providers+and+Identity+Providers
This image also shows Federated Identity software on both sides of IdP and SP.
I created IdP and SP with my local PingFederate server to see which configuration options are there, and I got confused on which parts of this I really need to have SSO for my Spring security application.
My questions:
Do I need IdP and SP for the implementation I'm trying to do.
Now our usernames and passwords are stored in SQL Server, would I use this for PingFederate to authenticate users?
Should I use Spring SAML security for this or another route would be more appropriate?
Thanks for any help, I turned to PingFederate, but my regional solutions architect is closed until Friday.
I also apologize, if not completely in my thoughts, I am trying to ponder what is needed.