PingFederate is an enterprise federation server that enables user authentication and single sign-on. It is a global authentication authority that allows customers, employees, and partners to access all the applications they need from any device securely. PingFederate easily integrates with applications across the enterprise, third-party authentication sources, diverse user directories, and existing IAM systems, all while supporting current and past versions of identity standards. It will connect everyone to everything.

PingFederate Enables

• SSO and identity federation
• Authentication and approval policy creation
• Social login, account linking, and automated provisioning
• Registration, profile management, and password reset

The deployment architecture of PingFederate eliminates the need to maintain redundant copies of configurations and trust relationships. Supported federation standards include OAuth, OpenID, OpenID Connect, SAML, WS-Federation, WS-Trust, and SCIM.

Notable Features & Benefits

• Advanced self-service user management, including password resets, account recovery, and username recovery
• Standards-based single sign-on to eliminate insecure password proliferation
• Lightweight, scalable architecture
• Rapid, automated provisioning and de-provisioning of users
• Configure contextual MFA and adaptive authentication
• Connect all identity types with federated identity management and single authentication authority
• Social login and account linking
• Extensive library of out-of-the-box integration kits and policy templates
• Create, copy, and paste context-aware authentication and approval policies
• SIEM and audit logging

Business Value

With PingFederate, you can:

• Centralize control over authentication policies and SSO across your organization.
• Sign in to any application for any device in any location.
• Configure complex authentication policies tailored to the needs of your users and organization.

Capabilities

Security and User Experience

• Provide seamless access to data and applications without the hassle of multiple sign-ons and passwords
• Eliminate insecure password practices that put you at risk of a data breach
• Automated provisioning, MFA support, and user self-service features
• Collect and aggregate identity attributes from multiple sources, including external identity repositories or attribute services

Intuitive Customer Experiences

• Enable self-registration
• Provides consistent sign-on and registration experiences across channels
• Out-of-the-box templates for user registration and profile management
• Social and third-party sign-on features
• APIs to embed authentication services into apps
• Customizable branding, including registration, login, email templates, text messages, and more

Multi-Factor Authentication & Adaptive Authentication

• Integrate with PingID, PingOne MFA, or other third-party MFA solutions to utilize contextual data such as location, device type, and network to develop risk-based access policies
• Consume risk signals from PingOne Risk or other third-party risk solutions and create policies to step-up authentication based on risk scores

Application Integrations & Integration Kits Highlights

• PingOne DaVinci, PingOne Verify, and PingOne Risk Integration Kits
• AWS IAM Identity Center Provisioner, Zscaler Private Access Connector Integration Kit, and Salesforce Contacts Connector
• ID Data Web Integration Kit
• Iovation Integration Kit
• Jamf Integration Kit
• Microsoft IIS and Apache HTTP Server
• Apache Tomcat, SAP NetWeaver, and other application servers
• Oracle Access Manager and other web access management systems
• Active Directory, Azure AD, LDAP, and other authentication systems
• PingID, PingOne MFA, RSA SecurID®, Symantec™ VIP, Google Authenticator, and other two-factor and robust authentication systems
• Microsoft 365, PeopleSoft, ADP, Microsoft Dynamics, and other commercial applications

Deployment Options

PingFederate can be deployed as:

FedRAMP Solutions for Government

PingFederate is also offered as part of Ping's FedRAMP solutions for government — FedRAMP High, DOD IL5 authorized solutions that meet the U.S. Federal Government's required security controls at the high impact level.