PingFederate is an enterprise federation server that enables user authentication and single sign-on. It serves as a global authentication authority that allows customers, employees, and partners to securely access all the applications they need from any device. PingFederate easily integrates with applications across the enterprise, third-party authentication sources, diverse user directories, and existing IAM systems, all while supporting current and past versions of identity standards like OAuth, OpenID Connect, SAML, and WS-Federation. It will connect everyone to everything.
How it Works
PingFederate integrates with existing systems and is simple to configure for rapid deployment. Integrated with end-user applications and identity management systems, PingFederate completes the “first/last-mile” implementation of a federated identity network for browser-based single sign-on. PingFederate supports identity and access management integrations with a wide range of cloud, mobile, SaaS, APIs, and on-premises applications. PingFederate's deployment architecture provides one location to manage the environment, eliminating the need to maintain redundant copies of configurations and trust relationships.
With PingFederate you can:
Centralize control over authentication policies and SSO
Sign on to any application for any device in any location
Configure complex authentication policies
User Journey Alignment
PingFederate is integral to the “Authenticated” stage of the user journey.
Balance Security and User Experience
Complex environments require balancing security and experience. PingFederate helps you provide seamless access to data and applications without the hassle of multiple sign-ons and passwords, which makes customer experiences frictionless and boosts employee productivity. Do away with insecure password practices that put organizations at risk of a data breach and cost money on password-related support. With automated provisioning capabilities, MFA support, user self-service features, and more, organizations can enhance security and improve the user experience at the same time.
Intuitive Customer Experiences
Customers interact with brands using a variety of channels and devices. They won’t tolerate using separate sets of credentials to register and/or sign-on. Unlike employees who are provisioned, customers must be able to self-register and login in a way that’s intuitive. PingFederate provides consistent sign-on and registration experiences across channels with out-of-the-box templates for user registration and profile management. There are also social and third-party sign-on features and APIs that allow you to directly embed authentication services into your organization’s apps.
Authentication With Intelligence
In situations where passwords are not sufficient, such as providing access to high-risk transactions and sensitive applications and data, PingFederate can require MFA to further reduce risk. When integrated with PingOne Risk (or other services), the admin can configure PingFederate to consume signals from those sources and configure authentication requirements based on those signals in authentication policies.
Easily Create Authentication Policies
PingFederate provides easy-to-use configuration options that help administrators implement complex authentication requirements. Admins can configure PingFederate to evaluate the conditions of user requests and create authentication policies. This is done by using the policy editor in the PingFederate admin UI, where administrators can copy and paste policies and reuse policy fragments.
Benefits & Features
Includes registration, profile management, and password reset
Standards-based single sign-on
Configure contextual MFA and adaptive authentication
Enable federated identity management with a single authentication authority
Social login and account linking
Supports all identity types
Extensive library of out-of-the-box integration kits and policy templates
Create context-aware authentication and approval policies