PingGateway Capabilities

Quickly Identity-enable Backend Applications and Services

Identity-enable APIs for secure integration with services. Check and enforce identity to protect APIs from unauthenticated and unauthorized users. Leverage any standards-compliant identity provider to integrate the PingGateway into the existing architecture. Single sign-on and single sign-off dramatically improves the user experience and will improve adoption and consumption of services.

PingGateway checks the validity of the requestor’s credentials to ensure they are correctly authenticated and authorized to access the requested resource.

Offers flexible credentials: OAuth 2.0, OpenID Connect, SAML & UMA 2.0
Allows you to utilize pre-shared keys using the Access Management Secure Token Service (STS).
Provides consistent levels of service by throttling access requests based on business need with parameters for time, day, week, user, domain, IP Address, and subscription levels.
Regulates spikes in traffic volume to reduce the risk of malicious attackers attempting denial-of-service (DDoS) attacks.
Extends authorization by leveraging the PingGateway as an independent policy enforcement point that is built on OAuth 2.0 and SAML standards.
Provides agent-less architecture to augment an existing WAM deployment.
Ensures consistent, secure access with single session sign-on and sign-out.
Simplifies and speeds configuration capabilities with a powerful design studio that lets developers configure PingGateway into a test or production environment only once.

Rapidly Enable and Connect your applications with Federated Identity Providers

Faster time to market and increased adoption is all possible with API federation as these capabilities simplify the development and connection to the Ping Identity Platform. Enable integration with business partners across your complex organization on-premises, off-premises, in the cloud, and on mobile devices using the latest standards SAML, UMA, OAuth 2.0, and OpenID Connect. PingGateway enforces authentication and authorization to ensure secure communication.

Federation can be both IdP and SP-invoked, so the required attributes can be attained and the user, device, thing, or service can be authenticated correctly and authorized to access the protected resources.

Integrate with existing IdPs thanks to an easy, standards-based authentication approach.
Authenticate and authorize users, devices, things, and services to access protected resources.
Build federation from the latest standards such as SAML, UMA, OAuth 2.0, and OpenID Connect.
Exchange tokens from one standard to another, using Access Management’s STS to enable Mobile Apps to access SAML resources.
Leverage a gateway approach to UMA to enable any existing Resource Server for UMA.

Integrate With Legacy Web Applications

Removing functioning legacy web applications or services that are already in place may not be a practical option for many organizations if there isn’t a compelling business case to upgrade. But if legacy applications and services don’t integrate with identity, they can be painful to manage and create security risks.

PingGateway, part of the Ping Identity Platform, can match the correct identity that the application requires and replay username, password, or any other variable in a stateful manner to ensure the session is opened correctly, using variables looked up in any accessible format: databases, flat files, or directories. This unique capability enables you to bring SSO to legacy web applications without the need to edit, upgrade, or recode. For example, you could enable integration with legacy web applications like Microsoft Outlook Web Access (OWA) or SharePoint using the same user identity.

Eliminates the need to change or rewrite existing applications to access legacy applications.
Adds a layer of identity security to applications and APIs without costly and time-consuming changes to each individual app.
Reduces the number of passwords end users need to remember and therefore reduces the cost of adding users to each legacy application.

Identity-enable IoT Brokers for Seamless Protection

In an IoT-ready world, APIs have become the cornerstone in connecting users, devices, and things to applications and services. APIs enable smart devices to communicate with other devices and leverage a variety of complementary applications.

IoT is a complex mashup of users, devices, things, services, and applications, all with varied relationships that will require a high level of security and scalability for these APIs. You need to identity-enable applications and services for seamless engagement across any user, device, or thing.

Our Identity Platform, authenticates and authorizes users, devices, and things to ensure secure access to applications and services is seamless across every platform.

Provides a secure and transparent connection between users, devices, and things to cloud services, mobile devices, and enterprise apps using the standards-based OAuth 2.0 authorization service.
Adds a valuable layer of security with centralized authentication as the PingGateway can authenticate all traffic that passes through it from users, devices, and things.

Start Today

Contact Sales

sales@pingidentity.com

See how Ping can help you deliver secure employee, partner, and customer experiences in a rapidly evolving digital world.