Tour the Product

PingFederate allows you to connect everyone to everything, serving as the global Authentication authority for your employees, partners, and customers.
Let's tour the product.
This is the PingFederate Admin Console.
It provides shortcuts to common tasks, such as configuring IDPs and authentication policies and helpful links to documentation, Support, Integrations, and more.
PingFederate provides the broadest set of enterprise authentication capabilities on the market, which you can see a summary of here.
Let's dive into some of these and their value they provide.
IdP adapters help you centralize authentication for all your employees, Partner, and customer login experiences, no matter how users are logging in today.
PingFederate makes authenticating workforce users easy with guided setups for Active Directory domains and Kerberos realms.
PingFederate also makes registration and authentication for your customers simple, Enabling you to configure social media providers and allow customers to unlink social Accounts after registration if desired.
With data store connections, PingFederate makes it easy for you to retrieve employee or Customer attributes from a wide variety of databases and Directory Servers and more for the Purposes of Authentication and Token Authorization.
You can also use PingFederate to connect partner IdPs with your applications, Enabling browser-based SSO provisioning, and more.
PinkFederate's password credential validators allow you to quickly look up and validate Passwords from multiple sources across your enterprise using LDAP, RADIUS, and other forms of validation.
PingFederate's authentication API allows you to directly embed identity services into your Own APPs, including registration, login, username and password recovery, and account unlocking.
Ping Federate's authentication policies are extremely flexible, Enabling you to choose the right combination of Authentication sources, User and device context to balance security and convenience for a workforce, Partner and customer users.
With session management, admins can manage sessions to define how frequently users are challenged to authenticate in general or when using a particular app by configuring idle and Max timeouts.
Now that we've discussed connecting all of your users, now let's talk about how PingFederate Makes it easy to connect all of your applications and APIs with out-of-the-box Integrations and standards-based connections like OAuth2-Clients shown here.
Our market-leading portfolio of IDP and SB adapters provide end-to-end integrations to Quickly authenticate and connect your users to their applications via SSO like Salesforce and Workday seen here.
Some applications require different types of tokens.
PinkFederate's token exchange capabilities enable you to exchange a client's security Token for another type of token without challenging users with additional Authentication steps.
PingFederate ensures that access is secure with a suite of configuration wizards to manage the Keys and certificates used for signing and decrypting tokens, Establish trust chains with Certificate Authorities, and secure communications, Metadata and redirects.
All of these Enterprise-grade authentication capabilities lead to a seamless end-user Experience where users can securely access any application within and outside your enterprise.
You can connect everyone to everything by deploying PingFederate in a cloud of your choice or by consuming PingFederate from Ping Cloud, our private SaaS solution.
Contact us to learn more.

Meet PingFederate

PingFederate is an enterprise federation server that enables user authentication and single sign-on. It serves as a global authentication authority that allows customers, employees, and partners to securely access all the applications they need from any device. PingFederate easily integrates with applications across the enterprise, third-party authentication sources, diverse user directories, and existing IAM systems, all while supporting current and past versions of identity standards like OAuth, OpenID Connect, SAML, and WS-Federation. It will connect everyone to everything.

How it Works

PingFederate integrates with existing systems and is simple to configure for rapid deployment. Integrated with end-user applications and identity management systems, PingFederate completes the “first/last-mile” implementation of a federated identity network for browser-based single sign-on. PingFederate supports identity and access management integrations with a wide range of cloud, mobile, SaaS, APIs, and on-premises applications. PingFederate's deployment architecture provides one location to manage the environment, eliminating the need to maintain redundant copies of configurations and trust relationships.

With PingFederate you can:

Centralize control over authentication policies and SSO

Sign on to any application for any device in any location

Configure complex authentication policies

User Journey Alignment

PingFederate is integral to the “Authenticated” stage of the user journey.

Balance Security and User Experience

Complex environments require balancing security and experience. PingFederate helps you provide seamless access to data and applications without the hassle of multiple sign-ons and passwords, which makes customer experiences frictionless and boosts employee productivity. Do away with insecure password practices that put organizations at risk of a data breach and cost money on password-related support. With automated provisioning capabilities, MFA support, user self-service features, and more, organizations can enhance security and improve the user experience at the same time.

An image of the PingFederate user dashboard

Intuitive Customer Experiences

Customers interact with brands using a variety of channels and devices. They won’t tolerate using separate sets of credentials to register and/or sign-on. Unlike employees who are provisioned, customers must be able to self-register and login in a way that’s intuitive. PingFederate provides consistent sign-on and registration experiences across channels with out-of-the-box templates for user registration and profile management. There are also social and third-party sign-on features and APIs that allow you to directly embed authentication services into your organization’s apps.

Authentication With Intelligence

In situations where passwords are not sufficient, such as providing access to high-risk transactions and sensitive applications and data, PingFederate can require MFA to further reduce risk. When integrated with PingOne Protect (or other services), the admin can configure PingFederate to consume signals from those sources and configure authentication requirements based on those signals in authentication policies.

image of user interface creating authentication policies

Easily Create Authentication Policies

PingFederate provides easy-to-use configuration options that help administrators implement complex authentication requirements. Admins can configure PingFederate to evaluate the conditions of user requests and create authentication policies. This is done by using the policy editor in the PingFederate admin UI, where administrators can copy and paste policies and reuse policy fragments.

Benefits & Features

Includes registration, profile management, and password reset

Standards-based single sign-on

Automated provisioning

Configure contextual MFA and adaptive authentication

Enable federated identity management with a single authentication authority

Social login and account linking

Supports all identity types

Extensive library of out-of-the-box integration kits and policy templates

Create context-aware authentication and approval policies

SIEM and audit logging

Business Value

Increase security

Minimize friction
in the user
experience

Gain business &
IT agility

Flexible Deployment Options

PingFederate can be deployed as:

PingOne Advanced Services - Dedicated tenant cloud services
PingOne Cloud Software - Deploy anywhere cloud containers

Learn More About Our Deployment Options

Platform Alignment

PingFederate is an integral part of the PingOne Platform and is essential to the “Authenticate” phase of the identity and access management user journey.

Learn More About Our Platform

Platform Alignment

PingFederate is an integral part of the PingOne Platform and is essential to the “Authenticate” phase of the identity and access management user journey.

Learn More About Our Platform

Need to Meet FedRAMP or DoD IL5 Requirements?

PingFederate is also offered as part of Ping Government Identity Cloud, a FedRAMP High Authorized and a DoD IL5-certified solution meeting DoD's Cloud Computing Security Requirements Guide (SRG) for Impact Level 5 (IL5).

Learn More About Ping Government Identity Cloud