The freedom users want.
The control you need.


PingFederate® Server

Connect everyone to everything

The PingFederate® server is a full-featured federation server that provides secure single sign-onAPI security and provisioning for enterprise customers, partners, and employees. Users can securely access the applications they need with a single identity using any device. Supporting all of the current identity standards including SAML, WS-Federation, WS-Trust, OAuth and OpenID Connect, PingFederate is recognized as a leading federation server today that also future-proofs your business for tomorrow. Learn more about federated access management.

Convenience without compromise

The PingFederate server provides IT organizations with the tools they require for high-integrity identity security. It allows you to keep identities and passwords where they belong while ensuring that users have access to the applications and information they need to get work done. The PingFederate server allows IT administrators to:

  • Centralize control over identities and authentication.
  • Implement advanced authentication policies allowing multiple sources.
  • Standardize user provisioning and de-provisioning.
  • Monitor and audit usage for governance and compliance.
  • Develop custom administration services using extensive admin APIs.

Build a federated organization

Separate identities from applications

Allow all applications to leverage a single identity and a single authentication function.

Reduce password risk

Eliminate multiple passwords and integrate multi-factor authentication for extra protection.

Centralize control

Provide a single interface for SSO, access management and user provisioning.

Gain valuable insights

Monitor SSO performance metrics, traffic and compliance from a single system.

Flexible security for today’s API economy

With the PingFederate server, you can:

  • Integrate with your existing identity stores, cloud directories or social identity providers.

  • Make dynamic access decisions based on device, location, time of day or other contextual data.
  • Authenticate users with relevant data from several data stores or identity systems.
  • Easily create sophisticated rules to make access decisions based on identity attributes, group memberships or authentication methods.
  • Protect both your web applications and APIs with standard protocols like SAML, OAuth and OpenID Connect.
  • Provide advanced federation protocol aggregation and translation.

Integrate with your existing environment

The PingFederate server includes rich integration components for identity stores like Active Directory, Azure AD and LDAP, web access management systems and multi-factor authentication systems like PingID™. It also provides simple REST APIs that authentication and service applications can leverage for user authentication, provisioning and secure SSO. The PingFederate server integrates with:

  • Microsoft IIS and Apache HTTP Server.
  • .NET, Java, PHP, Perl, Python and other development languages.
  • IBM WebSphere, Oracle Weblogic, Apache Tomcat.
  • CA Siteminder, Oracle Access Manager, Tivoli Access Manager, SAP Netweaver.
  • Active Directory, Azure AD, LDAP, RADIUS, x.509.
  • PingID, RSA SecurID, Symantec VIP, Google Authenticator.
  • PeopleSoft, ADP, Microsoft Dynamics and other commercial applications.
  • Amazon Web Services, Citrix XenApp and other virtualization platforms.
  • Thousands of SaaS applications.

Extend as you grow your IT strategies

Whether implementing in your datacenter or on an infrastructure as a service (IaaS) such as Amazon Web Services, the PingFederate server is uniquely able to connect private cloud environments with public cloud and multi-tenant applications like Salesforce, Dropbox and Office 365. Integrating the PingAccess and PingFederate servers allows you to extend this standards-based identity security to your own web applications and APIs at a very large scale, simply and reliably.