The post-password era
begins now.


PingID Multi-factor Authentication

swipe > work

When you look at the headlines today, it's obvious that a username and password are not enough to protect access to applications. PingID™ multi-factor authentication (MFA), part of our enterprise IDaaS platform, is a strong authentication solution that enables users to authenticate to applications using multiple factors. It balances the ease of use needed by end users with the control and security needed by IT administrators. With PingID MFA, you get:

  • Strong authentication to legacy and cloud applications using a mobile app.
  • Out-of-the-box integration with the PingOne® cloud and PingFederate® server.
  • Co-branding support for a consistent and familiar user experience.
  • MFA for privileged users with VPN, RDP, and SSH support.
  • Ability for users to authenticate with the Apple Watch.
  • Biometrics support on select Apple and Samsung devices.
  • Offline support using one-time passcodes.
  • Hardtoken support with YubiKey and many third-party solutions.

One auth service for all of your apps

Strong authentication systems are not new, but the way that they have been deployed has changed. Many of these existing solutions are expensive hardware tokens that need to be issued, shipped, revoked and maintained. This scenario demands a lot of effort, time and money. But it doesn’t have to be this way.  With PingID MFA, users simply install an app on their phone and register that device with the PingID service. One app gives you strong authentication for all of the things you need to get work done—regardless of where you are or which device you’re using.

Online, offline or YubiKey

PingID MFA supports both Apple and Android phones and tablets as well as YubiKey, a small hardware device that offers two-factor authentication with a simple touch of a button. When policy dictates the need for strong authentication, a push notification will be sent to the phone that the user has registered. They will be prompted to swipe on the application and they will be given access to the application. If wireless network issues prevent the notification from being delivered to the phone, the end user will be prompted to enter a one-time passcode (OTP) that is generated by the application. If they are using a YubiKey, they will simply plug the hard token into their computer and press the button on the Yubikey. For other mobile phone platforms, the user can receive an OTP via SMS or a call to the phone. 

Your policies

MFA: Best Practices for Securing the Modern Digital Enterprise

MFA: Best Practices for
Securing the Modern
Digital Enterprise

With PingID MFA, you can easily control when your users need to authenticate with a second factor. You can configure your policies based upon group membership in a directory, require step-up authentication for specific applications, the users’ location based upon the IP address or require it for all sign-on attempts. PingID MFA delivers the granular security that your policies need with the ease of use your users need.

Secure your VPN

Your users want to work from anywhere, but you need to make sure that they are securely accessing your network. PingID MFA can be used as a second factor of authentication for your VPN or any remote access clients that support the RADIUS protocol. When a user signs on to the VPN service, PingID MFA will send a notification to the users' device as a second factor of authentication. PingID MFA is easy to add to existing VPN solutions from Cisco, Juniper, Checkpoint, Fortinet, Citrix, SonicWall, F5, Palo Alto Networks, Microsoft UAG and others.

No need to rip and replace

Our flexible, secure multi-factor authentication solution easily integrates with dozens of third-party, two-factor and strong authentication providers. You can connect to systems like RSA SecureID, Symantec VIP, Safenet, Google Authenticator and many more. You get the security you need without the added expense of replacement software or custom development. Visit our software downloads to see our integrations.

How it works

PingID MFA is an application that is installed on a user’s Android or iOS device and communicates with a cloud API. When policy requires strong authentication, users are asked to simply swipe their mobile device to sign on or authenticate.