PingOne Advanced Services are Ping’s proven, best-of-breed IAM software products, delivered as-a-service and managed by Ping. The products available through PingOne Advanced Services are PingFederate, PingDirectory, PingAccess, and PingCentral. PingOne Advanced Services is provided as a dedicated tenant, so there are no “noisy neighbor” issues impacting your service uptime. It is built to autoscale to your workloads and auto heals to detect failed instances and recreate them automatically.
Better Together, But Not Dependent
Since you already use Ping Identity’s software products, you’re likely already familiar with the fact that across the Ping Identity product portfolio, we provide in-depth capabilities that are highly cohesive but loosely coupled. This principle holds across our PingOne Advanced Services offerings. This helps enterprises achieve the flexibility they need because our products are not dependent on one another; e.g., you don’t have to buy authentication and directory from us. But, if you do buy multiple capabilities from us, you get the benefits of “one-plus-one-equals-two” because Ping provides out-of-the-box integrations with our services that can allow you to achieve sophisticated use cases quickly.
Stop Worrying About Usage Spikes
Here are a couple of examples to give you an idea of how scalable PingOne Advanced Services are. An American consumer electronics company that designs and sells TVs, sound bars, viewer data, and advertising has an average of about 35,000 requests per minute. During the Superbowl and the Olympics, their traffic shot up 100x to 3.5M transactions per minute, and PingOne Advanced Services was able to autoscale and address it. Ping employees didn’t even need to suddenly add additional CPUs or additional memory—our system automatically did it and all we did was closely monitor the situation. Another customer, an aircraft manufacturer, has a normal daily consumption of 80B requests.
Unlike some cloud identity service providers, PingOne Advanced Services does not throttle API requests to limit the number of transactions per second, and in the case of a usage spike, Ping won’t send you a surprise bill. So you won’t have to worry about the impact on your operations or unexpected charges.
We Give You Visibility to Monitor Your Infrastructure & Product Operations
Even though Ping is taking over your infrastructure and product operations and we are responsible for fixing any issues, you’ll still want visibility and awareness of what’s happening in your environment. We have options for you to subscribe to the PingOne Advanced Services log files and integrate them with your SIEM tools along with the rest of your stack operations and other monitoring you’d like to have. We also have options for customers to subscribe to our SMS alarming knowing fully that that is just for visibility—Ping is accountable for fixing it. We also provide you with Grafana and Kibana dashboards, which give you in-depth details on how the platform is operating.
Flexible Integration to Your Environments
Concerning the network integration options, we provide you with three different patterns:
Internet: For customers who want to log in to an admin portal for configuration, call our authentication API or admin APIs, you don't need to build anything unique or special here. PingOne Advanced Services can be delivered entirely over the internet as a full cloud service with no additional requirements.
Simple: If you need support for an LDAP endpoint, we would establish a simple network (VPN) to allow you to access the LDAP endpoint.
Advanced: If you need support for UDP-based protocols (e.g., Kerberos or RADIUS), we offer an advanced networking option where we act as an extension to your on-premises footprint (or wherever your corporate environment resides). We would work with you in putting a dedicated network connection between your infrastructure and PingOne Advanced Services with requests for IP ranges from you so it is visible to your team, and it comes with a lot of additional protection to support this UDP-based protocol.
Regarding environments, a sandbox Dev instance and a Production instance are included in your PingOne Advanced Services license.
Dev (Included) is a small two-node instance where developers can quickly configure PingOne Advanced Services and validate that it works.
Production (Included) comes with the sizing required to support your full production volume, and it can run in as many geographies and regions with as many nodes as is required.
If your organization needs a standalone QA environment, you have the option of purchasing a Test environment. If you are in the practice of doing regular load and performance testing, you have the option of purchasing a Stage environment that mimics and is identical to Production with regards to the same number of geographies, regions, and nodes.
Regional Replication & Redundancy
PingOne Advanced Services is offered globally through multi-region, geo-location-based routing that helps deliver low latency login experiences worldwide. In each of the three regions, we operate in at least two data center locations:
- North America: Ohio and Portland for U.S., and Montreal for Canada
- Europe, Middle East, and Africa: Ireland and Frankfurt
- Asia Pacific: Sydney and Singapore
We understand that the global landscape and the regulations around data residency are continuing to evolve, so we allow you the flexibility to decide what’s best for your business:
Global: You can consume your PingOne Advanced Services as a cluster across all three regions so that no matter where your customers coming from, they have the same low latency and fast response time.
Multi-Region: If you have strict data residency requirements and you need, for example, data in Europe to remain only in the Europe region and not the U.S. region, you could run multi-region, clustering each of these three geographies as independent solutions, thus providing you options to meet your global residency needs.
Based on your data residency or localization needs, Ping sets up the appropriate footprint that supports your business, whether that means a tenant operating in a single region, multi-region environments clustered together, or even segregated tenants in each independent region.