PingOne for Government
Datasheet
PingOne for Government is a FedRAMP (In Process) cloud identity and access management (IAM) solution for government agencies and suppliers that need to modernize their identity infrastructure in compliance with federal regulations. It provides federation, access management and directory capabilities hosted in a fully managed, dedicated cloud environment with data and resource isolation. With PingOne for Government, enterprises can facilitate secure access for federal employees, mission partners and suppliers to all resources across their hybrid IT environments.
Features
- Based on identity standards
- Facilitates dynamic autoscaling
- Enables SSO and identity federation
- Supports X.509 PKI certificates
- Stores structured and unstructured data
- Obfuscates or restricts access to sensitive PII
- Manages web and API access
- Centralizes policy management
Benefits
- Integrate with existing ICAM infrastructures
- Secure access to all resources
- Optimize operational performance
- Decrease IT costs
- Implement organization-wide phishing-resistant MFA
- Improve interoperability with agencies, mission partners and suppliers
- Comply with federal regulations and mandates (e.g., FedRAMP, EO 14028)
Proven Capabilities Delivered in the Cloud
Federation
An enterprise federation server for user authentication and standards-based single sign-on (SSO). It serves as a global authentication authority that allows employees, mission partners and suppliers to securely access all the applications they need from any device.
Access Management
A centralized access security solution with a comprehensive policy engine. It provides secure access to applications and APIs down to the URL level and ensures authorized users access only the resources they need.
Directory
A high-performance, scalable data store for identity and rich profile data. It allows enterprises to expose a master user record to all applications, manage millions of identities and billions of attributes and protect data with encryption in every state: at rest, in motion and in use.
Modernize Federal ICAM With Open Standards
PingOne for Government is built on open standards, making it easy to modernize IAM components within Federal Identity, Credential, and Access Management (ICAM) architectures. This is because standards-based technologies easily co-exist and integrate with other technologies in your environment. Whether your architecture needs a greater overhaul or you’re simply looking to augment select capabilities, PingOne for Government can help you uplevel ICAM capabilities—without ripping and replacing your existing investments—and lay the foundation for other modernization initiatives like Zero Trust.
Simplify IAM and Reduce Costs With Managed Services
As a fully managed cloud solution, PingOne for Government simplifies deployment and maintenance by taking care of all activities associated with product and infrastructure operation. This gives your enterprise the ability to consume advanced IAM capabilities from the cloud while reducing IT operational costs. To support using the solution daily, PingOne for Government customers have 24/7 support services compliant with federal data residency requirements.
Comply With FedRAMP
Federal agencies and suppliers have compliance mandates they must meet to demonstrate they are keeping Federal data secure when using cloud solutions. A solution that has gone through the FedRAMP process has demonstrated it meets the Federal Government’s required security controls. This allows agencies and suppliers to purchase and implement the solution without performing their own assessment to confirm it abides by those security controls. It also expedites audits, saving an immense amount of time and budget.
Extend MFA With Existing PKI Authenticators
PingOne for Government fully supports X.509 PKI certificates, which can be used to break down identity silos and extend use of PIV and CAC cards across the environment. This means users don’t need to adopt yet another authentication factor to enable MFA—now required by Executive Order 14028—and you can use existing PKI-based authenticators to apply phishing-resistant MFA to all your sensitive assets.
Take the next step with Ping