Pricing

Solutions D’identité

Consultez la tarification et les caractéristiques de nos packs de solutions sur cloud

overview

Go Faster with Turnkey Solutions

Ping Identity provides cloud-ready, packaged solutions with market-leading extensibility, integrations and automated deployments to the cloud of your choice so you can accelerate your digital transformation with confidence. 

workforce solutions
Workforce360 EN SAVOIR PLUS

$5 / utilisateur / mois

Des réductions en fonction du volume et des services professionnels de Ping sont disponibles.

SHOW WHAT'S INCLUDED
HIDE WHAT'S INCLUDED

Authentication and Single Sign-on

Federated Single Sign-on

Federated identity management takes advantage of standards to securely exchange user information and replace passwords with signed assertions (or tokens)

Federated single sign-on hub integrates with existing identity repositories and eliminates the need for multiple passwords

Federation hub aggregates attributes from multiple directories on the fly, enabling:

  • IdP to SP
  • IdP to Multiple SPs
  • Multiple IdPs to SP
  • Multiple IdPs to Multiple SPs
  • Protocol Transition

Connections to all identity stores, including multiple AD domains, on-premises or cloud-based directories

Unlimited number of integrations to any application, including custom, on-premises, SaaS or cloud applications

Identity federation for various SSO scenarios

  • IdP-initiated SSO
  • SP-initiated SSO
  • SSO for non-standards-based applications
  • SSO for APIs, mobile applications and web services
  • SSO for IoT

Integrated Access Management

Native support for identity standards, including OAuth, OpenID Connect, SAML, SCIM, LDAP, RADIUS, HTTP, WS-Trust, WS-Federation, FIDO, JSON Web Tokens (JWT) and more

Unlimited connections to all identity data stores and directories, whether on-premises or cloud-based, including LDAP, Active Directory, Azure AD, Oracle Directory, RADIUS, Simple U/P and more

Application catalog with popular, pre-integrated applications (e.g., Office 365, Salesforce, G Suite, PeopleSoft, ADP, Microsoft Dynamics and more)

Support for multiple MFA solutions, including PingID, Duo, RSA SecurID®, Symantec™ VIP, Google Authenticator and other two-factor (2FA) and strong authentication systems

Smart card authentication integration, including CAC and PIV cards

Out-of-the-box integrations with existing web access management (WAM) systems, including Broadcom Layer7 SiteMinder (formerly CA Single Sign-on), Oracle Access Manager, SAP Netweaver and other WAM tools

Server integration kits, including Oracle AM 11G, Oracle Weblogic, PHP, Sharepoint, WAM, Airwatch, Apache, Java and more

Authentication adapters, including PingID, Kerberos, HTML, OpenToken, X.509 Certificates and third-party MFA

Authentication selectors, including CIDR (IP), Cluster Node, Connection Set, HTTP Header, HTTP Request, OAuth Scope, Authentication Context, OAuth Client Set, PingFederate SDK and more

Integration with popular SIEM vendors, online events streaming and reporting tools

Employee Experience

Consistent employee sign-on experience with common credentials across digital properties

Centralized, customizable application portal for one-click access to on-premises and SaaS applications from mobile or desktop devices

Identifier-first adapter enables a passwordless experience for employees

Self-service capabilities for employees to reset their own passwords and get back to work

Ping browser extension for password vaulting in Chrome, Firefox and Internet Explorer

Simplified Architecture

Support for cross-domain, hybrid deployments (on-premises and cloud-based)

Automated deployment of identity to the cloud by leveraging the latest industry tools such as Docker and Kubernetes

Simple set up for Microsoft Active Directory and the ability to authenticate without having to synchronize to the cloud

Ease of Management

Visibility of all clients/connections across the lifecycle and automatic promotion of client/connections across any instance of Ping SSO software

Centralized operating portal for authentication and SSO as well as delegated administration for business application owners

Proprietary provisioning and automated SCIM provisioning/deprovisioning for popular apps via the app catalog and just-in-time (JIT) provisioning

Globally distributed, load-balanced and secure, with SAS Type II compliant data centers. Network Operations Center monitors physical and digital performance 24/7/365

Adaptive Multi-factor Authentication

Diverse Authentication Methods

Swipe, fingerprint scan or OTP with PingID mobile app for Apple iOS and Android phones and tablets

PIN-protected desktop app for Windows and Mac

SMS, voice and email OTP; push notifications for iOS and Android

Fingerprint and facial recognition, including Apple Touch ID and Face ID

Apple Watch tap, Android biometrics

Passwordless web authentication with support for FIDO2-certified authenticators such as Windows Hello, Touch iD, Nymi Bands and other security keys

Third-party MFA authenticators, including Yubikey, Nymi Bands, OATH tokens, Google Authenticator, Microsoft Authenticator, U2F and more

Offline MFA mode allows users to authenticate without an Internet connection

Bring your own Twilio account for dispatching SMS and voice messages

Context for Intelligent Authentication

Risk-based, adaptive, contextual authentication policies including location, IP address, geofencing, time limits, device identifiers, resource being accessed, device posture and networks

Employ geofencing to skip MFA requirement if trusted device is accessing from a "secure" location or network

Device pairing requirement gives endpoint visibility and remediation against vulnerable managed and unmanaged devices, including allowed, disallowed, minimum OS, device lock, rebooted, jailbroken, root detection and minimum app version

Intelligent detection of "impossible travel"; geovelocity detecting when a user's location changes rapidly

Intelligent IP reputation score to enable step-up authentication when the IP is related to suspected malicious activity

Support for cryptographically strong session maintenance

Support for role-based entitlements and web-based access for subsets of users

Group- and application-level access policies

MFA That Integrates Everywhere

Contextual authentication and integrations with major mobile device managers (MDMs), including Airwatch, MobileIron and Microsoft Intune

MFA for VPN/RADIUS, Azure AD, AD FS, Windows Server/Desktop/RDP/local login, Linus/Unix SSH and custom APIs

Support for on-premises, private cloud and SaaS applications

User Experience

User self-service password resets

Self-service allows employees to add secondary devices, authorize/remove a device and promote a secondary device to a primary device

Support for pairing multiple authentication devices allows employees to choose between authentication methods in real-time so they can authenticate even when they don’t have their primary device

Enable backup authentication with user's profile information when they forget or lose their primary device

Brandable user experience; customizable native mobile application, user notifications, registration and enrollment screens

Ease of Management

Dashboards, reporting and audit trails

Detailed authentication event reporting such as evaluation and result, IP address, triggered policies, requested application and device status

End user self-service capabilities reduce the burden on help desk and administrators

Manage user device networks to block/unblock devices, bypass PingID Authn and remove/unpair devices

Manage users via admin UI and APIs

Delegate admin roles

Multi-language support and local settings

Administrative bypass capability

Directory & Data Store

Security

Data encryption in every state—at rest, in motion and in use

Securely hash passwords with newer algorithms like Argon2, PBKDF2, Scrypt and Bcrypt

Record- and attribute-level access control to data

Administrator alerts for insecure configuration, access control and accounts

Least-privileged access for admin accounts

Tamper-evident and encrypted logging

Rapid integration to third-party security monitoring tools

Single Source of Truth

Hybrid directory service that includes both an IDaaS directory and cloud-ready software directory

Unlimited custom user attributes and fields

Unlimited directory integrations (AD, LDAP and more)

Profile synchronization that supports custom attribute mapping and transformation

Flexibility

Extreme scalability with low latency—reliably store and manage hundreds of millions of identities and billions of attributes

Access all unified profile data via REST, SCIMv2 APIs or LDAPv3

Easily store unstructured data (e.g. browser fingerprints)

Flexibility to deploy anywhere (e.g. virtual machine, containers, cloud and/or on premises) and coexist with other directory solutions and databases

Automated deployment of identity to the cloud by leveraging the latest industry tools such as Docker and Kubernetes

Ease of Management

Ensure performance and adherance to SLAs by monitoring the infrastructure topology via management console

Real-time, bidirectional data synchronization and proxy capabilities for zero-downtime, risk-free application and data migrations

Compatibility modes and custom server extensions to emulate the proprietary or non-standard behavior of other systems, eliminating the need to re-code or re-deploy other systems

Built-in LDAPv3-compliant proxy server designed to allow full control over load distribution

Delegated administration of user profiles across your workforce (e.g. help desk, HR, other)

Adaptive Access Security learn more

Contact for pricing:

+1 877-898-2905

customer solutions
Customer360 LEARN MORE

Contact for pricing:

+1 877-898-2905

SHOW WHAT'S INCLUDED
HIDE WHAT'S INCLUDED

Enterprise Customer Identity Platform

Scale & Performance

Manage hundreds of millions of users

Store billions of attributes

Handle tens of thousands of authentications per second

Topology management console for SLA visibility

Ease of Use

Pre-built assets and UIs

Customizable email templates

Operational visibility through native dashboards or APIs

Deployment

Flexibility to deploy anywhere (e.g. virtual machine, containers, cloud, IDaaS and/or on premises) and coexist with other directory solutions and databases

Automated deployment of identity to the cloud by leveraging the latest industry tools such as Docker and Kubernetes

Support for cross-domain, hybrid deployments (on-premises and cloud-based)

Hosted Identity-as-a-Service (IDaaS) platform for customer identity

Security

Data encrypted in every state—on disk, in memory and over the network

Enable administrator alerts

Least-privileged access for admin accounts

Record- and attribute-level access control to data

Securely hash passwords with newer algorithms like Argon2, PBKDF2, Scrypt and Bcrypt

Tamper-evident or encrypted logging

Simplified integration to third-party security and monitoring tools

Central Identity Operating Portal

Application lifecycle management visibility into who promoted what and when

Central monitoring with a single screen for all clients/connections across environments

Delegated administration portal with templates and workflows for business users to onboard and manage their own apps and certificates

Orchestration engine that uses automation to promote configurations across environment tiers

Customer Acquisition & Retention

Registration

Store rich customer profiles including:

  • Custom attributes
  • Unstructured data
  • Preferences
  • Privacy and consent choices
  • Credentials

 

Access customer profile data using REST and SCIM APIs

Customizable registration templates

Social registration and account linking

Secure, convenient password policies

Register with custom IdPs

Give users registration options—custom forms, social registration or third-party IdPs

Email ownership verification

Customize required registration fields

Customers can manage their data and preferences consistently across channels

Authentication

Group- and application-level sign-on policies

Multiple passwordless options:

  • SMS, email or voice OTPs
  • Push notifications from custom apps

Social login

Customizable sign-on templates

Customer-managed passwordless preferences

Zero login—authenticate using QR codes that don't require usernames or passwords

Passwordless transaction approval, CSR identity verifications and more

Multi-factor Authentication

Advanced, risk-based, contextual MFA

Embed MFA into your own mobile app

Leverage adaptive authentication and authorization policies

Restrict rooted or jailbroken devices through root detection

Create customizable authentication screens

Allow users to avoid prompt for MFA based on time of last authentication

Customized text for MFA

Choose which country SMS OTPs are sent from

Dedicated SMS and voice phone numbers

Restrict users from sharing authentication devices

Manage user device networks through admin UIs or APIs

  • Authorize a primary device
  • Add secondary devices (and promote to primary device)
  • Block or unblock users/devices
  • Bypass requests
  • Delegate admin roles
  • Manage users via APIs
  • Remove/unpair devices

Admin portal that allows you to:

  • Manage users
  • Manage multiple apps
  • View transaction and user reporting

Support

CSR identity verification using SMS, email or voice OTPs, or push notifications from custom apps

Control which customer attributes CSRs can see

Single Sign-on

Open standards support:

  • OAuth 2.0
  • OpenID Connect
  • SAML
  • SCIM

Inbound and outbound federation for custom apps

Unlimited OIDC and SAML connections

Connections to all identity stores, including multiple AD domains, on-premises or cloud-based directories

Single logout

Unlimited integrations to any app—custom, on-prem, SaaS or cloud

Federation hub aggregates attributes from multiple directories on the fly, enabling:

  • IdP to SP
  • IdP to multiple SPs
  • Multiple IdPs to SP
  • Multiple IdPs to multiple SPs
  • Protocol transition

Identity federation for various SSO scenarios

  • IdP-initiated SSO
  • SP-initiated SSO
  • SSO for non-standards-based applications
  • SSO for APIs, mobile applications and web services
  • SSO for IoT
Unified Customer Profile learn more

Contact for pricing:

+1 877-898-2905

Privacy & Consent Management learn more

Contact for pricing:

+1 877-898-2905

Passez à l’étape suivante

Découvrez comment Ping peut vous aider à garder une longueur d’avance dans un monde numérique qui évolue rapidement.