PingFederate® is a lightweight and powerful identity bridge that delivers a comprehensive identity management solution for federated access to applications using existing identity infrastructure.
- 80 pre-packaged integration kits
- Connect to any identity store and application, on-premises and in the cloud
- Deploys anywhere in less than a day
Powerful IT Administration
- Centralizes control over identities and authentication
- Standardizes user provisioning to any application
- Monitors usage for compliance and governance
Flexible Access Control
- Adaptive federation allows you to customize user access scenarios
- Identity mapping and attribute retrieval
- Token-based security eliminates password dependence
With industry standards like SAML, OAuth and OpenID Connect, PingFederate gives employees, customers and partners secure one-click access to any application, whether in the cloud or on-premises.
Federated Identity Management
Use your existing identity stores for authentication and attribute retrieval. Provide adaptive federation and authorization capabilities to control access.
Secure Mobile Access
Secure user access from any mobile device using open standards like OAuth and OpenID Connect.
Allow developers to include identity information in their SOAP or REST-based API calls using open standards.
Social Identity Integration
Increase customer adoption by allowing consumers to log in with their Google, Yahoo, Twitter, Facebook, Windows Live or Twitter credentials.
Automated User Provisioning
Provision your users for the most popular enterprise cloud services automatically. Use the SCIM standard to automate inbound and outbound user provisioning to corporate directories and SaaS apps.
Extend enterprise technologies and leverage existing infrastructure for rapid deployment of secure identity management solutions
- Easy integration with over 80 SaaS, on-premise, custom and legacy technologies
- Leverage existing investments
- Rapid and flexible deployment
Our integration kits support all leading identity management systems, strong auth vendors and applications
Authentication and User Store Integrations
Strong Authentication Integrations
Cloud Identity Connectors
Leverage popular cloud identity providers to authenticate and connect employees, partners and customers to cloud-based applications. Perfect for both business-to-consumer and business-to-business scenarios reducing registration drop off and creating a more personalized user experience.
Token Translators extend the Security Token Service to process or generate tokens. These tokens can be standard, custom or proprietary. The translators eliminate the need for custom development
Take advantage of rapid application integration and user onboarding. PingFederate provides single sign-on to all standards-compliant SaaS vendors. In addition, SaaS Connectors enable automated cloud user provisioning for leading SaaS providers. With pre-populated connection settings, account provisioning parameters and SSO endpoint parameters, SaaS Connectors simplify setup for common SaaS Applications.
Automated Cloud User Provisioning
No more manual provisioning. PingFederate automatically creates, updates and disables users in cloud applications. PingFederate supports just-in-time, outbound and inbound provisioning, including support for the SCIM standard. This enables the rapid provisioning and de-provisioning of users and reduces administrative overhead.
Access Policy Management & Adaptive Federation
Extend your security polices to the cloud. Create rules based upon where a user is located, the device they are using and virtually any other criteria to determine what is needed to authenticate a user. Customize user access scenarios and extend your security policies to the cloud.
Identity Mapping and Attribute Retrieval
Fulfill complex attribution requirements. PingFederate can interact with multiple external data sources (JDBC, LDAP), to retrieve attributes for inclusion within tokens and attribute queries for account mapping and linking as well as authorization decisions.
SIEM and Audit Logging
Comprehensive auditing and monitoring. PingFederate easily integrates into SIEM vendors, such as ArcSight, Envision and Logrhythm to enable enterprise IT and security organizations to monitor usage. Includes dashboard views and reports for easier, more efficient audits and to meet any governance requirements.
Web-based administrative console. PingFederate’s console simplifies defining server roles (federation, authorization server, security token service) and establishing connections. Role-based access rights can be established using an LDAP data store with either an individual user or an LDAP group. Access can use a X.509 certificate for stronger security.
High Availability Clustering
Self-contained clustering delivers fail-over and performance scalability, even for geographically distributed data centers. PingFederate shares user-session states and configuration data with servers, enabling user-transparent process requests as a single entity.
Incorporate PingFederate deployments into your existing Enterprise operational processes. PingFederate supports SNMP and JMX to enable system monitoring with existing infrastructure. In addition, the PingFederate App for Splunk monitors SSO performance metrics and system health.
PingFederate eliminates manual command-line PKI certificate management by incorporating fully featured, GUI-based certificate management capabilities. Automatic notifications alert administrators of expiration dates, and a new digital signature simplifies annual partner certificate maintenance.
Easily incorporate PingFederate deployments into your existing Enterprise operational processes. Rich, scriptable configurations tools help automate the development-test-production lifecycle and integrate easily into existing infrastructure.
Logging and Reporting
Monitor usage for cloud security and compliance. PingFederate can send log data to SIEM vendors, such as ArcSight, Envision and Logrhythm or to a database such as Oracle, Microsoft SQL Server or MySQL. This enables enterprise IT and security organizations to create dashboard views and reports for monitoring usage.