--- title: ThreatMetrix Integration Kit description: The ThreatMetrix Integration Kit allows PingFederate to communicate with ThreatMetrix for risk-based authentication. component: threatmetrix page_id: threatmetrix::pf_threatmetrix_ik canonical_url: https://docs.pingidentity.com/integrations/threatmetrix/pf_threatmetrix_ik.html revdate: October 28, 2025 section_ids: features: Features components: Components intended-audience: Intended audience system-requirements: System requirements --- # ThreatMetrix Integration Kit The ThreatMetrix Integration Kit allows PingFederate to communicate with ThreatMetrix for risk-based authentication. By sending a device profile (and, optionally, user attributes) to ThreatMetrix when a user signs on, PingFederate can get a security risk assessment for the sign-on event. You can use this assessment to adjust authentication requirements dynamically each time a user signs on. For example, by configuring policies in PingFederate and ThreatMetrix, you could require multi-factor authentication (MFA) *(tooltip: \
\

An electronic authentication method where a user is granted access only after presenting two or more verification factors for authentication.\

\
)* when a user signs on with a new device. ## Features * Supports ThreatMetrix's *Web* and *SDK* device profiling scripts. You can find more information in [Introduction to Profiling](https://portal.threatmetrix.com/kb/index.htm#t=implementation%2Fprofiling%2Fprofiling_introduction.htm) (requires sign-on) in the ThreatMetrix documentation. * Supports device profiling in any browser-based authentication source or web application. Learn more in [Device profiling methods](pf_threatmetrix_ik_device_profiling_methods.html). * Supports the [PingFederate authentication API](https://docs.pingidentity.com/pingfederate/latest/developers_reference_guide/pf_authentication_api.html). * Supports the [JavaScript Widget for the PingFederate Authentication API](https://github.com/pingidentity/pf-authn-js-widget). ## Components * Template and script files * When a user signs on through PingFederate, these files create the device profile and send it to ThreatMetrix. There are several files to accommodate a variety of device profiling methods. * ThreatMetrix IdP Adapter * When a user signs on through PingFederate, the adapter sends the user attributes to ThreatMetrix. * The adapter receives the result of the risk assessment as well as other attributes and sign-on event data. The adapter makes this information available in the PingFederate authentication policy. ## Intended audience This document is intended for PingFederate administrators. If you need help during the setup process, see the following resources: * The following sections of the PingFederate documentation: * [Managing IdP adapters](https://docs.pingidentity.com/pingfederate/latest/administrators_reference_guide/pf_managing_idp_adapters.html) * [Authentication policies](https://docs.pingidentity.com/pingfederate/latest/administrators_reference_guide/pf_authentication_policies.html) * The following sections of the ThreatMetrix documentation: * [Introduction to ThreatMetrix Platform](https://portal.threatmetrix.com/kb/index.htm#t=introduction_to_threatmetrix%2Fintroduction_threatmetrix_platform.htm) (requires sign-on) * [Architecture Overview](https://portal.threatmetrix.com/kb/index.htm#t=implementation%2Fimplementation_overview%2Farchitecture_overview.htm) (requires sign-on) * [Implementation Resources](https://portal.threatmetrix.com/kb/index.htm#t=implementation%2Fimplementation_overview%2Fimplementation_resources.htm) (requires sign-on) * [Implementation Steps](https://portal.threatmetrix.com/kb/index.htm#t=implementation%2Fimplementation_overview%2Fimplementation_steps.htm) (requires sign-on) ## System requirements * PingFederate 11.3 or later * A ThreatMetrix account