PingFederate 12.3.2 (September 2025)

New features and enhancements

Jetty library

info PF-37936

We’ve upgraded the Jetty library to version 10.0.26

Bouncy Castle FIPS

info PF-37943

We’ve upgraded Bouncy Castle to version 2.0.1. This version is certified to operate in Federal Information Processing Standards (FIPS) mode 140-3.

Resolved issues

AWS CloudHSM certificate linking

Fixed PF-37156

We’ve fixed a defect that caused failed AWS CloudHSM certificate linking to appear to succeed when the key alias was a value that was previously used in the environment.

`authorization_details` access token inclusion

Fixed PF-37743

We’ve fixed a defect that omitted the authorization_details parameter from the access token if the value was an empty array.

Overly detailed Kerberos error messages

Fixed PF-37798

We’ve fixed a defect that caused lengthy stacktrace data to be included in ERROR level logging for Kerberos errors.

`PingFailoverAppender` race condition

Fixed PF-37816

We’ve fixed a defect where a race condition could cause the PingFailoverAppender to get stuck in a failed state without switching back to its primary appender.

Admin console ClassNotFoundException error

Fixed PF-37819

We’ve fixed a defect that could cause ClassNotFoundException errors in the admin console.

JWT API authentication method

Fixed PF-37841

We’ve fixed a defect where JWT wasn’t a valid authentication method for the admin AP during upgrade utility validation.

Unused DevOps file

Fixed PF-37846

We’ve removed an unused file associated with the PingOne Advanced Identity Cloud DevOps deployment that was mistakenly included in the PingFederate Server .zip archive.

PingFederate Server