PingID End User Guide

Authenticating using your iPhone (VPN)

This section covers the options available for authenticating to your VPN using your iPhone.

You can authenticate using the following options:

If your organization allows you to authenticate using more than one device type, you can also add a device and decide which device you want to use as your primary (default) authentication method. See Managing your devices.

The options available to you are defined by your organization’s policy.

Using swipe authentication for iPhone (VPN)

If you have the PingID app running on your mobile device and biometrics authentication is not enabled, you are prompted to swipe to authenticate.

Steps

  1. From your web browser or application, sign on to your VPN:

    1. Enter your username and password.

    If you have more than one device and your organization policy allows, a message appears showing all of your devices in a numbered list.

    1. For multiple devices only: enter the number of the device you want to use to authenticate.

    2. Click Sign In.

      Result:

      A message displays requesting that you authenticate, and an authentication notification is sent to your device.

      When you open PingID mobile app, update your location permissions to Allow all the time, if prompted to do so.

  2. Depending on your notification settings, swipe to authenticate:

    Choose from:

    • If your device is unlocked:

      1. Tap the notification

      2. Swipe to authenticate

    • If your device is locked:

      1. Swipe left to open the authentication notification and unlock the screen.

      2. Swipe to authenticate.

    A screen capture of the swipe to authenticate screen on the PingID mobile app.

Result

Thee green Authenticated message with a check mark appears, indicating authentication is successful, and you are signed on to your VPN.

A screen capture of the green Authenticated message with a check mark.

Using biometrics authentication for iPhone (VPN)

Authenticate with your device biometrics using the PingID mobile app.

Before you begin

  • Register biometrics on your device, such as fingerprints or Face ID.

  • Set up your mobile device for VPN authentication to authenticate using your device biometrics.

For more information, see (legacy) Pairing PingID mobile app for authenticating to your company’s VPN.

About this task

The authentication process might vary depending on whether your device is locked or unlocked when the authentication request is sent.

Biometrics authentication is only available if the option is enabled by your organization.

Steps

  1. From your web browser or application, sign on to your VPN:

    1. Enter your username and password.

    If you have more than one device and your organization’s policy allows, a message appears showing all of your devices in a numbered list.

    1. For multiple devices only: enter the number of the device you want to use to authenticate.

    2. Click Sign In.

      Result:

      A message displays requesting that you authenticate and an authentication notification is sent to your device.

      When you open PingID mobile app, update your location permissions to Allow all the time, if prompted to do so.

  2. Depending on your notification settings, approve the authentication notification:

    Choose from:

    • If your phone is unlocked:

      1. Tap the notification banner, or tap Approve.

        A screen capture of the PingID notification banner on a unlocked phone.

    • If your phone is locked:

      1. Slide the message to the left and tap Approve.

        A screen capture of the PingID authentication request on a locked phone with the Approve or Deny option.

      2. If you do not have the slide to view option, swipe right to unlock the device.

        A screen capture PingID notification authentication request on a locked phone.

        Result:

        The biometrics scan is activated and a message appears on your device prompting you to authenticate using your device biometrics.

      A screen capture of the PingID message prompting you to authenticate with your biometrics.

  3. Authenticate using your device biometrics:

    Choose from:

    • Face ID: Tap the popup asking you to authorize scanning with Face ID, if prompted, and otherwise your face is scanned automatically.

    • Fingerprint: Touch the Home button lightly to scan your fingerprint.

      Do not press hard on the Home button, as it can cancel the authentication action, rather than approve it.

      Result:

      The green Authenticated message appears with a check mark, indicating authentication is successful, and you are signed on to your VPN.

Enabling and disabling passcodes on your Apple watch

Enable the use of PingID one-time passcodes (OTPs) on your Apple watch.

About this task

If you have installed the PingID app on your device, the PingID Apple Watch app is automatically installed on your watch and you will start receiving notifications to your watch. You can also open the PingID app on your watch to receive a one-time passcode (OTP). If the Apple watch app is disabled, you will not be able to access a one-time passcode from your watch.

The Apple watch only receives notifications when your mobile device is locked, and the mobile device screen is in sleep mode.

Steps

  1. On your iPhone, tap the Watch app, and then tap PingID.

  2. To enable or disable the app on your Apple watch, tap Show App on Apple Watch.

    Result:

    The PingID app is installed on your Apple watch, and the PingID icon appears.

  3. To view the current one-time passcode, on your Apple watch, tap the PingID icon.

    Screen capture of an Apple watch displaying a one-time passcode.

  4. (Optional) To get a new passcode, tap Refresh.

Authenticating using a one-time passcode (VPN)

If you do not have internet access temporarily, you can still authenticate using the PingID mobile app by generating a one-time passcode (OTP).

About this task

The OTP is unique and can only be used once. Only the OTP that appears on your device at the time that you sign on to your account is valid for authentication.

If permitted by your organization’s policy, you can view and use the OTP.

Steps

  1. From your web browser or application:

    1. Sign on to your VPN with your username and password.

      If you have more than one device, and your organization policy allows it, a message displays showing all of your devices in a numbered list.

    2. For multiple devices only: enter the number of the device you want to use to authenticate.

    3. Click Sign In.

  2. On your mobile device, open the PingID app to view the current OTP.

    When you open PingID mobile app, update your location permissions to Allow all the time, if prompted to do so.
    A screen capture of the One-Time Passcode window displaying a one-time passcode with the New Passcode option.

    The OTP refreshes each time you open the PingID app. To generate a new OTP, tap New Passcode.

  3. Enter the OTP into the text field. Click Sign In.

Result

After you have successfully authenticated, you are signed on to your VPN.

Authenticating manually (VPN)

When you sign on to your VPN, you might be asked to authenticate manually using the PingID mobile app.

Before you begin

To authenticate manually you need the following:

A device with the PingID mobile app 1.8 or later that is already paired with your account and with which you have successfully authenticated at least once.

About this task

You will not be asked to authenticate manually often, but be aware that authenticating manually is different than the normal sign on process.

Steps

  1. Sign on to your VPN.

    A screen capture of a sample VPN sign on page.

    Result:

    A Manual Authentication message appears, displaying a 12-digit key, and requests that you authenticate manually.

  2. From your mobile device, open the PingID mobile app.

  3. Tap the Gear icon (pju1564020549262 ) and select Manual Auth. Authenticate with your device biometrics, if required.

    A screen capture of the PingID mobile app menu with the Manual Auth option selected.

    Result:

    The Manual Authentication screen opens.

    A screen capture of the Manual Authentication screen with the Enter Key button.

  4. Tap Enter Key.

  5. In the Security Key field, enter the 12-digit key displayed on the VPN sign on page, and tap Verify.

    A screen capture of the Manual Authentication window requesting the 12-digit key in the Security Key field.

    Result:

    You receive an authentication code.

    A screen capture of the Authentication Code that is generated in the PingID mobile app.

  6. In the VPN Response field, enter the Authentication Code. Click Sign In.

    Result:

    You are successfully authenticated and signed on to your VPN.