PingID End User Guide

Authenticating using your Android (Mac Login)

Methods of authenticating using PingID Mobile app to access your Apple Mac machine.

You can authenticate using the following options:

If your organization allows you to authenticate using more than one device type, you can also add a device and decide which device you want to use as your primary (default) authentication method. For more information, see Managing your devices.

The options available to you are defined by your organization’s policy.

Using swipe authentication for Android (Mac Login)

Using PingID mobile app swipe authentication on your Android so you can access your Apple Mac machine.

Before you begin

To authenticate using PingID mobile app, make sure:

About this task

If you have the PingID app running on your mobile device, and your organization is using swipe authentication, when signing on to your Mac machine, you’ll be prompted to swipe to authenticate.

The authentication process might vary slightly depending on the Android version and the notification settings on your device. Some Android versions might give you the option to approve the push notification from the lock screen.

Steps

  1. Sign on to your Mac machine.

    A screen capture of the Mac login page.

    Result:

    The Authenticating window opens, and an authentication notification request is sent to your mobile device.

    A screen capture of the Authenticating On…​ window.

  2. Accept the authentication notification, depending on your mobile’s notification settings:

    Choose from:

    • If you see the notification screen appears, slide the notification down until you see the option to approve or deny the request, and then tap Approve.

      If configured by your organization, you’ll see a map on the notification screen, showing the location, device type, and browser used by the device attempting to accessing your account or app. This can help you identify a fraudulent authentication attempt.
    A screen capture of the notification screen including a map showing the location, device type, and browser used by the accessing device, and the option to Approve or Deny the authentication request.

    + NOTE: For Android version 10 and higher, you must unlock your device to authenticate.

    • If PingID mobile app opens showing the swipe screen, swipe up to authenticate.

      A screen capture of the swipe authentication screen on a mobile device

      When opening PingID mobile app, update your location permissions to Allow all the time, if prompted to do so.

      Result:

      You’ll see the green checkmark on your mobile indicating your access is approved, and PingID closes.

      A screen capture of the green Authenticated message with a check mark indicating successful authentication and your access is approved.

      You’re signed on to your Mac machine.

Using biometrics authentication for Android (Mac Login)

Using PingID mobile app biometrics authentication on your Android so you can access your Apple Mac machine.

Before you begin

To authenticate using PingID mobile app, make sure:

  • Your Apple Mac is running Mac OS 10.13 or later.

  • You have registered your biometrics on your Android device.

  • You have paired your Android device.

About this task

Biometrics authentication is simple using a mobile device. Authentication varies slightly depending on your phone model, phone settings, and whether your device is locked or unlocked when the authentication request is sent.

  • Biometrics authentication is only available if the option is enabled by your organization.

  • The authentication process may vary slightly depending on the Android version and the notification settings on your device. (The images shown here relate to a Samsung device. Actual implementation may vary according to device model.)

  • Some Android devices do not support face or iris authentication with PingID. If you are not able to authenticate with face or iris authentication, we recommend using fingerprint authentication.

Steps

  1. Sign on to your Mac machine.

    arm1580988020886

    Result:

    The Authenticating window opens, and an authentication notification request is sent to your device.

    ues1564021186107

  2. Accept the authentication notification, depending on your mobile’s notification settings:

    Choose from:

    • If you see the notification screen appears, slide the notification down until you see the option to approve or deny the request, and then tap Approve.

      A screen capture of the notification screen including a map showing the location, device type, and browser used by the accessing device, and the option to Approve or Deny the authentication request.
      For Android version 10 and higher, you must unlock your device to authenticate.

    • If PingID mobile app opens, authenticate using your biometrics.

      screen capture of the biometrics authentication screen on a mobile device

      When opening PingID mobile app, update your location permissions to Allow all the time, if prompted to do so.

      Result:

      You’ll see the green checkmark on your mobile indicating your access is approved, and PingID closes.

      A screen capture of the green Authenticated message with a check mark indicating successful authentication and your access is approved.

      You’re signed on to your Mac machine.

Authenticating using your Android watch (legacy)

You can authenticate with PingID mobile app using your Android watch.

About this task

Some Android models automatically allow you to authenticate using your Android watch. If the PingID mobile app is installed on your phone, and if your Android watch model and configuration are compatible with the PingID mobile app, you’ll automatically start receiving push notifications to your Android watch when your phone is locked.

The ability to authenticate using an Android watch varies according to Android model and configuration.

Steps

  1. If your Android device and configuration supports the use of Android watch for notifications, when your phone is locked, you will receive a notification to your watch automatically.

    Image showing an authentication request notification on an Android watch.

  2. Swipe to authenticate.

Authenticating using a one-time passcode (Mac Login)

Using PingID mobile app on your Android to get a one-time passcode with which to authenticate, so you can access your Apple Mac machine.

Before you begin

To authenticate using PingID mobile app, make sure:

  • Your Apple Mac is running Mac OS v10.13 or later.

  • You have paired your mobile device (Android or iOS).

About this task

If you don’t have internet access from your mobile device temporarily, you can still authenticate using PingID mobile app by generating a one-time passcode (OTP). The one-time passcode is unique, and can only be used once. Only the one-time passcode that appears on your device at the time that you sign on to your account is valid for authentication.

You’ll only be able to view and use the one-time passcode if permitted by your organization’s policy.

Steps

  1. Sign on to your Mac machine.

    A screen capture of the Mac login page

    Result:

    The Authenticating window opens, and an authentication notification request is sent to your mobile device.

    Screenshot of the Authentication window showing the passcode field.

  2. On your mobile device, open the PingID mobile app and enter the one-time passcode into the passcode field on the authentication screen. Press Enter.

    • When opening PingID mobile app, update your location permissions to Allow all the time, if prompted to do so.

    • The one-time passcode refreshes each time you open the PingID app. To generate a new one-time passcode, tap New Passcode.

    Screenshot of PingID mobile app showing a one-time passcode.

    Result:

    You’re signed on to your Mac machine.

Authenticating manually with PingID mobile app (Mac Login)

Authenticate using PingID mobile app when your

Before you begin

To authenticate manually using PingID mobile app, make sure:

  • Your Apple Mac is running Mac OS v10.13 or later.

  • Your device has PingID mobile app V1.8 or higher paired with your account.

  • You have paired your device and authenticated online with PingID at least once to the Mac machine that you are trying to access.

  • You have a working camera on your device, with PingID mobile app camera permissions set to Approve. For more information, see PingID mobile app management (legacy).

About this task

If you try to sign on to your Mac machine without having a network connection (e.g., in airplane mode, or when without Wi-Fi connection), you might be asked to authenticate manually using the PingID mobile app. Authenticating manually is slightly different than the way you usually sign on.

If you have paired a security key for offline authentication, you also see the option to choose your security key to authenticate.

Steps

  1. Sign on to your Mac machine.

    Result:

    You’ll see a notice telling you that you need to manually authenticate.

    arm1580988020886

    If you have more than one device paired with your account, you’ll see a list of your devices. Select the device you want to use to authenticate.

  2. Click Next.

    Result:

    You’ll see a Manual Authentication message, displaying a QR code, requesting that you authenticate manually.

    gcm1564021189122

  3. On your mobile device, open PingID mobile app.

  4. Tap pju1564020549262

    and select Manual Auth. Authenticate with your device biometrics, if required.

    wtq1564020665229

    Result:

    The QR code scanner for manual authentication opens.

    mnp1564020666108

  5. Use your mobile device to scan the QR code displayed on the Manual Authentication window.

    Result:

    You’ll receive an authentication code.

    amd1564020667069

  6. Enter the authentication code into the Manual Authentication window, and click Sign on.

    Result:

    You’re signed on to your machine.