MFA for Workforce (PingID)
PingID is a cloudbased multi-factor authentication service that enables Workforce users to securely authenticate using a range of authentication methods.
Supported authentication methods include:
-
PingID mobile app. This includes the fingerprint biometrics, facial recognition, approve authentication, number matching, one-time passcode (OTP), and Apple Watch authentication methods.
-
FIDO2 biometrics
-
Security key
-
Desktop OTP
-
Authenticator app
-
YubiKey
-
OATH token
-
Email authentication
-
SMS or voice authentication
Learn more about PingID authentication methods in Overview of PingID authentication types.
Learn more about PingID in Introduction to PingID in the PingID Administration guide.
To add a PingID environment to PingOne, follow the relevant instructions:
When your PingID environment is integrated with PingOne, you’ll be able to do the following actions from PingOne:
-
Manage users. Learn more in Directory.
-
Enable users to manage their devices from MyAccount. Learn more in Self service.
-
Create and manage FIDO policies. Learn more in FIDO policies.
-
Implement a Windows login passwordless flow. Learn more in Creating and configuring a passwordless Windows login application in PingOne
-
Enable users to use PingID as an external authentication method (EAM) for multi-factor authentication (MFA) in Microsoft Entra ID. Learn more in Setting up PingOne SSO and PingID as the external MFA provider for Microsoft Entra ID.
All other actions are managed by the PingID admin portal. Learn more in the PingID Administration Guide.