Make sure your system meets the following requirements for PingAccess deployment and configuration.

Ping Identity qualifies the following configurations and certifies that they are compatible with the product. Variations of these platforms, such as differences in operating system version or service pack, are supported until the platform or other required software creates potential conflicts.

Note:

PingAccess supports IPv4 addressing. There is currently no support for IPv6 addressing.

System component Requirements

Operating systems

Note:

PingAccess was tested with default configurations of operating system components. If your organization has customized implementations or has installed third-party plug-ins, deployment of the PingAccess server might be affected.

  • Amazon Linux 2
  • Amazon Linux 2022
  • Canonical Ubuntu 18.04
  • Canonical Ubuntu 20.04
  • Canonical Ubuntu 22.04
  • Microsoft Windows Server 2016 (x64)
  • Microsoft Windows Server 2019 (x64)
  • Microsoft Windows Server 2022 (x64)
  • Oracle Enterprise Linux 7.9 (Red Hat Compatible Kernel)
  • Oracle Enterprise Linux 8.6 (Red Hat Compatible Kernel)
  • Red Hat Enterprise Linux ES 7.9
  • Red Hat Enterprise Linux ES 8.6
  • Red Hat Enterprise Linux 9.1
  • SUSE Linux Enterprise Server 12 SP5
  • SUSE Linux Enterprise Server 15 SP4

Docker support

  • Docker version: 20.10.17
  • Host operating system: Canonical Ubuntu 18.04.3 LTS

View the PingAccess Docker image on DockerHub. Visit Ping Identity’s DevOps documentation for more information. Note that only the PingAccess software is licensed under Ping Identity’s end user license agreement, and any other software components contained within the image are licensed solely under the terms of the applicable open source or third-party license.

Note: Ping Identity accepts no responsibility for the performance of any specific virtualization software and in no way guarantees the performance or interoperability of any virtualization software with its products.

Virtual systems

Although Ping Identity doesn't qualify or recommend any specific virtual machine (VM) products, PingAccess runs well on several, including VMWare, Xen, and Windows Hyper-V.

Note:

This list of products is provided for example purposes only. We view all products in this category equally. Ping Identity accepts no responsibility for the performance of any specific virtualization software and does not guarantee the performance or interoperability of any VM software with its products.

Java environments

  • Amazon Corretto 8 (64-bit)
  • Amazon Corretto 11 (64-bit)
  • Amazon Corretto 17 (64-bit)
  • OpenJDK 11 (64-bit)
  • OpenJDK 17 (64-bit)
  • Oracle Java SE Runtime Environment (Server JRE) 8 (64-bit)
  • Oracle Java SE Development Kit (JDK) 11 (64-bit)
  • Oracle Java SE Development Kit (JDK) 17 (64-bit)
Note:

The Ping Identity Java Support Policy applies. For more information, see the Ping Identity Java support policy.

PingFederate

The following versions of PingFederate are fully certified with this version of PingAccess:

  • PingFederate 10.3
  • PingFederate 11.2

Other versions of PingFederate are expected to be compatible with this version of PingAccess as per Ping's end of life policy.

Some features rely on a specific version of PingFederate to work. This will always be noted in the feature's description.

End-user browsers

  • Google Android (Chrome)
  • Google Chrome
  • Microsoft Edge
  • Mozilla Firefox
  • Apple iOS (Safari)
  • Apple Safari

Admin console browsers

  • Google Chrome
  • Microsoft Edge
  • Mozilla Firefox

Audit event storage (external database)

  • MS SQL Server 2017
  • MS SQL Server 2019
  • Oracle 19c
  • PostgresSQL 11.5
  • PostgresSQL 13

Hardware security module

For information about configuring a hardware security module (HSM)hardware security module (HSM)HSM A dedicated cryptographic processor designed to manage and protect digital keys. HSMs act as trust anchors that protect the cryptographic key lifecycle by securely managing, processing, and storing cryptographic keys inside a hardened, tamper-resistant device., see Hardware security module providers. PingAccess certifies the following HSMs:

  • AWS CloudHSM 3.0.0
  • Thales Luna Cloud HSM Services and Luna Network HSM (Luna HSM Client 10.4)
Note:

You must use Java 8 if you plan to use a hardware security module.

Supported HTTP versions

  • HTTP 1.1

OpenID Connect (OIDC)OpenID Connect (OIDC)OIDC An authentication protocol built on top of OAuth that authenticates users and enables clients (relying parties) of all types to request and receive information about authenticated sessions and users. OIDC is extensible, allowing clients to use optional features such as encryption of identity data, discovery of OpenID Providers (OAuth authorization servers), and session management. providers

These are the most common providers, however, Ping strives to support any third-party OIDC-compliant provider.
Provider Provider Type
PingFederate PingFederate
PingOne for Enterprise Common
PingOne SSO PingOne
Azure Common
Okta Common