Ping Identity qualifies the following configurations and certifies that they are compatible with the product. Variations of these platforms, such as differences in operating system version or service pack, are supported until the platform or other required software creates potential conflicts.

Note:

PingAccess supports IPv4 addressing. There is currently no support for IPv6 addressing.

System component Requirements

Operating systems

Note:

PingAccess was tested with default configurations of operating system components. If your organization has customized implementations or has installed third-party plug-ins, deployment of the PingAccess server might be affected.

  • Amazon Linux 2
  • Amazon Linux 2022
  • Canonical Ubuntu 20.04 (LTS)
  • Canonical Ubuntu 22.04 (LTS)
  • Microsoft Windows Server 2016 (x64)
  • Microsoft Windows Server 2019 (x64)
  • Microsoft Windows Server 2022 (x64)
  • Oracle Linux 7.9 (Red Hat Compatible Kernel)
  • Oracle Linux 8.6 (Red Hat Compatible Kernel)
  • Red Hat Enterprise Linux ES 7.9
  • Red Hat Enterprise Linux ES 8.6
  • Red Hat Enterprise Linux ES 8.8
  • Red Hat Enterprise Linux ES 9.1
  • Red Hat Enterprise Linux ES 9.2
  • SUSE Linux Enterprise Server 12 SP5
  • SUSE Linux Enterprise Server 15 SP4

Docker support

  • Docker version: 20.10.17

View the PingAccess Docker image on DockerHub. Visit Ping Identity’s DevOps documentation for more information.

Note:

Only the PingAccess software is licensed under Ping Identity’s end user license agreement. Any other software components contained within the image are licensed solely under the terms of the applicable open source or third-party license.

Ping Identity accepts no responsibility for the performance of any specific virtualization software and in no way guarantees the performance or interoperability of any virtualization software with its products.

Virtual systems

Although Ping Identity doesn't qualify or recommend any specific virtual machine (VM) products, PingAccess runs well on several, including VMWare, Xen, and Windows Hyper-V.

Note:

This list of products is provided for example purposes only. We view all products in this category equally. Ping Identity accepts no responsibility for the performance of any specific virtualization software and does not guarantee the performance or interoperability of any VM software with its products.

Java environments

  • Amazon Corretto 11 (64-bit)
  • Amazon Corretto 17 (64-bit)
  • OpenJDK 11 (64-bit)
  • OpenJDK 17 (64-bit)
  • Oracle Java SE Development Kit (JDK) 11 (64-bit)
  • Oracle Java SE Development Kit (JDK) 17 (64-bit)
Note:

The Ping Identity Java Support Policy applies. For more information, see the Ping Identity Java support policy.

PingFederate

The following versions of PingFederate are fully certified with this version of PingAccess:

  • PingFederate 10.3
  • PingFederate 11.3
  • PingFederate 12.0

Other versions of PingFederate are expected to be compatible with this version of PingAccess per Ping's end of life policy.

Some features rely on a specific version of PingFederate to work. This will always be noted in the feature's description.

End-user browsers

  • Google Android (Chrome)
  • Google Chrome
  • Microsoft Edge
  • Mozilla Firefox
  • Apple iOS (Safari)
  • Apple Safari

Admin console browsers

  • Google Chrome
  • Microsoft Edge
  • Mozilla Firefox

Audit event storage (external database)

  • MS SQL Server 2019
  • MS SQL Server 2022
  • Oracle 19c
  • PostgreSQL 11.5
  • PostgreSQL 13

Hardware security module

For information about configuring a hardware security module (HSM)hardware security module (HSM)HSM A dedicated cryptographic processor designed to manage and protect digital keys. HSMs act as trust anchors that protect the cryptographic key lifecycle by securely managing, processing, and storing cryptographic keys inside a hardened, tamper-resistant device., see Hardware security module providers. PingAccess certifies the following HSMs:

  • AWS CloudHSM 5.9.0
    Note:

    AWS CloudHSM is supported with JDK 11. If you plan to use AWS CloudHSM, you must also deploy your environment on a Linux or Windows operating system that is compatible with both PingAccess and AWS CloudHSM.

  • Thales Luna Cloud HSM Services and Luna Network HSM (Luna HSM Client 10.4)
    Note:

    PingAccess requires you to use Java 8 with Luna HSMs. This is the only exception to PingAccess's removal of Java 8 support.

Supported HTTP versions

  • HTTP 1.1

OpenID Connect (OIDC)OpenID Connect (OIDC)OIDC An authentication protocol built on top of OAuth that authenticates users and enables clients (relying parties) of all types to request and receive information about authenticated sessions and users. OIDC is extensible, allowing clients to use optional features such as encryption of identity data, discovery of OpenID Providers (OAuth authorization servers), and session management. providers

These are the most common providers, however, Ping strives to support any third-party OIDC-compliant provider.
Provider Provider Type

PingFederate

PingFederate

PingOne for Enterprise

Common

PingOne SSO

PingOne

Azure

Common

Okta

Common