• Make policy decisions based on the security posture of employees' devices
  • Mitigate the risks that come with allowing employees' mobile and desktop devices to access corporate resources


Workspace ONE IdP Adapter
  • Allows PingFederate to communicate with the the Workspace ONE API

Intended audience

This document is intended for PingFederate administrators.

If you need help during the setup process, see the following resources:

System requirements

  • PingFederate 9.0 or later
  • The X.509 Certificate Integration Kit deployed in PingFederate
  • An on-premise or cloud deployment of the Workspace ONE platform
  • The Workspace ONE certificate authority (CA) root certificate installed in the PingFederate trusted store

    For help, Managing trusted certificate authorities in the PingFederate documentation

  • A device enrolled with Workspace ONE that you can use to test your configuration
  • The following mobile single sign-on requirements:
    • A web controller, to allow the application to read the certificate from the device:
      • Android: Chrome 45 (or later) & Chrome Custom Tabs
      • Apple: iOS9 (or later) & Safari View Controller
    • AppAuth, for shared sessions between supported mobile applications