You can require a PIN code to access PingID mobile app for:

  • Devices that don't already have device biometrics or a device PIN code defined
  • All devices

If this option is enabled:

  • A user is prompted to create a PIN code when they pair the mobile app. The PIN code must include at least 3 or 4 different digits for PIN lengths of 4 and 6 digits, respectively. Digits must not be in ascending or descending sequence, such as 1234 or 4321.
  • A user is prompted to enter the PIN code each time they launch the PingID app.
  • The mobile app is locked after 3 minutes of inactivity, and the user is required to enter the PIN to unlock it.
  • In the event of 3 consecutive incorrect PIN entries, the user is blocked from accessing the app for 2 minutes. This applies to both the PIN entry and the PIN change windows. Lockdown takes effect from the time of the lock, irrespective of whether the desktop app remains open or is closed and relaunched.
  • The mobile app must be online for a user to pair the app. However, a user who is offline can still create a PIN, enter the PIN to access the mobile app, or change their PIN.
  • The mobile app must be online for any change in PIN configuration to take effect, such as enabling or disabling the PIN or changing its length. The user can change their PIN from the PingID mobile app settings.
  • If a user pairs the mobile app to more than one organization, the user must create only one PIN, according to the most restrictive organization requirements. For example:
    • If only one organization has enabled the Mobile Security PIN feature, the user is required to enter their PIN to use the mobile app for authentication to all organizations, including those which do not require the PIN.
    • If one organization requires a 4-Digit PIN and a second organization requires a 6-Digit, the user will be required to enter a 6-digit PIN.
  • If the PIN code is already enabled, and the administrator changes the length of the PIN code required, users must first enter the app using the old PIN and then create a new PIN of the new length.
  • It is not possible for the user to reset their PIN. If forgotten, to create a new PIN, the user must unpair their device, and then define their PIN code when pairing their device again.
  1. In the admin portal, go to Setup > PingID > Device & Pairing.
  2. In the Pairing Conditions section, under Mobile App Security PIN, select one of the following:
    • Only for users without device PIN/Biometrics: Only users without device PIN or biometrics are required to enter a PIN to use PingID mobile app.
    • All users: All users must enter a PIN code to use PingID mobile app.
    • Disable: Do not require a PIN code to use PingID mobile app.

      Mobile app security PIN options, showing radio buttons with the option to disable this feature, require PIN for users without PIN or biometrics already defined on their device, or for All Users. Where a PIN is required, separate radio buttons allow you to choose whether to require a 4- or a 6-digit PIN.
  3. Select either 4-Digit or 6-Digit to indicate the PIN length. Click Save.

If an administrator edits the PingID mobile app configuration to require a PIN code, changes are implemented at the user level according to the PingID version and the user flow:

  • Users installing the PingID mobile app for the first time are prompted to create a PIN during the mobile app pairing flow.
  • Users with the PingID mobile app 1.31 or later already paired are prompted to define a PIN code the next time the user opens the PingID mobile app while online.
  • Users with the PingID mobile app earlier than 1.31 already paired must update the PingID mobile app for the changes to take effect. The user is prompted to define a PIN code the next time they launch the new version of the mobile app.