Ping Identity

Ping Identity

Unclaimed verified 15 jul 2026
score · 37  ]

Identity Security for the Digital Enterprise

Pricing: Contact Us - $35,000 annually (PingOne for Customers Essential) Company: Ping Identity Corporation Founded: 2002 Last verified: 2026-07-15
Visit Website
Updated

TL;DR

Ping Identity is a leading enterprise IAM/CIAM platform offering SSO, MFA, identity orchestration, fraud prevention, and AI-powered security for large organizations. It serves enterprises in finance, government, healthcare, and other regulated industries needing scalable, standards-compliant identity solutions. Its key differentiator is flexible hybrid deployment, no-code orchestration (DaVinci), and strong compliance with IAM standards.

What Users Actually Pay

No user-reported pricing yet.

Our Take

Ping Identity holds a strong market position as a recognized leader in Access Management and Customer Identity and Access Management (CIAM) according to Gartner and Forrester reports. Its primary value proposition centers on delivering secure, seamless digital experiences at massive scale while supporting complex enterprise requirements like hybrid environments, decentralized identity, and AI-driven threat protection. This makes it particularly valuable for organizations prioritizing security, compliance, and customization over simplicity.

Pros

  • + Excellent security features including adaptive MFA, fraud prevention, and robust standards support (SAML, OAuth, etc.) praised in user reviews.
  • + Strong no-code orchestration capabilities for building complex identity journeys with high flexibility and 350+ connectors.
  • + Reliable performance and scalability for high-volume use cases, with positive mentions of zero downtime in large deployments.
  • + Hybrid deployment options (SaaS, on-prem, private cloud) and extensibility via APIs/integration kits.
  • + High user satisfaction ratings (around 4.4/5 on G2) for enterprise SSO, MFA, and overall platform capabilities.

Cons

  • - Complex setup and configuration can lead to longer deployment times and a steeper learning curve for teams.
  • - Enterprise-oriented pricing with high minimums (e.g., $35k+ annually for customer tiers) makes it less accessible for smaller organizations.
  • - Some users note the interface and admin experience, while improved, can still feel dated or require significant customization effort.
  • - Limited out-of-the-box simplicity compared to more consumer-focused IAM tools; best for teams with dedicated IAM resources.
  • - Occasional feedback on support responsiveness varying by account size or region.

MCP Integrations

1 server35 tools
Loomal
Loomalloomal/identity
smitheryRemoteHigh match

Payment & Identity infrastructure for AI agents. One API, every capability.

35 tools
  • identity_whoamiGet your agent identity info — name, email, DID, and scopes
  • identity_signSign arbitrary data with this identity's Ed25519 private key. Returns the signature and the identity's DID.
  • identity_verifyVerify a signature against any did:web identity. Resolves the DID Document and checks the Ed25519 signature.
  • mail_sendSend an email from your agent's inbox. Supports up to 10 attachments (10 MB each, 25 MB total).
  • mail_replyReply to an existing email in a thread. Supports up to 10 attachments (10 MB each, 25 MB total).
  • mail_list_messagesList emails in your agent's inbox. Returns newest first.
  • mail_get_messageGet a specific email by its messageId
  • mail_get_attachmentDownload the contents of an email attachment as base64-encoded data. Use mail.get_message or mail.get_thread first to find attachment IDs and metadata.
  • mail_list_threadsList email threads in your agent's inbox. Returns newest first.
  • mail_get_threadGet a full email thread with messages (newest 200 by default)
  • mail_update_labelsAdd or remove labels on a message
  • mail_update_thread_labelsAdd or remove labels on a thread (e.g. 'starred', 'important', 'archived', or custom labels). Thread labels are separate from message labels. Labels must be 1-100 chars from [a-zA-Z0-9_-:.]. Max 20 labels per call. Removing a label deletes user data — use with care.
  • mail_delete_messageDelete a single message from the inbox
  • mail_delete_threadDelete an entire thread and all its messages
  • mail_list_rulesList all allow/block rules for this identity
  • mail_add_ruleAdd an allow or block rule. Use type ALLOW or BLOCK, scope RECEIVE/SEND/REPLY, and value as email or *@domain.com.
  • mail_delete_ruleDelete an email allow/block rule by its ID
  • vault_listList all credentials in the vault (metadata only, no secrets)
  • vault_getRetrieve a decrypted credential from the vault. For TOTP credentials, use vault.totp instead to get the code.
  • vault_totpGenerate the current 6-digit TOTP code. Works on any credential that has a TOTP secret (standalone TOTP type or any credential with a 'totp' field). Response also includes backupCodesRemaining — call vault.get to read the actual backup codes if a fallback is needed.
  • vault_totp_use_backupAtomically consume one single-use TOTP backup code. Moves the popped code from data.backupCodes into data.usedBackupCodes (kept as an audit trail) and returns it. Use when the live TOTP code is unavailable (clock skew, device lost). Each code can only be used once.
  • vault_storeStore or update an encrypted credential in the vault
  • vault_deleteRemove a credential from the vault
  • calendar_createCreate a new event on this identity's calendar
  • calendar_updateUpdate an existing calendar event
  • calendar_listList events on this identity's calendar
  • calendar_getGet details of a specific calendar event
  • calendar_deleteDelete a calendar event
  • calendar_set_publicMake this identity's calendar public or private. Public calendars are viewable at /identities/:id/calendar.json
  • payments_payPay for an x402-priced URL in USDC under this identity's active mandate. Returns the resource content plus cost, balance, and mandate progress. Use dryRun:true to preview without spending.
  • payments_mandates_createCreate the spend policy for this identity's wallet. Installs an on-chain session key — first call takes 10–30 seconds. If the returned `installError` is set, the mandate is unusable and creation should be retried.
  • payments_mandates_listList spend mandates attached to this identity's wallet — active, expired, revoked, and errored, latest first.
  • payments_mandates_getFetch one mandate by id, with live spend counters.
  • payments_mandates_revokeRevoke a mandate. The on-chain session key is not uninstalled (manual via Console if needed); settled payments are unaffected.
  • payments_activityBank-statement-style merged feed of payments sent (direction: 'out') and received (direction: 'in') for this identity, latest first.

Last checked Jul 15, 2026

[ features ]

Geostrategic Position

Information on which part of the world this product / vendor belongs to, i.e. the country of their headquarters primarily, but also their hosting options etc.

Headquarter Region

Find which geostrategic world region the headquarter is located in. Relevant for compliance questions (e.g., CLOUD Act) or risk of cut-off in case of conflicts. For example, some EU companies are worried about the US and would definitely not host their customer with Chinese or Russian companies.

United States
Hosting Provider

The hosting provider that is used to host this product, if any.

Other  ]
Hosting Locations

The available hosting locations, if you can choose

United States  ] Europe  ] Other  ]

Compliance & Security

Security certifications, compliance features, and access control capabilities.

SOC 2

SOC 2 Type I or Type II certification.

Type II
ISO 27001

ISO 27001 information security certification.

yes  ]
GDPR Tools

Built-in tools for GDPR compliance (data export, deletion, consent).

yes  ]
Audit Trail

Complete audit log of all data changes.

yes  ]
Role-Based Access Control

Granular permissions based on user roles.

yes  ]
SSO Support

Single Sign-On integration support.

Both

Developer Experience

Tools and abstractions easing agent development and iteration.

Visual Builder

No-code/low-code UI for designing agent workflows.

yes  ]
OpenAI Compatibility

OpenAI API-compatible endpoints or SDKs.

no
Open Source

Available as open-source with community contributions.

no
SDK Languages

Programming languages with official SDK support.

JavaScript/TypeScript  ] Other  ]
Pre-built UI Components

Ready-to-use, customizable UI elements for auth flows.

yes  ]
Admin Portal

Self-service admin dashboard for customers to manage users/orgs.

yes  ]
Framework Integrations

Supported frontend frameworks with dedicated guides/components.

React  ]

Authentication Methods

Core authentication flows and options supported by the platform.

Passwordless Auth

Supports passwordless authentication via magic links, passkeys, or biometrics.

yes  ]
Social Providers

Supported third-party social login providers.

Google  ] Facebook  ] Apple  ] LinkedIn  ]
MFA Methods

Supported multi-factor authentication methods.

SMS  ] TOTP  ] WebAuthn/Passkeys  ] Email  ] Push  ]
Bot Detection

Built-in protection against bots and automated attacks during auth.

yes  ]

Enterprise Integrations

Protocols and tools for integrating with enterprise identity systems.

SCIM Provisioning

Supports SCIM for automated user provisioning and deprovisioning.

yes  ]
Directory Sync

Supports syncing users/groups from directories like HRIS or IdPs.

yes  ]
Supported IdPs

Compatible identity providers for federation.

Okta  ] Entra ID/Azure AD  ] Google Workspace  ] OneLogin  ] Ping Identity  ]
JIT Provisioning

Just-In-Time user provisioning from SAML/OIDC assertions.

yes  ]

Pricing & Free Tier

Free tier limits and overall pricing structure.

Free Tier MAU Limit

Maximum Monthly Active Users allowed on the free tier.

0
Billed Metrics

Key usage metrics that incur costs.

MAU  ] Authentications  ]

Reviews

0 reviews
Write a Review

No reviews yet. Be the first to review Ping Identity!