PingID End User Guide

Authenticating using biometrics

If you have the PingID mobile app running on your mobile device, you might be asked to authenticate using device biometrics, such as fingerprint or facial recognition, to securely access your resources.

Before you begin

Use cases

Biometrics authentication is only available if the option is enabled by the organization or third-party account that you’re trying to access. Authentication varies slightly depending on your phone model, phone settings, and whether your device is locked or unlocked when sending the authentication request.

The following animations demonstrate the two most common use cases when you are asked to authenticate with PingID using your device biometrics:

  • Passwordless authentication: No password required.

    Animation of a passwordless authentication flow using PingID mobile app and device biometrics.

  • Second factor authentication: Enter your username and password, and then open PingID mobile app and authenticate with your biometrics.

    Animation showing authentication with PingID mobile app biometrics as a second factor

Steps

  1. Sign on to your account or device, or access the application that requires authentication.

    Result:

    You’ll see the Authenticating window and an authentication notification request is sent to your mobile device.

    Authenticating screen, showing an authentication request has been sent to your phone, and the system is awaiting a response. The Change Device button is also shown.

  2. Accept the authentication notification message that asks if you are trying to sign on:

    Choose from:

    • If your device is locked, long press or swipe the notification until it shows the option to approve or deny the request, and then tap Yes.

    • If your device is unlocked, on the notification, tap Yes or long-press the notification until it shows the option to approve or deny the request, and then tap Yes.

      If configured by your organization, you’ll see a map on the notification screen, showing the location, device type, and browser used by the device attempting to accessing your account or app. This can help you identify a fraudulent authentication attempt.

      A screen capture of the PingID mobile app notification authentication request asking whether the user is trying to sign on, with Yes or No options.

    • If your mobile phone is unlocked and PingID is open, you’ll be asked to authenticate with your biometrics.

      [A screen capture of the PingID mobile app requesting approval for you to authenticate by Face ID scan. It shows the Yes, and No it’s not me Buttons]

  3. You might be asked to authenticate by number matching. If so, PingID mobile app opens and displays a number-matching screen. Select the same number that appears on the Authentication screen or enter it manually if required, and then authenticate with your biometrics.

    PingID mobile app showing a list of numbers and a message asking you to select the number that matches the number displayed in the authentication screen. It also has the option to tap the button entitled 'No it’s not me'

Result

An Authenticated message with a checkmark appears, indicating successful authentication, and your access is approved. You are automatically signed on to your application.

A screen capture of the green Authenticated message with a checkmark indicating successful authentication and your access is approved.