Deprecation notices

For information about the PingOne Advanced Identity Cloud product lifecycle and deprecation, learn more in Deprecation and end of life.

IDC.CLI OAuth 2.0 client

Notification date: June 24, 2025

Ping Identity is no longer provisioning the IDC.CLI OAuth 2.0 client in new tenants and has deprecated it in existing tenants.

If you have any automation or scripts that rely on using the IDC.CLI OAuth 2.0 client in existing tenants, you must update them to use a service account before the end-of-life date when the client will be removed.
End-of-life date: June 26, 2026

Access to ESV REST API endpoints using resource version `1.0`

Notification date: June 24, 2025

Ping Identity has deprecated the use of resource version 1.0 to access ESV REST API endpoints in Advanced Identity Cloud.

In the short term, you can continue to use the 1.0 resource version to access to ESV REST API endpoints, but this won’t be possible after the end-of-life date.

If you have any automation or scripts that rely on using the 1.0 resource version for ESV REST API endpoints, you must update them to use resource version 2.0 before the end-of-life date.
End-of-life date: June 26, 2026

Access to ESV REST API endpoints using `fr:idm:*` scope

Notification date: June 24, 2025

Ping Identity has deprecated use of the fr:idm:* scope to access ESV REST API endpoints in Advanced Identity Cloud.

In the short term, you can continue to use the scope to access ESV REST API endpoints, but this won’t be possible after the end-of-life date.

If you have any automation or scripts that rely on using the scope for ESV REST API endpoints, you must update them to use the fr:idc:esv:* scope or an appropriate child scope (fr:idc:esv:read, fr:idc:esv:update, or fr:idc:esv:restart) before the end-of-life date.
End-of-life date: June 26, 2026

Autonomous Access

Notification date: November 18, 2024

Ping Identity has deprecated Autonomous Access. The product will reach end of life on October 31, 2025. During the deprecation period, Ping Identity will not provide new patches, updates, or new features for Autonomous Access.

To support our Autonomous Access customers, we’re providing migration assistance to PingOne Protect. This advanced threat detection solution leverages machine learning to analyze authentication signals and detect abnormal online behavior. PingOne Protect is a well-established product trusted by hundreds of customers worldwide.

The Autonomous Access documentation has moved to the documentation archive at https://docs.pingidentity.com/archive/.
End-of-life date: October 31, 2025

Duo authentication node

Notification date: March 5, 2024

ForgeRock has deprecated the Duo authentication node because Duo has deprecated Traditional Duo Prompt that is used by the Duo node.

ForgeRock created Duo Universal Prompt node in anticipation of this depreciation. You should use Duo Universal Prompt node instead of Duo node (Deprecated).
End-of-life date: September 30, 2024

Introspect endpoint GET requests and URL query string parameters

Notification date

July 19, 2023

ForgeRock has deprecated the following behaviors of the OAuth 2.0 introspect endpoint in Advanced Identity Cloud:

Accept GET requests
Accept data in POST requests from URL query string parameters

You can continue to use these behaviors, but they will be removed on July 19, 2024. Instead, when using the OAuth 2.0 introspect endpoint, you should use POST requests and pass data in the POST request body.

End-of-life date

July 19, 2024

Health check endpoints

Notification date

June 13, 2023

ForgeRock has deprecated the following Advanced Identity Cloud health check endpoints:

/am/isAlive.jsp
/am/json/health/live
/am/json/health/ready
/openidm/info/ping

You can continue to use the endpoints, but they will be removed on June 13, 2024. You should update any external monitoring to use the Advanced Identity Cloud /monitoring/health endpoint instead. Learn more in Monitor using health check endpoint.

End-of-life date

June 13, 2024

Skip option for 2-step verification registration for Advanced Identity Cloud tenant administrators

Notification date: February 3, 2023

ForgeRock has deprecated the option to let Advanced Identity Cloud tenant administrators skip 2-step verification. You can continue to use the skip option in your tenants, but this functionality will be removed from Advanced Identity Cloud on April 2, 2024. Learn more in Tenant administrator mandatory 2-step verification FAQ.
End-of-life date: April 2, 2024

ForgeRock Identity Cloud Email Server Service

Notification date: April 12, 2021

Built-in Email Server Service

ForgeRock no longer supports the default email provider settings for use in production. The default email provider settings will only be available for testing purposes. Current customers can continue to use the default email provider settings for production purposes, but this functionality will reach end of life on April 12, 2022. Customers should move to using their own email provider.
End-of-life date: April 12, 2022

Groovy OIDC Custom Claims Script

Notification date: April 20, 2021

ForgeRock will continue to support the Groovy version of the OIDC custom claims script until it is end of lifed on April 20th 2022. Current customers can continue to use the Groovy version of the OIDC custom claims script for production purposes, but this functionality will reach end of life on April 20, 2022.
End-of-life date: April 20, 2022

PingOne Advanced Identity Cloud