I think some of you have missed the point...
The whole point of the Ping service if I'm reading this right is that they use standards like SAML and OpenID to prevent them having the need to store your passwords/usernames/IDs... Your username and password are kept in your enterprises current directory like AD and the cloud services have no user account or password for the employees and the PingOne service is like a broker that allows for each cloud app to confirm a users identity using assertions.
Surely this makes it easier for the user as they just need to know their domain credentials and a lot easier for us IT administrators as we just need to maintain accounts in our directory and group membership for which apps we want users to access - this also satisfies my auditors somewhat and prevents a lot of the ballache that they currently give us.
Personally I'll be giving Ping a call to find out a bit more about this service...
Biting the hand that feeds IT
