• Download a trial
  • Sales
  • Support
  • Login
logo
  • Home
  • Products
  • Solutions
  • Partners
  • About Us
  • Consulting
  • Resources
Request a Quote
  • Workforce Identity
  • Customer Identity
  • Comparison
  • Subscriptions

All Features

Overview of all features in Workforce Identity

User Onboarding and Offboarding

Automate joiner, mover, leaver processes

Access Request

Access requests with multi-step approvals

User Access Reviews

Save time with user access reviews

Self-Service Portal

Self-service portal for all end user activities

Segregation of Duties

Detect and remediate SoD violations

Password Management

Enforce password policies and enable synchronization

Single Sign-On (SSO)

Enable SSO using standards - SAML, oAuth, OIDC

Authentication and MFA

Improve security with adaptive authentication and MFA

3rd Party IdP Integration

Integrate with your existing identity provider

Integration API

Use the REST API to add identity into your applications

Connector Library

Integrate on-premise and SaaS applications

Modern Architecture

Microservice architecture that supports deployment using RPM, Kubernetes or OpenShift

All Features

Overview of all features in Customer IAM

Authentication and MFA

Improve security with adaptive authentication and MFA 

Single Sign-On (SSO)

Enable SSO using standards - SAML, oAuth, OIDC

Password Management

Enforce password policies and enable synchronization

Modern Architecture

Microservice architecture that supports deployment using RPM, Kubernetes or OpenShift

Community vs Enterprise

Summary of the differences between the Community and Enterprise editions

Subscription Benefits

Overview of the benefits provided by an OpenIAM subscription

  • Integrations
  • Verticals
  • Workforce Use Cases
  • CIAM Use Cases

Active Directory

Manage identity in Active Directory

Azure (O365)

Manage identity in Office365

SAP

Manage identity in SAP S/4 Hana and SuccessFactors

Education

Manage identity for students, staff and alumni

User Access Requests

Empower end users and improve compliance with user access requests

Strong Authentication

Improve security with adaptive authentication and MFA

Single Sign-On (SSO)

Improve customer experience with SSO

  • Partners

Current Partners

Our Current Partners

  • About Us

About OpenIAM

Learn about OpenIAM

Press Releases

References to OpenIAM press releases

OpenIAM in the Media

References to OpenIAM in the media

Careers

Learn about open positions at OpenIAM

  • Consulting

Proof of Value

Customized engagement to confirm defined proof of value objectives

Jump Start

Customized engagement to rapidly deliver a solution into production

Solution Implementation

Engagement with the objective to deliver a complete IAM solution based on customer requirements

  • Resources

Videos

Collection of videos describing how OpenIAM can be used to solve common use cases

Community Portal

Collaborative community portal to learn more about OpenIAM

CE Documentation

Documentation for the Community Edition

Blog

Musings on identity penned by the OpenIAM team

Webinar Calendar

Upcoming webinars and training sessions

Case Study: IdaaS in Manufacturing

Challenge

A global manufacturing firm headquartered in the EU wanted to replace their current IAM solution as part of an overall modernization effort.

The company had a hybrid environment which consisted of a significant number of systems being delivered by SaaS providers while other systems were on-premise in their corporate datacenter. Some of these systems included Workday for HR, Oracle EBS for ERP, Freshservice, GitHub Enterprise, a PLM solution, Tableau for business intelligence, Azure AD with Office 365, and Active Directory.

The user community consisted of employees, contractors, customers, and vendors. All of these users needed access to the systems. The company required a unified IAM platform which could achieve the following:

  • Support employees, customers and vendors from the same platform
  • Automated user life-cycle management for employees by integrating with Workday
  • Self-registration with validation for vendors and customers
  • Single Sign-On (SSO) to business applications
  • MFA (Multi-Factor Authentication) for improved security
  • Self-service password reset for all users
  • Workflow-based request approval functionality for employees
image-07

Solution Overview

After an extensive PoC and RFP process which included both SaaS and on-premise vendors, OpenIAM was selected. OpenIAM delivered an Identity-as-a-Service (IDaaS) solution that was hosted in the EU to comply with GDPR requirements. The solution consisted of identity governance, web access management, customer IAM and MFA. This provided the company with a single solution for each of their user communities.

User life cycle management

Automated user life-cycle management was enabled using the OpenIAM Workday connector in conjunction with business rules to support birthright access requirements and workflows for joiner, mover, and leaver processes.
 
Connectors were configured for all critical systems and in some cases, new connectors were developed.

Authentication

As part of the solution, end-users were provided with a customer branded central login interface and a self-service portal. The login UI, which is part of the OpenIAM Identity Provider (IdP) functionality, supports MFA. Since the customer had a mixed user community, multiple authentication policies were implemented. Depending on the type of user, they were able to authenticate using:
  • OTP over e-mail, SMS or IVR
  • OpenIAM authenticator app with push notification
To further improve security, the adaptive authentication functionality in OpenIAM was used to create authentication workflows that combined MFA with other factors such as location, device, and time.

Self-service portal

The self-service portal was configured so that each type of user could carry out their business-related tasks from a central location. Upon logging into the self-service portal, end-users can SSO to all of the applications that they were entitled to.
 
Authorized users could also create requests for additional access by using the workflow-driven service catalog and shopping cart. Similarly, approvers could view and process all incoming requests for access. If requests were approved, then the system would automatically provision the new privileges using the connectors.

The self-service portal also provided end-users with functionality for self-service password reset with password synchronization, further reducing the load on the help desk.

External users

External users, such as customers and vendors, were able to use the self-service portal and gain access to the systems by signing up using the self-registration functionality. Like internal users, external users were assigned roles as part of their birthright access to control the applications that they can access and what they can do within those applications.

Summary

The overall solution provided the company with a central platform which simplified how end-users, internal or external, interact with business-critical applications. The sign-up effort was significantly reduced along with the effort to manage the user lifecycle.
 
The OpenIAM platform had significantly reduced operational overhead and improved end-user productivity, while security and compliance with GDPR mandates had also been improved.

Let’s connect

Managing identity can be complex. Let OpenIAM simplify how you manage all of your identities from a converged modern platform hosted on-premises or in the cloud.

For 15 years, OpenIAM has been helping mid to large enterprises globally improve security and end user satisfaction while lowering operational costs.

Download a Trial Contact Sales
footer-top-logo
openIAM-white-logo

All modules of our IAM platform share a common infrastructure allowing customers to see one unified identity solution versus a collection of disparate products.

  • linkedin-icon
  • facebook-icon
  • twitter-icon
  • youtube-icon

sales@openiam.com

(858)935-7561

Copyright © 2023 OpenIAM. All rights reserved.
  • Privacy Policy