Access Manager Overview

The Web Access Manager is an integral part of the OpenIAM platform. The Access Manager provides a scalable, secure and consistent solution to access applications in hybrid environments for both corporate (employees) and consumers (external) alike.

The Access Manager provides organizations with the following tools to enable these objectives:

  • Web SSO with support for SAML 2, oAuth 2, OIDC, and a rProxy to allow SSO to legacy applications
  • Adaptive Authentication
  • Multifactor Authentication (MFA)
  • Social Sign-on
  • Authorization
  • Session Management
  • Device registration
  • Fine grained audit logging

Adaptive Authentication

OpenIAM provides a number of OTB authentication options which include:

  • Password-based authentication
  • Certificate-based authentication
  • MFA-SMS/E-mail/Mobile app-based OTP

Adaptive Authentication builds on these options to provide a robust framework where users can build rich authentication workflows using a browser-based drag-and-drop interface. The flows can take into account a broad range of risk factors including device, context, user choices, geolocation, profile attributes and user behavior. This allows organizations to implement a solution which offers a significantly higher level of security while providing an improved end-user experience in comparison to traditional options.

Multifactor Authentication (MFA)

While OpenIAM’s framework allows you to use third party MFA products, OpenIAM provides its own MFA solution which is pre-integrated and ready to use. The following MFA options are provided out-of-the-box:

  • SMS-based OTP
  • E-mail-based OTP
  • Mobile app (iOS or Android) OTP plus push notification support

Social Sign-on

The Access Manager allows social sign-on from social identity providers such as Google, Facebook and LinkedIn.  Social registration significantly reduces the registration effort by allowing select attributes to be dynamically transferred from the social provider.

Flexible Authorization

OpenIAM provides a flexible RBAC-based authorization model to enforce security into your applications. The RBAC model, which supports inheritance as well as direct entitlements, provides end-customers with the flexibility needed to implement real world requirements. The authorization service can be used in conjunction with oAuth2 and the Access Gateway to enforce the authorization rules.

Access Gateway

The access gateway is a native plugin for Apache and Nginx web servers which provides the following functionality:

  • SSO to legacy applications
  • Session management
  • Protection of APIs and application URLs by enforcing authentication and authorization rules

Device Registration

Device registration provides a framework through which users can register and manage their devices. These devices and their attributes can be used as part of the adaptive authentication functionality to further enhance security.

Single Sign-on and Federation

OpenIAM supports SAML 2, OpenID Connect (OIDC) and oAuth2 to enable SSO to a large number of applications. OpenIAM can act as both an Identity Provider (IdP) and a Service Provider (SP).

Integration APIs

OpenIAM provides an extensive REST and SOAP API which can be used to add identity and improve security to your applications.  The API can also be used to customize the behavior of core OpenIAM features.

Recent Posts
OpenIAM, next generation identity governance, web access management, MFA and CIAM platform, announced today that it is participating in the launch of Professional Services in AWS Marketplace. Amazon Web Services (AWS) customers can now find and purchase Identity and Access...
The latest commercial version of OpenIAM’s fully integrated next-gen, IAM platform features new capabilities for Customer IAM (CIAM), strong authentication, audit & compliance, and user life cycle for the mid to large enterprise with DevOps tools to simplify both on-premise...
The latest release by OpenIAM adds support for Red Hat Enterprise Linux 8 and continues to extend its scalable microservices based solution OpenIAM LLC, has announced the release of Identity and Access Management Platform version 4.1.6 today. This release adds...
OpenIAM v4.1 provides organizations with a feature complete IAM platform which leverages modern technologies such as Docker, Kubernetes, Elasticsearch and Redis to provide a user-friendly, small footprint solution which is currently in production at mid to large enterprises globally. Cortlandt...
read more
Sign in
Lost your password?

Products of Interest

How did you hear about us?

Registration confirmation will be emailed to you.