Identity &Access Management Tools (Open Source)
What is Identity & Access Management?đź”’
Identity & Access Management is a framework used to provide security for enterprise web applications, APIs, enterprise user lifecycle management, and enterprise applications access provisioning external users/vendors. Identity & Access Management can define the user, manages the role-based access, access privileges of individual network users and the circumstances in which users are granted (or denied) those privileges to the enterprise applications, and enable a single sign-in for seamless user authentication with enterprise applications integrated with Identity & Access Management. It verifies the user access requests and can either grant or deny permission to protected web & app resources enterprise-wide.
Open Source Identity & Access Management Tools
- OpenIAM
This stands as one of the most well-known open-source identity management tools; it features single sign-on, user and group management, flexible authentication, and automated provisioning — a major component of identity governance and administration. Moreover, OpenIAM aims to help reduce enterprise operational costs and improve identity audits via a centralized control station. The community version doesn’t enforce a time limit on subscriptions and benefits from community forum support.
2. Apache Syncope
The Apache Syncope platform describes itself as an open source system managing digital identities in enterprise environments; it rarely gets more straightforward. Apache Syncope focuses on providing identity lifecycle management, identity storage, provisioning engines, and access management capabilities. Furthermore, it even offers some monitoring and security capabilities for third-party applications.
3. Shibboleth Consortium
Shibboleth is an open-source project with a strong community of users. With a dedicated team of developers and vital support from Consortium members, Shibboleth has grown over the years to offer a variety of products alongside its world-renowned Identity Provider.
4. WSO2
WSO2 Identity Server [2], a part of the WSO2 Integration Agile Platform, is an open source IAM solution that facilitates single sign-on between applications and federates identities between multiple heterogeneous systems. It is optimized for securing APIs, microservices, and customer IAM (CIAM) projects. It offers enterprise-grade capabilities, such as identity federation, single sign-on (SSO), strong and adaptive authentication, account management, and identity provisioning, to help digital native organizations become integration agile through CIAM and API security.
5. MidPoint
midPoint, a unique open source solution seamlessly combining identity management and identity governance.The main midPoint’s philosophy is to be effective and secure. When managing identities, simplifying and automating internal processes while keeping a high level of security is a must. Thanks to the professional approach of the Evolveum core team, midPoint became a scalable product with a range from smaller deployments to millions of identities.
6. Soffid
Midpoint, an open-source IAM tool from Evolveum, seeks to combine identity management and identity governance. Indeed, MidPoint aims to provide scalability, allowing enterprises to grow to accommodate millions of users; it also seeks to offer diverse customization.
7. Gluu
Open source identity management tools aim to keep your cybersecurity platforms together. Thus, Gluu’s name proves remarkably appropriate. Among its features, Gluu offers an authorization server for web & API access management. Also, it provides a directory for identity data storage, authentication middleware for inbound identities, two-factor authentication, and directory integration.
8. Keycloak
Keycloak positions its design as primarily for applications and services.
The emphasis on third-party application identity security enables your enterprise to monitor and secure third-party programs with little coding. Yet Keycloak also provides out-of-the-box user authentication and federation. Furthermore, it provides standard protocols, centralized management, password policies, and even social login for CIAM needs.
9. Central Authentication Service (CAS)
Enterprise Single Sign-On — CAS provides a friendly open source community that actively supports and contributes to the project. While the project is rooted in higher-ed open source, it has grown to an international audience spanning Fortune 500 companies and small special-purpose installations.
10. ForgeRock
ForgeRock’s open source projects are made available via Github for those who wish to modify, contribute to, and use our open source offerings. Our projects include:
- OpenAM — Access Management
- OpenIDM — Identity Management
- OpenDJ — Directory Services
- OpenIG — Identity Gateway
11. Aerobase
Aerobase is an open source Identity and access management (IAM) platform specializes in identity federation, SSO, strong & adaptive authentication, access control, account management & identity provisioning, API & microservices security and privacy regulation.
