ForgeRock OpenAM is designed to give customers not only context-aware single sign-on access but also a personalized experience on any digital channel, whether a mobile device, connected car, home appliance, or whatever the next connected innovation might be.

OpenAM has a highly scalable, modular, easy-to-deploy architecture that includes:

  • Authentication based on dynamic, context-based access that is responsive to user location, time zone, device, IP address, time of day, and more, providing endless personalization possibilities and mitigation of risk
  • Entitlement management that enables users to access applications and services based on Permissions and Policies defined by the business without creating complexity using our policy engine tools
  • Federated Identity Management and Single Sign On with a single identity, allowing users to access services that span the cloud and mobile devices, on premises and off, eliminating the need for multiple passwords, user profiles, or the complexity that creates friction and slows adoption
  • Social Sign-On that supports integration with "sign up and log in with Facebook"-style access, which eliminates the need for user registration and allow rapid consumer adoption
  • Adaptive Risk that combines contextual information to evaluate the risk of users attempting to access resources and, if they are deemed suspicious, require a higher Level Of Assurance

OpenAM is an WEB Access Management which uses WEB Agents WAM

OpenAM stores and manages policies within OpenAM which acts as the Policy Administration Point using XACML.

OpenAM WEB Agents WAM and OpenIG act as the Policy Decision Point evaluating the policies and making Authorization decisions.

OpenAM Endpoints#

More Information#

There might be more information for this subject on one of the following: