ForgeRock, profile picture
Uploaded byForgeRock
PPTX, PDF77,770 views

OpenAM: An Introduction

The document outlines the key features and functionalities of OpenAM from ForgeRock, including authentication, authorization, single sign-on, and federation. It discusses various scenarios for Identity and Access Management (IAM) and emphasizes the importance of federated identity relationships for seamless access management across different systems. Additionally, it details the authentication methods supported by OpenAM and the standards used in federation.

Embed presentation

Downloaded 320 times
IRM Summit 2014 OpenAM Matthias Tristl
2IRM Summit 2014 Agenda ■ ForgeRock Stack overview ■ OpenAM Overview ■ Authentication ■ Authorization ■ Federation
3IRM Summit 2014 ForgeRock Stack Overview
4IRM Summit 2014 Pillars of IAM
5IRM Summit 2014 Classic scenario I User wants to use an application... User Application which does not require any of ForgeRock's products, but ...
6IRM Summit 2014 Classic scenario II Centralization of Authentication User Application … and ...
7IRM Summit 2014 Classic scenario III Central Authorization User Application
8IRM Summit 2014 Classic scenario IV Federation User Application Application
9IRM Summit 2014 Classic scenario V Identity Management User Application HR DB
 Provides single sign-on to web resources and create a sign on once, access everywhere environment  Centralized policy based authentication and authorization  Enables policy enforcement  Tracks all user authentication related events  Extends access beyond organizational boundaries OpenAM Key Functionality  Authentication  Authorization  Single Sign-On  Federation  Entitlements  Web Services Security  Auditing/Logging  Adaptive AuthN
11IRM Summit 2014 Single Sign On
12IRM Summit 2014 Protecting Resources
13IRM Summit 2014 Partner Integration
14IRM Summit 2014 Integration Paths
15IRM Summit 2014 Authentication
16IRM Summit 2014 Who are you?
17IRM Summit 2014 Authentication Flow
18IRM Summit 2014 ■ Common use case: User requests access to a web page ■ Other Use Cases: Applications can request authentication programatically through REST or SOAP web services and OpenAM SDK Where does the request come from?
19IRM Summit 2014 ■ OpenAM works with most authentication methods without customization ■ 21 out of the box Authentication modules ■ Custom modules can be created easily Which Credentials?
20IRM Summit 2014  Active Directory  Adaptive Risk  Anonymous  Certificate  Data Store  Device Print  Federation  HOTP  HTTP Basic  JDBC  LDAP  Membership  MSISDN  OATH  OAuth 2.0  RADIUS  SAE  SecurID  Windows Desktop SSO  Windows NT  WSSAuth FR-420 OpenAM 11 Authentication Modules
21IRM Summit 2014 ID Token
22IRM Summit 2014 Authorization
23IRM Summit 2014 Authorization ■ Authentication is not enough ■ Authorization determines: – WHO can do – what ACTIONS – with what RESOURCES – under which CONDITIONS? ■ Uses Policies to define those rights
24IRM Summit 2014 Authorization Flow
25IRM Summit 2014 Federation
26IRM Summit 2014 Federation ■ Federation is the process of linking identities across heterogeneous Access Management products ■ It is a trust relationship whereby a Service Provider (SP) trusts that an Identity Provider (IDP) has successfully authenticated a user ■ It is Standard Based
27IRM Summit 2014 Goals of Federation ■ Federation enables Single Sign On and Single Logout between partners ■ Federation allows rapid integration – during company acquisitions – between heterogeneous systems ■ Federation allows basic Identity Data Sharing ■ Helps to keep multiple internet accounts under control
28IRM Summit 2014 Federation Standards OpenAM SAML 1.0 SAML 1.x SAML 2.0 Liberty ID- FF 1.1/1.2 Shibboleth 1.0/1.1 Shibboleth 2 (SAML2) WS- Federation 1.1 ADFS ADFS2 OAUTH 1.0 OAUTH 2.0 OpenID Connect REST/JSON SOAP WS- Federation 1.0 2002 Today
29IRM Summit 2014 Federation Terminology
30IRM Summit 2014 OpenAM Federation ■ OpenAM provides first class federation support ■ Federation Protocol support – SAML2, WS-Federation, ID-FF, OAuth2 ■ Federated Web Services ■ Multi-Protocol Hub – Allows OpenAM to act as a broker between different federation protocols ■ Plug-in points allow for easy customization ■ Fedlet for applications that do not support standard protocols
31IRM Summit 2014 Forgerock University

More Related Content

PPTX
Cyber Security Presentation "It Will Never Happen To Me"
bySimon Salter
 
PPTX
Whitman_Ch10.pptx
bySiphamandla9
 
PDF
Web App Security Presentation by Ryan Holland - 05-31-2017
byTriNimbus
 
PDF
Cisco Cybersecurity Essentials Chapter- 7
byMukesh Chinta
 
PPT
Fundamentals of cryptography
byHossain Md Shakhawat
 
PPTX
Vulnerability assessment & Penetration testing Basics
byMohammed Adam
 
PPTX
Piggy Backing & Tailgating (Security)
byGAURAV. H .TANDON
 
PDF
The Game of Bug Bounty Hunting - Money, Drama, Action and Fame
byAbhinav Mishra
 
Cyber Security Presentation "It Will Never Happen To Me"
bySimon Salter
 
Whitman_Ch10.pptx
bySiphamandla9
 
Web App Security Presentation by Ryan Holland - 05-31-2017
byTriNimbus
 
Cisco Cybersecurity Essentials Chapter- 7
byMukesh Chinta
 
Fundamentals of cryptography
byHossain Md Shakhawat
 
Vulnerability assessment & Penetration testing Basics
byMohammed Adam
 
Piggy Backing & Tailgating (Security)
byGAURAV. H .TANDON
 
The Game of Bug Bounty Hunting - Money, Drama, Action and Fame
byAbhinav Mishra
 

What's hot

PDF
Secure by Design - Security Design Principles for the Rest of Us
byEoin Woods
 
PDF
Cisco cybersecurity essentials chapter 4
byMukesh Chinta
 
PPTX
Clean Desk Policy
byOluwabunmi Rosemary Afuwape
 
PPTX
What is Penetration Testing?
bybtpsec
 
PPTX
Secure coding practices
byMohammed Danish Amber
 
PPT
Reconnaissance & Scanning
byamiable_indian
 
PDF
5 Different Phases of Ethical Hacking
byINDIAN INSTITUTE OF ETHICAL HACKING & TECHNOLOGY
 
PDF
DPDP Act 2023.pdf
byPriyanka Aash
 
PPTX
Understanding cyber resilience
byChristophe Foulon, CISSP
 
PDF
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
byPriyanka Aash
 
ODP
OWASP Secure Coding
bybilcorry
 
PDF
WAF 101
byNull Bhubaneswar
 
PPTX
Information Security Risk Management and Compliance.pptx
byAbraraw Zerfu
 
PDF
Muh. Fani Akbar - Infiltrate Into Your AWS Cloud Environment Through Public E...
byidsecconf
 
PPTX
Cybercrime investigation
byProf. (Dr.) Tabrez Ahmad
 
PPTX
Cryptography
bySidharth Mohapatra
 
PPTX
20th Anniversary - OWASP Top 10 2021.pptx
byDedy Hariyadi
 
PPT
Cryptography
byamiable_indian
 
PPTX
Firewall DMZ Zone
byNetProtocol Xpert
 
PPT
Information Security & Cryptography
byArun ACE
 
Secure by Design - Security Design Principles for the Rest of Us
byEoin Woods
 
Cisco cybersecurity essentials chapter 4
byMukesh Chinta
 
Clean Desk Policy
byOluwabunmi Rosemary Afuwape
 
What is Penetration Testing?
bybtpsec
 
Secure coding practices
byMohammed Danish Amber
 
Reconnaissance & Scanning
byamiable_indian
 
5 Different Phases of Ethical Hacking
byINDIAN INSTITUTE OF ETHICAL HACKING & TECHNOLOGY
 
DPDP Act 2023.pdf
byPriyanka Aash
 
Understanding cyber resilience
byChristophe Foulon, CISSP
 
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
byPriyanka Aash
 
OWASP Secure Coding
bybilcorry
 
WAF 101
byNull Bhubaneswar
 
Information Security Risk Management and Compliance.pptx
byAbraraw Zerfu
 
Muh. Fani Akbar - Infiltrate Into Your AWS Cloud Environment Through Public E...
byidsecconf
 
Cybercrime investigation
byProf. (Dr.) Tabrez Ahmad
 
Cryptography
bySidharth Mohapatra
 
20th Anniversary - OWASP Top 10 2021.pptx
byDedy Hariyadi
 
Cryptography
byamiable_indian
 
Firewall DMZ Zone
byNetProtocol Xpert
 
Information Security & Cryptography
byArun ACE
 

Viewers also liked

PPTX
OpenAM - An Introduction
byForgeRock
 
PDF
The ForgeRock Identity Platform Extends CIAM, Fall 2017 Release
byForgeRock
 
PDF
T-Systems. Automating ForgeRock Full Stack Deployments to a Magenta Cloud.
byForgeRock
 
PDF
The Business Ecosystem is a Neighborhood - ForgeRock Identity Live Austin 2017
byForgeRock
 
PDF
The digital pains of retail
byForgeRock
 
PPTX
Identity Live Sydney 2017 - Daniel Raskin
byForgeRock
 
PDF
Implications of GDPR in Conjunction with UMA
byForgeRock
 
PPTX
Identity Live London 2017 | Kenneth May
byForgeRock
 
PPTX
Keynote : Customer Identity Builds Digital Trust - Paris Identity Summit
byForgeRock
 
PPTX
A Backstage Tour of Identity - Paris Identity Summit 2016
byForgeRock
 
PPTX
HSBC - ForgeRock Identity Summit 2017 Dusseldorf
byForgeRock
 
PPTX
Identity Live Sydney 2017 - Ashley Stevenson
byForgeRock
 
PPTX
Identity Live Sydney 2017 - Tim Sheedy
byForgeRock
 
PDF
IoT Wonderland: Understanding the Magic of OAuth2 Device Registration Flow
byForgeRock
 
PDF
DevOps Unleashed: Strategies that Speed Deployments
byForgeRock
 
PPTX
Keynote: Tech, Trust, and Transformation - Paris Identity Summit 2016
byForgeRock
 
PDF
Paradigmo. Rock Kit, the Rapid Deployment Toolkit for ForgeRock Identity Plat...
byForgeRock
 
PPTX
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
byForgeRock
 
PPTX
Identity Live Sydney 2017 - Andrew Latham
byForgeRock
 
PPTX
Identity Live Sydney 2017 - Allan Foster & Eve Maler
byForgeRock
 
OpenAM - An Introduction
byForgeRock
 
The ForgeRock Identity Platform Extends CIAM, Fall 2017 Release
byForgeRock
 
T-Systems. Automating ForgeRock Full Stack Deployments to a Magenta Cloud.
byForgeRock
 
The Business Ecosystem is a Neighborhood - ForgeRock Identity Live Austin 2017
byForgeRock
 
The digital pains of retail
byForgeRock
 
Identity Live Sydney 2017 - Daniel Raskin
byForgeRock
 
Implications of GDPR in Conjunction with UMA
byForgeRock
 
Identity Live London 2017 | Kenneth May
byForgeRock
 
Keynote : Customer Identity Builds Digital Trust - Paris Identity Summit
byForgeRock
 
A Backstage Tour of Identity - Paris Identity Summit 2016
byForgeRock
 
HSBC - ForgeRock Identity Summit 2017 Dusseldorf
byForgeRock
 
Identity Live Sydney 2017 - Ashley Stevenson
byForgeRock
 
Identity Live Sydney 2017 - Tim Sheedy
byForgeRock
 
IoT Wonderland: Understanding the Magic of OAuth2 Device Registration Flow
byForgeRock
 
DevOps Unleashed: Strategies that Speed Deployments
byForgeRock
 
Keynote: Tech, Trust, and Transformation - Paris Identity Summit 2016
byForgeRock
 
Paradigmo. Rock Kit, the Rapid Deployment Toolkit for ForgeRock Identity Plat...
byForgeRock
 
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
byForgeRock
 
Identity Live Sydney 2017 - Andrew Latham
byForgeRock
 
Identity Live Sydney 2017 - Allan Foster & Eve Maler
byForgeRock
 

Similar to OpenAM: An Introduction

PPTX
OpenIDM: An Introduction
byForgeRock
 
PPT
THE FORGEROCK PLATFORM BIG PICTURE
byForgeRock
 
PDF
Explore the Latest on WSO2 Identity Server 5.11
byWSO2
 
PPTX
OneIdentity - A Future-Ready Approach to IAM
byAdrian Dumitrescu
 
PPT
Case Study - Largest Brazilian Credit and Debtor Operator, A ForgeRock OpenAM...
byForgeRock
 
PPTX
OPENIDM: DID YOU JUST SAAS ME?
byForgeRock
 
PPT
Incredible Edible Identity
byForgeRock
 
PPTX
Bridge SPE: An Introduction
byForgeRock
 
PPTX
The Platform Big Picture
byForgeRock
 
PPTX
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
byForgeRock
 
PPTX
IRM: Using Identity to Empower CIOs Everywhere
byForgeRock
 
PPTX
Next-gen Enterprise Identity Services with Brainwave Identity GRC
byForgeRock
 
PDF
The Future of Digital IAM
byWSO2
 
PDF
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
byProfesia Srl, Lynx Group
 
PPTX
Using Identity to Empower the Enterprise: Identity Relationship Management
byForgeRock
 
PPT
Open Identity Stack Roadmap
byForgeRock
 
PPTX
Federated and fabulous identity
byAndre N. Klingsheim
 
PPTX
The lazy programmer`s way to secure application
byLev Maltsev
 
PDF
Securing web applications
bySupreme O
 
PDF
Benefits and Risks of a Single Identity - IBM Connect 2017
byGabriella Davis
 
OpenIDM: An Introduction
byForgeRock
 
THE FORGEROCK PLATFORM BIG PICTURE
byForgeRock
 
Explore the Latest on WSO2 Identity Server 5.11
byWSO2
 
OneIdentity - A Future-Ready Approach to IAM
byAdrian Dumitrescu
 
Case Study - Largest Brazilian Credit and Debtor Operator, A ForgeRock OpenAM...
byForgeRock
 
OPENIDM: DID YOU JUST SAAS ME?
byForgeRock
 
Incredible Edible Identity
byForgeRock
 
Bridge SPE: An Introduction
byForgeRock
 
The Platform Big Picture
byForgeRock
 
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
byForgeRock
 
IRM: Using Identity to Empower CIOs Everywhere
byForgeRock
 
Next-gen Enterprise Identity Services with Brainwave Identity GRC
byForgeRock
 
The Future of Digital IAM
byWSO2
 
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
byProfesia Srl, Lynx Group
 
Using Identity to Empower the Enterprise: Identity Relationship Management
byForgeRock
 
Open Identity Stack Roadmap
byForgeRock
 
Federated and fabulous identity
byAndre N. Klingsheim
 
The lazy programmer`s way to secure application
byLev Maltsev
 
Securing web applications
bySupreme O
 
Benefits and Risks of a Single Identity - IBM Connect 2017
byGabriella Davis
 

More from ForgeRock

PDF
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
byForgeRock
 
PDF
Identity Live Sydney: Building Trust and Privacy in a Connected Society
byForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - Overview
byForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
byForgeRock
 
PDF
Identity Live Singapore: Building Trust & Privacy in a Connected Society
byForgeRock
 
PDF
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
byForgeRock
 
PDF
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
byForgeRock
 
PDF
Identity Live Sydney: Intelligent Authentication
byForgeRock
 
PDF
Intelligent Authentication (Identity Live Berlin 2018)
byForgeRock
 
PDF
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
byForgeRock
 
PDF
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
byForgeRock
 
PDF
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
byForgeRock
 
PDF
Identity Live Singapore 2018 Keynote Presentation
byForgeRock
 
PDF
Identity Live Sydney 2018 Keynote Presentation
byForgeRock
 
PDF
Shift from GDPR readiness to sustained compliance to improve your business an...
byForgeRock
 
PDF
Identity Live Singapore: Just Ask 'Em
byForgeRock
 
PDF
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
byForgeRock
 
PDF
Identity Live Singapore: Transform Your Cybersecurity Capability
byForgeRock
 
PDF
Opening Keynote (Identity Live Berlin 2018)
byForgeRock
 
PDF
Identity Live Sydney: Identity Management - A Strategic Opportunity
byForgeRock
 
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
byForgeRock
 
Identity Live Sydney: Building Trust and Privacy in a Connected Society
byForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - Overview
byForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
byForgeRock
 
Identity Live Singapore: Building Trust & Privacy in a Connected Society
byForgeRock
 
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
byForgeRock
 
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
byForgeRock
 
Identity Live Sydney: Intelligent Authentication
byForgeRock
 
Intelligent Authentication (Identity Live Berlin 2018)
byForgeRock
 
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
byForgeRock
 
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
byForgeRock
 
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
byForgeRock
 
Identity Live Singapore 2018 Keynote Presentation
byForgeRock
 
Identity Live Sydney 2018 Keynote Presentation
byForgeRock
 
Shift from GDPR readiness to sustained compliance to improve your business an...
byForgeRock
 
Identity Live Singapore: Just Ask 'Em
byForgeRock
 
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
byForgeRock
 
Identity Live Singapore: Transform Your Cybersecurity Capability
byForgeRock
 
Opening Keynote (Identity Live Berlin 2018)
byForgeRock
 
Identity Live Sydney: Identity Management - A Strategic Opportunity
byForgeRock
 

Recently uploaded

PPTX
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
PDF
What Is a Private LLM and Why Enterprises Need It
byAivada
 
PDF
How to Evaluate a High Performance Database
byScyllaDB
 
PDF
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
PPTX
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
PDF
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PDF
HCSP-Presales-Campus Network Planning and Design V2.0
byVeronica916344
 
PPTX
How to make Ai agents using Google Gemini AI.pptx
bypkluffy111
 
PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PDF
WCAG Analyzer Tools and Techniques for User-Friendly Websites
byAccessibility Analyzer
 
PPTX
communication-skills-with-technology tools
byJaleto Sunkemo
 
PDF
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
PPTX
MGw_MRS Benfits seu beficios de redes 4g
byJoaquimBarros18
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
What Is a Private LLM and Why Enterprises Need It
byAivada
 
How to Evaluate a High Performance Database
byScyllaDB
 
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
API-First Architecture in Financial Systems
bycyy111112
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
HCSP-Presales-Campus Network Planning and Design V2.0
byVeronica916344
 
How to make Ai agents using Google Gemini AI.pptx
bypkluffy111
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
WCAG Analyzer Tools and Techniques for User-Friendly Websites
byAccessibility Analyzer
 
communication-skills-with-technology tools
byJaleto Sunkemo
 
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
MGw_MRS Benfits seu beficios de redes 4g
byJoaquimBarros18
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 

OpenAM: An Introduction