ForgeRock, profile picture
Uploaded byForgeRock
PPTX, PDF906 views

NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview

The document provides an overview of the ForgeRock Identity Platform, which includes modules for access management, identity management, identity gateway, and directory services. It describes the key features and architecture of each module. The platform is built using open source projects for common REST APIs, user interfaces, auditing, logging, and scripting. It allows for authentication, authorization, user management, provisioning, synchronization and other identity and access management capabilities.

Embed presentation

Downloaded 77 times
© 2016 ForgeRock. All rights reserved. Platform Overview
© 2016 ForgeRock. All rights reserved. Portals,applications,webservices,API’s • Authentication & Session • Authorization & Policy • Adaptive Risk • Federation • User Data Store • Object Store Access Management Directory Services Consumers & Customers Devices & Things Identity Gateway • API / Mobile Gateway • App / SSO Gateway Policy Agents Standards REST Standards LDAP REST Employees, Partners APIs Enterprise Apps Partners Cloud Apps Mobile REST • Social Registration • Self-Service • Auditing & Reporting • Workflow & Business Logic Identity Management IDM Connectors REST ForgeRock Identity Platform
© 2016 ForgeRock. All rights reserved. ForgeRock Engineering Strategy • Simple • Scalable • Modular • Commons • Community Participation
© 2016 ForgeRock. All rights reserved. The Need For Commons Core Application Services REST APIs Authentication Logging Configuration Business Logic and Extensions User Interface Mobile Apps UI Framework Client SDK DeveloperServices HTTPServices Database
© 2016 ForgeRock. All rights reserved. ForgeRock Commons Projects Core Application Services ForgeRock REST Authentication Framework Audit Configuration Commons Scripting User Interface Mobile Apps ForgeRock UI Mobile SDK APIDescriptor HTTPFramework OpenDJ
© 2016 ForgeRock. All rights reserved. CREST and HTTP Framework CREST Features • Single cross product REST API • CRUDPAQ (create, read, update, delete, patch, action, query) • One way to manage users, configuration, and services • Versioning HTTP Framework Features • Lightweight uniform HTTP client and server framework • Used to implement any HTTP service across the stack (CREST, OAuth2, SCIM, … • APIs for common HTTP functionality • Request Routing
© 2016 ForgeRock. All rights reserved. API Descriptor Key Features • CREST API to obtain a descriptor for CREST endpoints and services • Descriptor allows dynamic generation of documentation, language bindings • Pre-defined descriptors for common APIs across product • Ability to dynamically create user interface • Core feature of API Management in OpenIG
© 2016 ForgeRock. All rights reserved. Audit Framework Key Features • Multiple types of audit events • Multiple targets (audit consumers), pluggable • Correlating events within a transaction • Tamper evident • REST API for read and query • Client helpers • Transformation • Client context and device print
© 2016 ForgeRock. All rights reserved. Commons UI Framework Key Components • jQuery • Backbone • Bootstrap Use Cases • End User Pages • Admin Console • User Registration • Password Reset
© 2016 ForgeRock. All rights reserved. The ForgeRock Identity Platform UMA Provider Mobile App Synchronization Auditing LDAPv3 REST/JSON Replication Access Control Schema Management Caching Auditing Monitoring Groups Password Policy Active Directory Pass-thru Reporting Authentication Authorization Provisioning User Self-Service Authentication OIDC / OAuth2 Federation / SSO User Self-Service Workflow Engine Reconciliation Password Replay SAML2 Adaptive Risk Stateless/Stateful Registration Aggregated User View Message Transformation API Security Scripting Built from Open Source Projects: UMA Resource Access Management Identity Management Identity Gateway Directory Services CommonRESTAPI CommonUserInterface CommonAudit/Logging CommonScripting
© 2016 ForgeRock. All rights reserved. Access Management • Authentication • OAuth/OIDC • SAML2 • Adaptive/Risk • Device Print • Authorization • Stateful/Stateless Architecture • User-Managed Access • Self-service 1 web app 15 min. download to install 6 modules 20k+ Authentications per second
© 2016 ForgeRock. All rights reserved. Access Management Architecture ForgeRock REST (Commons REST) Protected Resources Web Agents JavaEE Agents Java/C++ SDK User Interface End UserManagement ForgeRock UI Framework Core Services Authentication Entitlements Session AuditingOAuth Core Token ServiceOIDC Configuration Scripting Self-Service STSSAML2 Risk SPIs Authentication Plugins Policy Plugins User Mgmt Plugins Token Service Plugins Federation Plugins Persistence (OpenDJ) Application Gateway
© 2016 ForgeRock. All rights reserved. Identity Management • Provisioning • Synchronization • Reconciliation • Workflow • Connectors • Password Management • Self-service • Registration 1 web app 15 min. download to install 3 modules 72k+ registrations per min.
© 2016 ForgeRock. All rights reserved. Identity Management Architecture External Resources OSGI Persistence (OrientDB) ForgeRock UI Framework ForgeRock REST Router Business Logic (Javascript, Groovy, Java) Authentication Filter (JASPI) Jetty Web Server ConfigurationManaged Users Sync/Recon System (Connectors) Scheduler WorkflowAudit/Logs Policy Audit
© 2016 ForgeRock. All rights reserved. Identity Gateway • High Scale Reverse Proxy • API Security • Legacy App Security • IoT Gateway • Credential Replay • OpenAM PEP • Token Translation • OAuth2/OIDC/SAML2 • UMA resource server 1 web app 15 min. download to install 1 module 20k+ requests processed / sec
© 2016 ForgeRock. All rights reserved. Identity Gateway Architecture Core Processing Http Framework HTTP Framework CookiesHeaders Search Extract Crypto Routes OpenID Connect OAuth2 SAML2 Scripting Audit Filters Handlers
© 2016 ForgeRock. All rights reserved. Directory Services • Multiple Database Options • Rapid Deployment • Global Replication • Massive Scale/Performance • Password Management • REST & LDAP APIs • Extensive Security self-contained app 5 min. download to install 1 module 1B+ entries
© 2016 ForgeRock. All rights reserved. Directory Architecture ForgeRock REST Core Server Replication AuditingLDAPV3Encryption Monitoring Password Policy Groups Schema Management REST2LDAP Access Control Backend Services Persistence Connectors LDIF MemoryChange Log Java SDK/ LDAPv3 Web Application REST2LDAP ForgeRock REST
© 2016 ForgeRock. All rights reserved. Thanks!

More Related Content

PPTX
Azure Logic Apps
byBizTalk360
 
PDF
Webinar: Making the Move from Legacy IAM to Modern Digital Identity – On Your...
byIdentityNorthEvents
 
PDF
AWS Black Belt Techシリーズ Amazon VPC
byAmazon Web Services Japan
 
PDF
Behat Best Practices with Symfony
byCiaranMcNulty
 
PDF
クラウドDWHにおける観点とAzure Synapse Analyticsの対応
byRyoma Nagata
 
PPTX
SQL Server 使いのための Azure Synapse Analytics - Spark 入門
byDaiyu Hatakeyama
 
PPTX
original.pptx
byKhushal Narooka
 
PPTX
backlogsでもCI/CDする夢を見る
byTakeru Maehara
 
Azure Logic Apps
byBizTalk360
 
Webinar: Making the Move from Legacy IAM to Modern Digital Identity – On Your...
byIdentityNorthEvents
 
AWS Black Belt Techシリーズ Amazon VPC
byAmazon Web Services Japan
 
Behat Best Practices with Symfony
byCiaranMcNulty
 
クラウドDWHにおける観点とAzure Synapse Analyticsの対応
byRyoma Nagata
 
SQL Server 使いのための Azure Synapse Analytics - Spark 入門
byDaiyu Hatakeyama
 
original.pptx
byKhushal Narooka
 
backlogsでもCI/CDする夢を見る
byTakeru Maehara
 

What's hot

PDF
Azure web apps
byVaibhav Gujral
 
PDF
SW 아키텍처 분석방법
byYoungSu Son
 
PDF
Debunked: 5 Myths About Zero Trust Security
byCentrify Corporation
 
PDF
AWS IoT SiteWise のご紹介 (AWS IoT Deep Dive #5)
byAmazon Web Services Japan
 
PDF
S05 Microsoft Azure 仮想マシンでの Active Directory 活用シナリオ
byMicrosoft Azure Japan
 
PDF
The Twelve-Factor Appで考えるAWSのサービス開発
byAmazon Web Services Japan
 
PPTX
StreamSet ETL tool
bySwapnilSHampi
 
PDF
Cognito、Azure ADと仲良くしてみた
byTakafumi Kondo
 
PDF
Kinesis + Elasticsearchでつくるさいきょうのログ分析基盤
byAmazon Web Services Japan
 
PPT
Intro to Amazon S3
byYu Lun Teo
 
PDF
20210216 AWS Black Belt Online Seminar AWS Database Migration Service
byAmazon Web Services Japan
 
PDF
[금융사를 위한 AWS Generative AI Day 2023] 3_AWS Generative AI 기술특징과 접근...
byAWS Korea 금융산업팀
 
PPTX
Azure Governance
byBenjamin Hüpeden
 
PDF
AWS Black Belt Online Seminar 2017 Amazon DynamoDB
byAmazon Web Services Japan
 
PPTX
TDDはじめる前に
byYasui Tsutomu
 
PDF
Amazon Connect ハンズオン初級編
byAmazon Web Services Japan
 
PPTX
急なトラフィック増にも動じない、Amazon S3とCloudFrontを活用したWebサイト構築
byHirokazu Ouchi
 
PDF
20190806 AWS Black Belt Online Seminar AWS Glue
byAmazon Web Services Japan
 
PDF
Amazon VPC VPN接続設定 参考資料
byAmazon Web Services Japan
 
PDF
Azure cloud migration simplified
byGirlo
 
Azure web apps
byVaibhav Gujral
 
SW 아키텍처 분석방법
byYoungSu Son
 
Debunked: 5 Myths About Zero Trust Security
byCentrify Corporation
 
AWS IoT SiteWise のご紹介 (AWS IoT Deep Dive #5)
byAmazon Web Services Japan
 
S05 Microsoft Azure 仮想マシンでの Active Directory 活用シナリオ
byMicrosoft Azure Japan
 
The Twelve-Factor Appで考えるAWSのサービス開発
byAmazon Web Services Japan
 
StreamSet ETL tool
bySwapnilSHampi
 
Cognito、Azure ADと仲良くしてみた
byTakafumi Kondo
 
Kinesis + Elasticsearchでつくるさいきょうのログ分析基盤
byAmazon Web Services Japan
 
Intro to Amazon S3
byYu Lun Teo
 
20210216 AWS Black Belt Online Seminar AWS Database Migration Service
byAmazon Web Services Japan
 
[금융사를 위한 AWS Generative AI Day 2023] 3_AWS Generative AI 기술특징과 접근...
byAWS Korea 금융산업팀
 
Azure Governance
byBenjamin Hüpeden
 
AWS Black Belt Online Seminar 2017 Amazon DynamoDB
byAmazon Web Services Japan
 
TDDはじめる前に
byYasui Tsutomu
 
Amazon Connect ハンズオン初級編
byAmazon Web Services Japan
 
急なトラフィック増にも動じない、Amazon S3とCloudFrontを活用したWebサイト構築
byHirokazu Ouchi
 
20190806 AWS Black Belt Online Seminar AWS Glue
byAmazon Web Services Japan
 
Amazon VPC VPN接続設定 参考資料
byAmazon Web Services Japan
 
Azure cloud migration simplified
byGirlo
 

Viewers also liked

PPTX
ForgeRock Gartner 2016 Security & Risk Management Summit
byForgeRock
 
PPT
Incredible Edible Identity
byForgeRock
 
PPT
THE FORGEROCK PLATFORM BIG PICTURE
byForgeRock
 
PPTX
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
byForgeRock
 
PPTX
Webinar: OpenIDM 3.1
byForgeRock
 
PPTX
Best practices ensuring a successful implementation
byForgeRock
 
PDF
ForgeRock Platform Release - Summer 2016
byForgeRock
 
PPTX
Identity Management with the ForgeRock Identity Platform - So What’s New?
byForgeRock
 
PDF
Kantara Initiative, Inc in 2016
bykantarainitiative
 
PPTX
OpenAM - An Introduction
byForgeRock
 
ForgeRock Gartner 2016 Security & Risk Management Summit
byForgeRock
 
Incredible Edible Identity
byForgeRock
 
THE FORGEROCK PLATFORM BIG PICTURE
byForgeRock
 
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
byForgeRock
 
Webinar: OpenIDM 3.1
byForgeRock
 
Best practices ensuring a successful implementation
byForgeRock
 
ForgeRock Platform Release - Summer 2016
byForgeRock
 
Identity Management with the ForgeRock Identity Platform - So What’s New?
byForgeRock
 
Kantara Initiative, Inc in 2016
bykantarainitiative
 
OpenAM - An Introduction
byForgeRock
 

Similar to NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview

PPTX
Webinar: Access Management with the ForgeRock Identity Platform - So What’s N...
byForgeRock
 
PDF
The Future is Now: The ForgeRock Identity Platform, Early 2017 Release
byForgeRock
 
PPTX
Webinar: Identity Wars: The Unified Platform Awakens
byForgeRock
 
PPTX
Directory Services with the ForgeRock Identity Platform - So What’s New?
byForgeRock
 
PPTX
Identity Gateway with the ForgeRock Identity Platform - So What’s New?
byForgeRock
 
PDF
The Future is Now: What’s New in ForgeRock Identity Gateway
byForgeRock
 
PDF
The Future is Now: What’s New in ForgeRock Access Management
byForgeRock
 
PDF
Sydney Identity Unconference Introduction and Highlights
byForgeRock
 
PDF
The Future is Now: What’s New in ForgeRock Identity Management
byForgeRock
 
PPTX
Webinar: "Entitlements: Taking Control of the Big Data Gold Rush"
byForgeRock
 
PPTX
Webinar: Extend The Power of The ForgeRock Identity Platform Through Scripting
byForgeRock
 
PPTX
Developing for Next Gen Identity Services
byForgeRock
 
PDF
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
byForgeRock
 
PDF
Cloud Forge Rock
byAtlas Systems
 
PDF
Modernizing Identity Access Management Platforms - Dale Kinney & Damian Flannery
byIdentityNorthEvents
 
PPTX
OpenIG Webinar: Your Swiss Army Knife for Protecting and Securing Web Apps, A...
byForgeRock
 
PPTX
Identity Live London 2017 | Daniel Raskin
byForgeRock
 
PPTX
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
byForgeRock
 
PPTX
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
byForgeRock
 
PPTX
The Hitchhiker's Guide to the Land of OAuth
byChris Adriaensen
 
Webinar: Access Management with the ForgeRock Identity Platform - So What’s N...
byForgeRock
 
The Future is Now: The ForgeRock Identity Platform, Early 2017 Release
byForgeRock
 
Webinar: Identity Wars: The Unified Platform Awakens
byForgeRock
 
Directory Services with the ForgeRock Identity Platform - So What’s New?
byForgeRock
 
Identity Gateway with the ForgeRock Identity Platform - So What’s New?
byForgeRock
 
The Future is Now: What’s New in ForgeRock Identity Gateway
byForgeRock
 
The Future is Now: What’s New in ForgeRock Access Management
byForgeRock
 
Sydney Identity Unconference Introduction and Highlights
byForgeRock
 
The Future is Now: What’s New in ForgeRock Identity Management
byForgeRock
 
Webinar: "Entitlements: Taking Control of the Big Data Gold Rush"
byForgeRock
 
Webinar: Extend The Power of The ForgeRock Identity Platform Through Scripting
byForgeRock
 
Developing for Next Gen Identity Services
byForgeRock
 
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
byForgeRock
 
Cloud Forge Rock
byAtlas Systems
 
Modernizing Identity Access Management Platforms - Dale Kinney & Damian Flannery
byIdentityNorthEvents
 
OpenIG Webinar: Your Swiss Army Knife for Protecting and Securing Web Apps, A...
byForgeRock
 
Identity Live London 2017 | Daniel Raskin
byForgeRock
 
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
byForgeRock
 
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
byForgeRock
 
The Hitchhiker's Guide to the Land of OAuth
byChris Adriaensen
 

More from ForgeRock

PDF
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
byForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
byForgeRock
 
PDF
Identity Live Sydney: Identity Management - A Strategic Opportunity
byForgeRock
 
PDF
Identity Live Singapore: Transform Your Cybersecurity Capability
byForgeRock
 
PDF
Identity Live Singapore 2018 Keynote Presentation
byForgeRock
 
PDF
Identity Live Sydney 2018 Keynote Presentation
byForgeRock
 
PDF
Identity Live Singapore: Just Ask 'Em
byForgeRock
 
PDF
Identity Live Singapore: Building Trust & Privacy in a Connected Society
byForgeRock
 
PDF
Identity Live Sydney: Intelligent Authentication
byForgeRock
 
PDF
Identity Live Sydney: Building Trust and Privacy in a Connected Society
byForgeRock
 
PDF
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
byForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - Overview
byForgeRock
 
PDF
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
byForgeRock
 
PDF
Opening Keynote (Identity Live Berlin 2018)
byForgeRock
 
PDF
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
byForgeRock
 
PDF
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
byForgeRock
 
PDF
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
byForgeRock
 
PDF
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
byForgeRock
 
PDF
Shift from GDPR readiness to sustained compliance to improve your business an...
byForgeRock
 
PDF
Intelligent Authentication (Identity Live Berlin 2018)
byForgeRock
 
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
byForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
byForgeRock
 
Identity Live Sydney: Identity Management - A Strategic Opportunity
byForgeRock
 
Identity Live Singapore: Transform Your Cybersecurity Capability
byForgeRock
 
Identity Live Singapore 2018 Keynote Presentation
byForgeRock
 
Identity Live Sydney 2018 Keynote Presentation
byForgeRock
 
Identity Live Singapore: Just Ask 'Em
byForgeRock
 
Identity Live Singapore: Building Trust & Privacy in a Connected Society
byForgeRock
 
Identity Live Sydney: Intelligent Authentication
byForgeRock
 
Identity Live Sydney: Building Trust and Privacy in a Connected Society
byForgeRock
 
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
byForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - Overview
byForgeRock
 
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
byForgeRock
 
Opening Keynote (Identity Live Berlin 2018)
byForgeRock
 
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
byForgeRock
 
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
byForgeRock
 
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
byForgeRock
 
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
byForgeRock
 
Shift from GDPR readiness to sustained compliance to improve your business an...
byForgeRock
 
Intelligent Authentication (Identity Live Berlin 2018)
byForgeRock
 

Recently uploaded

PDF
AI-native development: from Prompt to Platform
byMaxim Salnikov
 
PDF
LogiNext Media Kit & Company Overview 2025
bysanikaroy72
 
PPTX
iufdh gugh w4i rvhdio tj43ko jdi90ft kj32whidglt
byjeromeschool1976
 
PDF
Physiotherapist App Development for Modern Rehabilitation
byV3CUBE TECHNOLABS
 
PDF
LogiNext Media Kit & Company Overview 2025
bysmritipatil055
 
PDF
Pet Care Service App Development Company
byV3CUBE TECHNOLABS
 
PDF
Smart ways to se AI in your business , presentation
byAI n Dot Net
 
PDF
LogiNext Media Kit & Company Overview 2025
byswatishahz9031
 
PDF
Introducing MySQL HeatWave Migration Assistant
byAlexander Hitrov
 
PDF
🤖🧰 SPRING AI AGENTIC PATTERNS (PART 1): AGENT SKILLS
byVincent Vauban
 
PDF
LogiNext Media Kit & Company Overview 2025
bynidhisharmaq7184
 
PDF
Manual Testing Still Matters: 7 Areas Where Humans Beat Automation
byKiwiQA Services
 
PPTX
Windows File System Monitoring Tool Using C and C++
byAkshay Muley
 
PPTX
Java Spring Boot Development Services in USA
bydavidjohansen1597
 
PDF
LogiNext Media Kit & Company Overview 2025
bypriyajoshi2929
 
PDF
Water Delivery App Development Solutions.pdf
byeSiteWorld TechnoLabs Pvt. Ltd.
 
PPTX
Applicius Technologies: Full Service Overview for Branding, SEO, Web & App De...
byappliciustech
 
PDF
Malware_Detection_A_Framework_for_Reverse_Engineered_Android_Applications_Thr...
byKiritiyadavGoskula
 
PDF
ChampionMATES – Compete With Friends. Predict Sports. Become the Champion.
byRafal Ksiazek
 
PDF
LogiNext Media Kit & Company Overview 2025
bydhrutipatelk5617
 
AI-native development: from Prompt to Platform
byMaxim Salnikov
 
LogiNext Media Kit & Company Overview 2025
bysanikaroy72
 
iufdh gugh w4i rvhdio tj43ko jdi90ft kj32whidglt
byjeromeschool1976
 
Physiotherapist App Development for Modern Rehabilitation
byV3CUBE TECHNOLABS
 
LogiNext Media Kit & Company Overview 2025
bysmritipatil055
 
Pet Care Service App Development Company
byV3CUBE TECHNOLABS
 
Smart ways to se AI in your business , presentation
byAI n Dot Net
 
LogiNext Media Kit & Company Overview 2025
byswatishahz9031
 
Introducing MySQL HeatWave Migration Assistant
byAlexander Hitrov
 
🤖🧰 SPRING AI AGENTIC PATTERNS (PART 1): AGENT SKILLS
byVincent Vauban
 
LogiNext Media Kit & Company Overview 2025
bynidhisharmaq7184
 
Manual Testing Still Matters: 7 Areas Where Humans Beat Automation
byKiwiQA Services
 
Windows File System Monitoring Tool Using C and C++
byAkshay Muley
 
Java Spring Boot Development Services in USA
bydavidjohansen1597
 
LogiNext Media Kit & Company Overview 2025
bypriyajoshi2929
 
Water Delivery App Development Solutions.pdf
byeSiteWorld TechnoLabs Pvt. Ltd.
 
Applicius Technologies: Full Service Overview for Branding, SEO, Web & App De...
byappliciustech
 
Malware_Detection_A_Framework_for_Reverse_Engineered_Android_Applications_Thr...
byKiritiyadavGoskula
 
ChampionMATES – Compete With Friends. Predict Sports. Become the Champion.
byRafal Ksiazek
 
LogiNext Media Kit & Company Overview 2025
bydhrutipatelk5617
 

NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview

  • 1.
    © 2016 ForgeRock.All rights reserved. Platform Overview
  • 2.
    © 2016 ForgeRock.All rights reserved. Portals,applications,webservices,API’s • Authentication & Session • Authorization & Policy • Adaptive Risk • Federation • User Data Store • Object Store Access Management Directory Services Consumers & Customers Devices & Things Identity Gateway • API / Mobile Gateway • App / SSO Gateway Policy Agents Standards REST Standards LDAP REST Employees, Partners APIs Enterprise Apps Partners Cloud Apps Mobile REST • Social Registration • Self-Service • Auditing & Reporting • Workflow & Business Logic Identity Management IDM Connectors REST ForgeRock Identity Platform
  • 3.
    © 2016 ForgeRock.All rights reserved. ForgeRock Engineering Strategy • Simple • Scalable • Modular • Commons • Community Participation
  • 4.
    © 2016 ForgeRock.All rights reserved. The Need For Commons Core Application Services REST APIs Authentication Logging Configuration Business Logic and Extensions User Interface Mobile Apps UI Framework Client SDK DeveloperServices HTTPServices Database
  • 5.
    © 2016 ForgeRock.All rights reserved. ForgeRock Commons Projects Core Application Services ForgeRock REST Authentication Framework Audit Configuration Commons Scripting User Interface Mobile Apps ForgeRock UI Mobile SDK APIDescriptor HTTPFramework OpenDJ
  • 6.
    © 2016 ForgeRock.All rights reserved. CREST and HTTP Framework CREST Features • Single cross product REST API • CRUDPAQ (create, read, update, delete, patch, action, query) • One way to manage users, configuration, and services • Versioning HTTP Framework Features • Lightweight uniform HTTP client and server framework • Used to implement any HTTP service across the stack (CREST, OAuth2, SCIM, … • APIs for common HTTP functionality • Request Routing
  • 7.
    © 2016 ForgeRock.All rights reserved. API Descriptor Key Features • CREST API to obtain a descriptor for CREST endpoints and services • Descriptor allows dynamic generation of documentation, language bindings • Pre-defined descriptors for common APIs across product • Ability to dynamically create user interface • Core feature of API Management in OpenIG
  • 8.
    © 2016 ForgeRock.All rights reserved. Audit Framework Key Features • Multiple types of audit events • Multiple targets (audit consumers), pluggable • Correlating events within a transaction • Tamper evident • REST API for read and query • Client helpers • Transformation • Client context and device print
  • 9.
    © 2016 ForgeRock.All rights reserved. Commons UI Framework Key Components • jQuery • Backbone • Bootstrap Use Cases • End User Pages • Admin Console • User Registration • Password Reset
  • 10.
    © 2016 ForgeRock.All rights reserved. The ForgeRock Identity Platform UMA Provider Mobile App Synchronization Auditing LDAPv3 REST/JSON Replication Access Control Schema Management Caching Auditing Monitoring Groups Password Policy Active Directory Pass-thru Reporting Authentication Authorization Provisioning User Self-Service Authentication OIDC / OAuth2 Federation / SSO User Self-Service Workflow Engine Reconciliation Password Replay SAML2 Adaptive Risk Stateless/Stateful Registration Aggregated User View Message Transformation API Security Scripting Built from Open Source Projects: UMA Resource Access Management Identity Management Identity Gateway Directory Services CommonRESTAPI CommonUserInterface CommonAudit/Logging CommonScripting
  • 11.
    © 2016 ForgeRock.All rights reserved. Access Management • Authentication • OAuth/OIDC • SAML2 • Adaptive/Risk • Device Print • Authorization • Stateful/Stateless Architecture • User-Managed Access • Self-service 1 web app 15 min. download to install 6 modules 20k+ Authentications per second
  • 12.
    © 2016 ForgeRock.All rights reserved. Access Management Architecture ForgeRock REST (Commons REST) Protected Resources Web Agents JavaEE Agents Java/C++ SDK User Interface End UserManagement ForgeRock UI Framework Core Services Authentication Entitlements Session AuditingOAuth Core Token ServiceOIDC Configuration Scripting Self-Service STSSAML2 Risk SPIs Authentication Plugins Policy Plugins User Mgmt Plugins Token Service Plugins Federation Plugins Persistence (OpenDJ) Application Gateway
  • 13.
    © 2016 ForgeRock.All rights reserved. Identity Management • Provisioning • Synchronization • Reconciliation • Workflow • Connectors • Password Management • Self-service • Registration 1 web app 15 min. download to install 3 modules 72k+ registrations per min.
  • 14.
    © 2016 ForgeRock.All rights reserved. Identity Management Architecture External Resources OSGI Persistence (OrientDB) ForgeRock UI Framework ForgeRock REST Router Business Logic (Javascript, Groovy, Java) Authentication Filter (JASPI) Jetty Web Server ConfigurationManaged Users Sync/Recon System (Connectors) Scheduler WorkflowAudit/Logs Policy Audit
  • 15.
    © 2016 ForgeRock.All rights reserved. Identity Gateway • High Scale Reverse Proxy • API Security • Legacy App Security • IoT Gateway • Credential Replay • OpenAM PEP • Token Translation • OAuth2/OIDC/SAML2 • UMA resource server 1 web app 15 min. download to install 1 module 20k+ requests processed / sec
  • 16.
    © 2016 ForgeRock.All rights reserved. Identity Gateway Architecture Core Processing Http Framework HTTP Framework CookiesHeaders Search Extract Crypto Routes OpenID Connect OAuth2 SAML2 Scripting Audit Filters Handlers
  • 17.
    © 2016 ForgeRock.All rights reserved. Directory Services • Multiple Database Options • Rapid Deployment • Global Replication • Massive Scale/Performance • Password Management • REST & LDAP APIs • Extensive Security self-contained app 5 min. download to install 1 module 1B+ entries
  • 18.
    © 2016 ForgeRock.All rights reserved. Directory Architecture ForgeRock REST Core Server Replication AuditingLDAPV3Encryption Monitoring Password Policy Groups Schema Management REST2LDAP Access Control Backend Services Persistence Connectors LDIF MemoryChange Log Java SDK/ LDAPv3 Web Application REST2LDAP ForgeRock REST
  • 19.
    © 2016 ForgeRock.All rights reserved. Thanks!