ForgeRock, founded in 2010 and headquartered in San Francisco, aims to be a leader in digital transformation and security for enterprise identity, currently managing over 500 million identities globally. The company has a workforce of 350+ employees, serves 450+ customers across various industries, and has raised $52 million in funding. The platform offers a comprehensive identity management solution, emphasizing low total cost of ownership and common services to simplify app development.

1. Copyright © 2015 ForgeRock, all rights reserved. 1
ForgeRock Identity Platform
John Barco, VP Product Management
Tim Sedlack, Sr. Product Manager OpenIDM

2. Copyright © 2015 ForgeRock, all rights reserved. 2
 Founded: 2010
 Headquartered in San Francisco with
offices in 6 countries
 Employees: 350+
 Customers: 450+ in 30+ countries
 Global Reach: 50% international revenue
 Funding to Date (thru Series C): $52M
 Investors: Accel Partners, Foundation
Capital and Meritech Capital Partners
Key Facts Mission Statement
THE FORGEROCK IDENTITY
PLATFORM CURRENTLY POWERS
MORE THAN 500 MILLION
IDENTITIES. IT IS OUR GOAL TO
BECOME THE MARKET LEADER IN
DIGITAL TRANSFORMATION AND
SECURITY FOR ENTERPRISE
IDENTITY WORLDWIDE.
ForgeRock: At a Glance

3. Copyright © 2015 ForgeRock, all rights reserved. 3
Financial Services & Insurance Media Mobile/Service Provider Public Sector Consumer/Retail/Industrial Healthcare
Many Enterprise Customers, Across All
Industries, Worldwide
EMEAAmericas
APAC

4. Copyright © 2015 ForgeRock, all rights reserved. 4
Legacy World:
• Employee Scale
• Users Only
• “Doorway” Security
• Identity Fragments
• Static Relationships
• Months/Years
• Massive integration
• High TCO
ForgeRock World:
• IoT Scale
• Users, Things, Services
• Continuous Security
• Single View of Customer
• Contextual Relationships
• Weeks/ Months
• Pre-integrated
• Low TCO
The ForgeRock Difference

5. Copyright © 2015 ForgeRock, all rights reserved. 5
Portals,applications,webservices,API’s
• AuthN / AuthZ
• Adaptive Risk
• Federation
• Social / Mobile SSO
• Secure Object Store
Access
Management
Identity
Store
Consumers /
Customers
Devices /
Things
Identity
Gateway • API / Mobile Gateway
• App / SSO Gateway
Policy Agents
Standards
REST
Standards
LDAP
REST
Employees /
Partners
APIs
Enterprise Apps
Cloud Apps
Mobile Apps
REST
• Provisioning / Self-Service
• Workflow / Recon / Sync
• Business Logic / Rules
Identity
Administration
IDM Connectors
REST
ForgeRock Platform

6. Copyright © 2015 ForgeRock, all rights reserved. 6
Access
Manager
Virtual
Directory
Identity
Manager
Mobile
Security Suite
Directory
Server
Entitlements
Server
Enterprise
SSO
Identity
Governance
Adaptive
Access
Web Services
Security
Legacy Competition Example: Oracle
Enterprise AppsMobile Apps Things
Acquisition Architecture + Complexity = Massive Integration Effort

7. Copyright © 2015 ForgeRock, all rights reserved. 7
Underpinned By Our Powerful Platform
Web Services
Security
Session
Management
Synchronization Auditing
LDAPv3 REST/JSON
Replication Access Control
Schema
Management
Caching
Auditing
Monitoring
Groups
Password Policy
Active
Directory Synch
Reporting
Authentication Authorization Provisioning
Password
Management
Authentication OpenID Connect
Federation Entitlements Workflow Engine Reconciliation Password Replay OAuth2
Adaptive Risk
Single
Sign-on
Registration Role Provisioning
Message
Transformation
SAML2
Throttling Scripting
CommonRESTAPI
CommonUserInterface
Single Integrated, Open Platform
CommonAudit/Logging
CommonScripting

8. Copyright © 2015 ForgeRock, all rights reserved. 8
Need For Common Services
Building an App is Complex
Core Application Services
REST APIs
Authentication
Logging Configuration
Business Logic
and Extensions
User Interface Mobile Apps
UI Framework Client SDK
DeveloperServices
HTTPServices
Database

9. Copyright © 2015 ForgeRock, all rights reserved. 9
ForgeRock Commons
Simplify, Standardize App Development
Core Application Services
Common REST (CREST)
Common AuthN Framework
Commons Audit Configuration
Common Scripting
User Interface Mobile Apps
ForgeRock UI Mobile SDK
APIDescriptor
OpenDJ
CommonHTTP
Framework

10. Copyright © 2015 ForgeRock, all rights reserved. 10
Commons Projects
 ForgeRock REST (CREST)
 HTTP Framework
 REST End-Point Protection (Auth Filters)
 Scripting
 API Descriptor
 Audit
 UI Framework
 Self-Service
Core Application Services
Common REST (CREST)
Common AuthN Framework
Commons Audit Configuration
Common Scripting
User Interface Mobile Apps
ForgeRock UI Mobile SDK
APIDescriptor
OpenDJ
CommonHTTP
Framework

11. Copyright © 2015 ForgeRock, all rights reserved. 11
CREST and HTTP Framework
CREST Features
 Single cross product REST API
 CRUDPAQ (create, read, update, delete, patch, action, query)
 One way to manage users, configuration, and services
 API versioning
HTTP Framework Features
 Lightweight uniform HTTP client and server framework
 Used to implement any HTTP service across the stack
(CREST, OAuth2, SCIM, …
 APIs for common HTTP functionality
 Request Routing

12. Copyright © 2015 ForgeRock, all rights reserved. 12
Scripting
Key Features
 JavaScript and Groovy
 JSR 223
 Common HTTP Client Binding
 Sandboxing
 Script Registry
 Debugging
Use Cases
 OpenAM Authentication and Authorization
 OpenIDM Connectors and Business Logic
 OpenIG Filters and Handlers

13. Copyright © 2015 ForgeRock, all rights reserved. 13
API Descriptor
Key Features
 Simple way for developers to consume
ForgeRock Common REST API.
 Descriptor allows dynamic generation of
documentation, language bindings
 Pre-defined descriptors for common APIs
across product
 Ability to dynamically create user interface
 Modeling capabilities that test how API
responds to different options and
parameters.

14. Copyright © 2015 ForgeRock, all rights reserved. 14
Audit Framework
Key Features
 Multiple types of audit events
 Multiple targets (audit consumers),
pluggable
 Correlating events within a transaction
 Correlating events across products
 Tamper evident
 REST API for read and query
 Client helpers
 Transformation
 Client context and device print
# Transaction ID
Client AuthN
Session
Token
Token Store
# #
# #
# #
#
access.csv activity.csv access.csv
#

15. Copyright © 2015 ForgeRock, all rights reserved. 15
Common Audit Framework
Activity

16. Copyright © 2015 ForgeRock, all rights reserved. 16
Configuration, Token, User Store
OpenDJ
 Embeddable
 HA replication
 High scale
 REST/JSON and LDAP
 Embedded or remote
 Geographic distribution

17. Copyright © 2015 ForgeRock, all rights reserved. 17
Self-Service
Key Components
 Set of shared back end services with a
pluggable architecture to enable IDM,
AM, and DJ to ship with the same self
service user interface and core back
end services
 User self-service for registration,
password reset, KBA
 Ability to plugin external identity
proofing services during registration
 Add a custom stage to an existing flow

18. Copyright © 2015 ForgeRock, all rights reserved. 18
UI Framework
Key Components
 jQuery (General utility) + jQuery UI (Widgets)
 Backbone.js + Require.js (Modular MVC Architecture)
 Handlebars.js (Templating)
Use Cases
 End User Pages
 Admin Console
 User Registration
 Password Reset

19. Copyright © 2015 ForgeRock, all rights reserved. 19
Platform Demo
Key Components
 Common UI
 Common REST
 Common Audit
Demo Time

20. Copyright © 2015 ForgeRock, all rights reserved. 20
Where in the World is ForgeRock?
GovInnovate Summit
24 November, 2015
Canberra, Australia
Gartner IAM Summit
7 December, 2015
Las Vegas, Nevada Visit forgerock.com

21. Copyright © 2015 ForgeRock, all rights reserved. 21