ForgeRock Blog

New Products. New Paths to Connected Identity.

Our development theme this release has been “configuration over customization.”   We designed configurable services so features like social sign on can be added to your application or service in minutes.   We recognize that technology is rapidly changing how we deliver products and services to our customers, making it clearer than ever that connected identity is at the center of everything online.  That’s why we want to be sure our customers are able to deploy customer facing identity services quickly and securely.  Below is a summary of a few of  our recent enhancements:

Enabling social sign on to your applications and services isn’t anything new but being able to do it in under a minute is new! It’s common to see applications that allow a new user to login with their Google or Facebook identity instead of “Registering” which requires the end user to create a new profile, username and password. The added convenience for the end user, means higher adoption rates, more people willing to sign up. For the administrator and developer, though, adding social sign on means more work – custom coding, testing, etc. With OpenAM, it is possible to enable social sign in less than one minute using a new wizard-based configuration tool which also comes pre-configured for Facebook, Google, and Microsoft.

A new UI-based policy editor tool makes it easier and faster to implement fine-grained authorization.  As organizations connect with their customers in the digital world, managing the right level of access and setting policies on what customers are able to do once they get access to application or services has become complex and relationship based.  The new policy editor tool in OpenAM makes it possible to easily define permissions and policies that reflect business dynamics.

Consumers want more control over their online identity experience and expect self-service features.  When the end user of identity management was an employee, or even a business partner, it was ok that the organization controlled the identity.  With this new release of OpenAM, it’s even easier for administrators to enable the end user to manage their online identity experience, decreasing the demands on the help desk and improving the customer experience.  While this has been possible in the past, it often required customization and coding on the part of the developer.  With OpenAM, these self-service capabilities are readily configurable and include:

·       Self registration

·       Forgotten password & password reset

·       Profile management

·       Account permissions (OAuth 2.0)

·       User management of trusted devices

·       User management of OAuth 2.0 tokens

New cloud connectors in OpenIDM extend trust between on premises IAM frameworks and the cloud, supporting commonly used enterprise SaaS based services like Google,, Office365 and Azure.  With the OpenIDM cloud connectors, end-users are able to use their same credentials to access applications and services regardless of where they reside – on premises or in the cloud.   With the OpenIDM cloud connectors, administrators are able to quickly add new cloud services and leverage their existing identity infrastructure to manage access and permissions, saving them time and ensuring better security with only one identity management system to manage.

Adaptive risk enhancements – the OpenAM contextual scripted authentication service enables the administrator to dynamically call 3rd party services like LexisNexis and Equifax for identity profiling.   With simple scripting and without a complicated integration, the registration process of a new user can include checking a user’s credit score at Equifax, for example. The adaptive risk enhancements also include device authentication so device details can be used for a more dynamic and intelligent authentication process.

Performance monitoring and auditing with OpenIG. An application and API gateway, OpenIG enables consistent enforcement of enterprise access policies for applications and APIs on premises or in the cloud, whether they’re legacy or modern.  This latest release introduces monitoring and auditing capabilities, allowing customers to have a comprehensive view of the activity to their applications and APIs.


For more Information:


OpenAM 12.0

Product Page

Register for Webinar

Product Demo


OpenIDM 3.1

Product Page

Replay Webinar

Product Demo


OpenIG 3.1

Product Page

Product Demo

Daniel Raskin


More posts by Daniel :