Common Services

One Platform to Rule Them All

We believe in a developer-friendly fellowship underpinning everything we do. Our identity services are shared across the entire platform to eliminate typical inefficiencies: no more hours spent reconciling multiple APIs, UIs, files, documentation, elves and squirrels, what have you.

The platform was designed from the ground up for realistic, human-grade scale. You have billions of identities? We have massive scale, session-failover, and high availability to match. All that’s left to consider is what to do with the time that is given to you.

Product Overview

Identity Platform in Short

Get the basics on our identity and access management solution

Analyst Report

Leader in Adaptive Authentication

KuppingerCole named ForgeRock a leader in the adaptive authentication space

Overview

Get the Details

Learn more about how you can secure access for, customers, applications and IoT

Get Started Here

 

Get the technical resources and documentation to get started with ForgeRock Common Services

Get Started here
REST Framework

Access web resources and collections of resources using the Common REST API.


Platform Guide

Overview of the ForgeRock Identity Platform

Prevent Data Breaches: Making Sure The Algorithms Work

An identity platform like ForgeRock is the backbone of an enterprise, with a view of all apps, identities, devices, and resources attempting to connect with each other. This is a very nice position to gather rich log identity data to use to prevent data breaches. In my previous blog, I discussed how we detect data breaches using identity logs.

Read More »

Is Your IAM Vendor Keeping up with the Cloud?

The ForgeRock Identity and Access Management  Platform can be deployed in many different cloud services like AWSGoogle, Azure, and even in Alibaba Cloud very recently by a partner. Being able to support a cloud deployment model is one thing, but keeping up with the changes in the cloud at the pace they are happening is where ForgeRock excels.

Read More »

IoT Edge Controller: Trusted Identity at the Device Level

On Tuesday, ForgeRock announced  the availability of its IoT Edge Controller, which provides consumer and industrial organizations with the ability to deliver trusted identity at the device level.  

Read More »

Blockchain: A Distributed Ledger Technology (DLT)

My mother just called me, wondering why a week doesn't go by that she doesn’t read about yet another Fortune 100 company announcing some Blockchain initiative. She asked me "What is this chain thing, and why are some people so enamored with it?"

What is a DLT?

While I didn't (and still don't) have a clear answer for the latter, for the former I started by first trying to explain (and highlight the merits) of a system that has these “DLT" characteristics:

Read More »

Replacing Legacy Systems with Identity-Enabled Microservices

According to a recent Forrester report, The Future Of Identity And Access Management, identity-enabled microservices are fast-replacing complex and monolithic legacy solutions. Why? Microservices and API-based solutions show faster time-to-value, provide flexibility for changing requirements, and support mobile and IoT technologies. 

Read More »

Deploying the ForgeRock platform on Kubernetes using Skaffold and Kustomize
2 weeks 2 days ago
If you are following along with the ForgeOps repository, you will see some significant changes in the way we deploy the ForgeRock IAM platform to Kubernetes.  These changes are aimed at dramatically simplifying the workflow to configure, test and deploy ForgeRock Access Manager, Identity Manager, Directory Services and the Identity Gateway. To understand the motivation for the change, let’s recap the […]
Warren Strange
Next Generation Distributed Authorization
1 month 2 weeks ago
Many of today’s security models spend a lot of time focusing upon network segmentation and authentication.  Both of these concepts are critical in building out a baseline defensive security posture.  However, there is a major area that is often overlooked, or at least simplified to a level of limited use.  That of authorization.  Working out what, a user, service, or […]
Simon Moffatt
Implementing JWT Profile for OAuth2 Access Tokens
1 month 3 weeks ago
There is a new IETF draft stream called JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens.  This is a very early 0 version, that looks to describe the format of OAuth2 issued access_tokens. Access tokens, are typically bearer tokens, but the OAuth2 spec, doesn’t really describe what format they should be.  They typically end up being two high level […]
Simon Moffatt
Directory Services – Docker, Kubernetes: Friends or Foes?
2 months ago
Two weeks ago, at the ForgeRock Identity Live conference, I did a talk about ForgeRock Directory Services (DS) in the Docker/Kubernetes (K8S) world, trying to answer the question whether DS and Docker/K8S were friends or foes. Before I dive into the question, let me say that it’s obvious that our whole industry is moving to the Cloud, and that Docker/Kubernetes […]
Ludo
Platform

An Identity Platform Built with the IoT, CIAM, and You in Mind

Digital Identity

YOUR CUSTOMERS...

Millions of customers use your digital services--whether cloud, mobile, or IoT. Protect their digital identities and consolidate customer information, so it's easy to create and personalize the customer experience. 

IoT

Their Things...

Cars, drones, street lights, gas pumps, wearables, medical devices...they all have a digital identity. With ForgeRock, you establish who these devices belong to, and decide how and with whom (or what) they interact. 

Privacy

Their Choice.

Protect and respect privacy. With ForgeRock, you can let your customers share data selectively. Ask them what’s okay to share, how, when, and with whom. Put them in charge, and they’ll put their trust in you.

Get Started with the ForgeRock Identity Platform

Manage billions of digital identities on new cloud, mobile, and IoT services, all with one unified platform. Try it out today. 

TRY NOW