Common Services
One Platform to Rule Them All

We believe in a developer-friendly fellowship underpinning everything we do. Our identity services are shared across the entire platform to eliminate typical inefficiencies: no more hours spent reconciling multiple APIs, UIs, logging, documentation, elves and dwarves, what have you.

Download Identity Platform White paper

Our platform was designed from the ground up for telco-grade scale. You’ve got billions of identities? We’ve got massive scale, session-failover, and high availability to match. All you have to decide is what to do with the time that is given to you.

How to Buy

Get our platform

Free Trial

Try our platform

Common Services

Watch webinar

REST Framework

One API to Invoke Them All

Most identity platforms are cobbled together through acquisition. As a result, not only must you use different products, you must also invoke many different APIs to leverage all the various services across the platform. The ForgeRock Identity Platform delivers one common REST API framework across the entire platform to provide a single, common method to invoke any of our identity services. Most importantly, it makes it simple to connect our platform to any digital thing, from mobile devices and cars to set-top boxes and machines.

Developer-friendly and lightweight yet powerful, the REST API framework helps you to eliminate unnecessary identity complexity and increase platform agility.

  • Allows you to use a single API for invoking any ForgeRock Identity Platform service.
  • Enables you to extend identity to new realms such as social, mobile, cloud, and IoT.
  • Helps you meet specific business needs with custom UIs, apps, and pages that are enabled by REST APIs.
  • Mirrors the architecture of the World Wide Web, making it simple for developers to get and post using the HTTP protocol.

Common Audit

One Way to Log Them All

Legacy identity suites and niche components typically have their own unique way of logging data. This approach can be messy and lead to an incomplete picture of what’s happening in your environment. The ForgeRock Identity Platform takes a different approach with a single common auditing framework. Extract and aggregate log data across the entire platform with common audit event handlers and unique IDs so that it can be tracked holistically rather than product by product. Open and extensible, you can leverage audit logging and reporting capabilities for integration with third-party systems including SIEM, email service providers, CRM systems, and marketing automation systems.  

  • Provides a single common auditing service across the platform.
  • Improves interoperability of systems that analyze and store audit data with pluggable audit event handlers.
  • Third-party SIEM and analytics tools including Splunk, ArcSight, FireEye, Palo Alto Networks, and Guardian Analytics can easily consume ForgeRock audit data for increased visibility.
  • Enables you to trace the entire lifecycle of users, devices, things, and service events for better security insight.
  • Includes audit event handlers for CSV files, JDBC connections, JMS, Syslog, and Elasticsearch (part of the ELK stack).

Event Handlers

Find out in four minutes how the ForgeRock Identity Platform supports common audit event handlers for Elasticsearch and JMS.

Common UI

One User Interface to Engage Them All

Dealing with multiple user interfaces can be complex and clunky. It can be difficult, if not impossible, to integrate with existing and new services. The ForgeRock Identity Platform has a single, modern, responsive, common user interface for delivering rich, modular, massively scalable, lightweight identity management services. For the first time, organizations can build on a framework that quickly scales to users, devices, applications, things, and services without the constraints that multiple UIs can bring.

      • Enables organizations to easily take advantage of reusable shared services across the ForgeRock Identity Platform.
      • Simplifies administration efforts with a consistent view to configure and monitor the platform and extends the platform’s capabilities with a similar look and feel.
      • Scales automatically to devices, mobile, tablet, and web thanks to a responsive framework.
      • Creates a common look and feel to improve customer engagement.
      • Integrates corporate branding into any UI.
      • Provides flexible integration with any device or thing.

Common Scripting

One Way to Customize Your Needs

Organizations require tremendous flexibility to meet their needs. The ability to extend the ForgeRock Identity Platform through scripts enables organizations to customize their deployments to their requirements, with fully supported extension points across the entire platform. Platform scripting is available in both JavaScript and Groovy, popular languages with low learning curves. Scripting is non-proprietary, fast to prototype and test, and provides an iterative and agile way to develop custom services. You can now truly deliver customization with confidence while the core engine remains untouched.

      • Allows rapid development of dynamic and complex rules to support difficult use cases with  scriptable authentication and authorization.
      • Provides server side logic, correlation, and linking hooks to manage entire lifecycles of identity data.
      • Provides scriptable handlers to model and maintain gateway relationships.
      • Offers common debugging capabilities which means scripting is portable across the platform.
      • Uses a common language that can be easily modified or created with in-house expertise vs. costly 3rd party developers.

High Availability

Telco Grade Scale For the Masses

Scalability and resiliency are crucial to maintaining an effective identity management system. Application access must be easily accessible and uninterrupted, regardless of how many users are trying to access resources, where the user is located, and what device is being used. The ForgeRock Identity Platform was designed from the ground up to provide telco grade scalability and availability, with the ability to respond to spikes in-demand. By eliminating single points of failure, application uptime requirements can easily meet customer expectations, helping to maintain customer loyalty and drive organizational growth.

          • Make modern web services multi-node and multi-site to ensure customer and employee facing solutions are available 24x7x365 across multiple geo-locations.
          • Prevent a single point of failure with redundant servers, policy agents/connectors, and load balancers.
          • Ensure the user’s session continues uninterrupted and that no user data is lost with session failover.
          • Supports HA deployments with N-way multi-master replication, including data centers with geographic separation for managing failover and disaster recovery.
          • Offers the ability to run unlimited nodes by using load balancers to direct traffic to the available Identity Gateway nodes.
          • Supports cluster configuration out-of-the-box to enable tasks, such as reconciliation, or share loads that act as backup in the event another node becomes unavailable.

Open Standards

Future Proof Your Infrastructure and Your Investment

aNo one wants to spend a lot of time and investment in infrastructure that doesn’t play well with others, creates vendor lock-in, and has the potential to become obsolete. You want a foundation that’s known, tested, and easily available. One that has interoperability with the rest of your business and partner ecosystems. One that provides better protection when integrating with proprietary applications that you have little control over. That’s why you need open standards to build business critical platforms on non-proprietary software without suffering from vendor lock in. Quickly adopt new technology that is widely accessible and flexible to meet the needs of your business without fear of the unknown.

You can build standards in a modular way that supports all kinds of web applications, devices, and things across your identity platform. Core standards and languages leveraged by the ForgeRock Identity Platform include among many others:

          • OAuth2
          • OpenID Connect
          • User-Managed Access (UMA)
          • SAML
          • REST
          • JSON
          • JavaScript
          • Groovy
          • Java
          • SCIM

 Real World: OAuth2 Token Edition

Ever wonder what it’s like to be an OAuth2 Token? Now you can find out!

ForgeRock proudly presents: A Day in the Life of an OAuth2 Token

OAUTH2 Device Flow Example

The ForgeRock Identity Platform

Typical identity products don’t play well with others. These legacy systems are made up of piece parts acquired and duct taped together, with limited functionality and scalability. They were built for thousands of employees, not the millions of identities coming online.

We built the ForgeRock Identity Platform from the ground up, designed from the outset as a unified model to integrate with any of your digital services. We offer end-to-end capability designed to scale into the billions and support you not just now, but years into the future. You get the feeling it was all built to work together, because it was.

How to Buy

Get our platform

Free Trial

Try our platform

Common Services

Watch webinar