More Related Content Similar to Webinar: OpenAM 12.0 - New Featurs (20) Webinar: OpenAM 12.0 - New Featurs8. 8
EMPLOYEE FOCUSED
CUSTOMER FOCUSED
customers suppliers Devices Things
employees partners contractors compliance
>1,000,000
<50,000
ENTERPRISE SECURITY PERIMETER
~ PROJECT SIZE
~ PROJECT SIZE
Users and Devices
Users and Devices
Apps
IRM
IAM
9. 9
OpenAM 12 Design Goals
■ Simpler
– Easier to Use
– Faster to deploy
■ Smarter
– Contextually aware
– Richer authorization
– Assist Mobile developers
15. 15
REST STS
■ Token Transformations
Input Output
UNT SAML2
SSO Token SAML2
OpenID Connect SAML2
X.509 SAML2
OpenAM
REST-STS
SAML2OIDC
16. 16
OAuth2/OpenID Connect
■ User-controlled revocation of tokens
■ Social Authentication
■ JWT Profile for OAuth2
■ OIDC as Authorization Subject
■ OAuth2 Scope as Authorization
Conditions
■ OIDC Mobile Profile
OpenAM
REST-STS
OIDC-MP
17. 17
OpenAM 12 by Audience
Users Administrators Developers
Self-service… Contextual scripted authentication Extended REST API set …
Registration Device Identification Users/groups/realms/agents
Password reset Fine-grained authorization policies Sessions
Profile management Powerful new Policy Editor Policies
Trusted devices Export/Import of policies to XACML Token transformations
OAuth2 token revocation Extended Auditing OAuth2 and OpenID Connect
Social authentication Syslog support Serverinfo
Contextual authentication Improved session handling/monitoring OpenID Connect Mobile Profile
XUI CORS Support REST API versioning
New platforms New platforms