Open Access Management (OpenAM) is an access management solution that includes Authentication, SSO, Authorization, Federation, Entitlements, and Web Services Security.
Cross Domain Single Sign On (CDSSO), SAML 2.0, OAuth 2.0 & OpenID Connect ensure that OpenAM integrates easily with legacy, custom, and cloud applications without requiring any modifications. It's a developer-friendly, open-source control solution that allows you to own and protect your user's digital identities.
With OpenAM you can set up complex authentication processes using various authentication methods, such as login and password, OTP, saved cookie, QR authentication, and more... OpenAM also supports third-party identity providers using SAML, OAuth2, NTLM, and Kerberos protocols.
Integrations with OpenIG or OpenAM Policy Agent allow you to set up flexible access policies to your resources. There could be role-based, authentication level-based, or attribute-based and, if you need flexible logic, you can script access policy.
After a single authentication, a user gets access to all resources protected by OpenAM. So, there is no need to authenticate at other services.
OpenAM supports OAuth2/OIDC and SAMLv2 Federation protocols, so OpenAM can act as both Identity and Service Provider.
If you have to extend OpenAM functionality, it is relatively easy to do. OpenAM pluggable architecture allows modification relatively easy. You can implement your custom authentication module, user data source, session data source, post-authentication process logic, and more...
This project is licensed under the Common Development and Distribution License (CDDL).
- OpenAM Distribution Packages (All OS)
- OpenAM Docker Image (All OS)
- OpenIG gateway/reverse proxy/authorization endpoint
- OpenAM Java Policy Agent (All OS)
- OpenAM .Net/Mono Policy Agents (Windows/Linux)
- OpenAM Web Policy Agent
To build OpenAM from source you should use JDK 8 or higher
For Windows users before clone and build run the following command:
git config --system core.longpaths true
git clone https://github.com/OpenIdentityPlatform/OpenAM.git
mvn install -f OpenAM
Add FQDN host name in /etc/hosts
(Windows c:\windows\systems32\drivers\etc\hosts
) file:
127.0.0.1 login.domain.com
Run OpenAM from source:
mvn cargo:run -f OpenAM/openam-server
The next step is then to go to https://login.domain.com:8080/openam where you'll see the OpenAM welcome
- OpenAM Community documentation
- OpenAM Community discussions
- OpenAM Community issues
- OpenAM commercial support
- Sun Access Manager/OpenSSO
- Oracle OpenSSO
- Forgerock OpenAM
Please, make Pull request