Curity Identity Server
Secure your apps and APIs
Providing secure access to data and services for various types of users across many different channels presents a real challenge. Using the Curity Identity Server, organizations can secure their digital services in configuration and not in code. This helps to avoid lengthy development projects and costly maintenance.
A Unique Combination of IAM and API Security
Scalable Security for digital services
Custom Authentication
Secure and flexible authentication service that can be configured to your specific use cases.
Secure APIs with Tokens
Take security beyond basic OAuth and elevate Trust for access control with customizable Tokens.
One API to Manage all users
Simplify access to customer data repositories with the standardized SCIM API.
How Curity Identity Server Works
Adaptive authentication flows are triggered
Authentication actions are executed
Customizable tokens are issued for verification
See Curity Identity Server in action
Watch demoCurity Architecture
A Modern Infrastructure
The Curity Identity Server was built with close attention to the architecture to ensure it addresses the identity structure of today, as well as prepared for the challenges of tomorrow. It is built on the design principle of separation of concerns, with each sub system serving only its specific purpose. And doing it really well. The effect of this is enhanced security, increased flexibility and true scalability.
Apps and clients
Centralized user authentication for all your websites and apps
Server applications
Unified authentication enables your server applications to access shared APIs.
APIs and microservices
Dynamic OAuth token generation that secure API access.
Customer Services Integrations
A standardized way to manage your users with one API.
CLI
Complete and scriptable Juniper-style Command Line Interface for automation.
Web UI
Web user interface complete with wizards and guides for manual use and initial setup.
XML Config Files
Push out new configurations as XML to your Curity environments.
RESTCONF API
Integrate Curity Identity Server with your CI/CD pipelines using a standards-based REST API.
Kubernetes
Curity is prepared for Kubernetes. Automate deployment, scaling, and management of your Curity cluster with K8s
Docker
Ready-made Docker images are available on Azure Container Registry for stand-alone use or in your Kubernetes pods
Amazon Web Services
Amazon Web Services - Deploy Curity in AWS, directly on EC2 or using EKS with Amazon RDS or your database of choice
Azure
Many Curity customers use Azure as their cloud computing service and often deploy with AKS and Microsoft SQL server
Custom Authentication without Code
The Authentication Service is an advanced authentication multiplexor that can be configured to meet any app or website’s needs. With 25+ ready-made methods and a workflow engine of actions running on login and SSO, the Curity Identity server allows you to authenticate users for API access without custom code.
Token-based Architecture
The Token Service is the cornerstone for securing APIs. It is responsible for issuing tokens (tickets) with information about the caller for access control decisions. To really leverage on OAuth and OpenID Connect for distributed authorization, a flexible Token Service is a necessity.
One API to Manage Users
The User Management Service offers a standardized way to manage users and simplifies access to legacy data sources. You can integrate with any user repository or database, allowing developers to work with JSON over REST, instead of SQL queries and LDAP operations.
Advanced Configuration Management
Curity Identity Server comes with a carrier-grade configuration service, where transaction-based changes, rollbacks, backups can be made of your entire cluster with a single command. The cohesive configuration service provides an easy-to-use Web UI, scriptable Juniper-style CLI, standards-based RESTCONF API and XML config files, built for automation and massive scale.
Deploy on Any Platform
The Curity Identity Server can be deployed in any environment and fits easily into your CI/CD pipelines with its multi-faceted management capabilities. With ready-made Docker images and Kubernetes helm charts, a Curity cluster that auto-scales linearly without inter-node dependencies can be setup in hours.
Solve Multitenancy Identity Challenges without Code
Many SaaS providers have a need for a multitenant identity service for their own customers and their users. The Curity Identity Server’s architecture, empowers you to quickly setup a multitenant cloud-based identity service to solve your SaaS application’s requirements.
Need to go beyond multitenancy? The Curity Identity Server also supports tenant within tenant deployments. Let your tenants create their own tenants.
Implemented multitenancy via configuration without coding
A tenant’s identity services can be shared or isolated across run-time nodes
Databases used for tokens and users can be independent of other tenants' data
Get Started Using Docker
docker run -it -e PASSWORD=<admin_user_password> -p 6749:6749 -p 8443:8443 curity.azurecr.io/curity/idsvrGet Started Using Kubernetes and Helm
helm repo add curity https://curityio.github.io/idsvr-helm/ \
&& helm repo update \
&& helm install --name <release-name> curity/idsvr --set curity.config.password=<admin_user_password>
Use Curity Identity Server for free
The Community Edition is a free version of the Curity Identity Server enabling any organization or individual to secure their APIs and provide a great login experience to users.
Standards and Compliance
Curity Identity Server supports a wide range of identity and security-related standards and has been certified to conform to OpenID Connect and implement a vast number of IETF RFCs. We believe industry standards are of vital importance. They help ensure a high level of security by being designed and vetted by security experts, avoids vendor lock-in, gives a less steep learning curve for new team members and simplifies regulatory compliance.
Use Cases
Curity Identity Server enables organizations to manage identities and secure API-based services in a multitude of scenarios
Large Scale Deployments
Manage large volumes of identities, different types of clients, APIs and microservices in a cloud native environment.
Watch Webinar
Open Banking
Safely expose high-worth data, delivered over financial grade APIs that comply with regulations such as PSD2.
Read Whitepaper
Multi-factor Authentication
Chain any number of authentication methods together to create a strong and user-friendly login experience to your digital services.
Read ArticleThe Curity Identity Server allowed Bisnode to unify their many different services and unique requirements
Bisnode is a leading European data and analytics provider with almost 2,500 employees operating in 18 countries. Bisnode helps companies find and manage their customers throughout the entire lifecycle, pioneering “Smart Data” to enable their users to make smarter business decisions.