Skip to main content

Features

Supported Protocols

  • OpenID Connect 1.0
  • Security Assertion Markup Language (SAML)

Identity Provisioning

  • Identity Brokering - Authenticate with an external OpenID Connect 1.0.
  • Social Login - Allows users to log in using Google, GitHub, Facebook, Twitter, and other social media platforms.
  • Kerberos Bridge - Automatically authenticate users who are connected to a Kerberos server.

Administration

  • Central management of users, roles, mappings, clients, and configuration via the Admin Management Console.
  • Users can manage their accounts from a central location with the Account Management Console.
  • Admins and users can view and manage sessions using the session management console.

Intelligent Authentication

ID Provider(IAM) provides a wide range of 2FA choices using KOBIL-specific authentication techniques. The solutions can be combined to create MFA solutions.

TypeDescription
KOBIL CookieAn already generated access token is either transmitted to authentication header or transmitted to cookie URL for authentication.
KOBIL Remember Cookie AuthenticatorIt works similar to conditional authenticator, here the flow is executed based on the cookie name and flow type specified in the authenticator config.
KOBIL Email RegistrationAn OTP will be sent to the email which user has entered, on valid OTP, the user email will be added.
KOBIL Register Security QuestionThis authenticator is to select and register the answer for the security questions provided in the auth config.
KOBIL Validate Security QuestionThe main task of this authenticator is to verify the answer for the registered security question.
AST LoginTo perform selected configuration of Actions on AST services.

Intelligent Self Service

  • Device Management
  • Account Management

Custom Service

Customer-specific features can be created using the IDP Custom Service. KOBIL or any third-party developer can create this component. Dedicated IDP functionalities are enabled by the service.

  • OTP Brute Force
  • Risk Bits

Identity Verification

  • Email
  • Magic Link
  • Security Question
  • CAPTCHA
  • Video-Ident
  • Selfie-Ident

App & Services Integration

  • Client adapters include built-in functionality for Cross-Origin Resource Sharing (CORS).
  • Fuse, WildFly, Jetty, JBoss EAP, Tomcat, and other client adapters for managing JavaScript applications
  • OpenID Connect 1.0 Resource Provider library is required.

Customization

  • REST API which can be adapted to your needs.
  • Theme support - Customize all user interface pages to match your apps and brand.
  • Token mappers - Mapping user attributes, roles, and other information to tokens and statements as needed.
  • Service Provider Interfaces (SPI) - A variety of SPIs that allow the server to be customized in various ways. Authentication flows, protocol mappers, federation providers, and so on are all examples of authentication flows.