Cobalt is a multi-tenant identity platform that can be installed on-premises, in the cloud, or spanning on-prem and multiple clouds. It is built with a modern microservice architecture and ships as a set of Docker containers. It provides a full suite of IAM functions including authentication, single sign-on, fine-grained authorization (both RBAC and ABAC), fine-grained auditing, and synchronization and provisioning. Cobalt features:

• Identity provisioning - Cobalt includes a synchronization engine which provides a quick and easy way for your customers to migrate and synchronize on-premises identities to your online service.
• Directory - Cobalt provides a robust and secure identity store for your application with a modern REST API. Integrated policy-based access controls provide complete control over who can access the identity data.
• Multi-tenancy - Cobalt is designed for multi-tenancy. Setting up new tenants and securely segregating tenant data is quick and easy. You can configure features on a tenant-by-tenant basis.
• Authentication - Cobalt supports local username and password authentication, as well as single sign-on to multiple applications using OpenID Connect. It also supports multi-factor authentication and social login. In addition Cobalt can operate in a federated environment, consuming authentication tokens from other cloud or on-premises identity management systems that support SAML or identities from your customers on-premises Active Directory. And it can allow third party applications to use your service as a federated identity provider.
• Application access control - Cobalt allows you to externalize application authorization decisions. Access control policies, decisions and the decision making logic that underpin them are all handled by our XACML v3.0 policy-based authorization server, reducing the footprint and complexity of your application.
• Scale out, performance, efficiency and geo-redundancy - Cobalt provides robust replication mechanisms to support high availability and geo-redundancy, whilst the load balancing front end ensures optimal performance and efficiency. And you control where your identity data is located, to bring it closer to your services for increased performance, or to meet the data sovereignty requirements of your customers.
• Change notification and workflow - Cobalt allows subscriber applications to keep track of changes in the cloud directory via AMQP- or HTTP-based services. It also provides workflow capabilities, meaning that changes in the cloud directory can be used to drive changes in other systems.
• Audit - Cobalt integrates with Splunk or DataDog to provide comprehensive auditing for all your analytics and compliance requirements.

Find out more about Cobalt Cloud Identity Components from ViewDS today!