At ForgeRock we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries.
โAll-in-oneโ access management solution that includes Authentication, SSO, Authorization, Federation, Entitlements and Web Services Security.
REST & LDAP Directory, including a high performance, highly available, secure directory server, built-in data replication, client tools, and an LDAP SDK.
Centralized, simple management and synchronization of identity for user, devices and things. High flexibility to fit almost any use case and workflow.
High-performance reverse proxy with specialized session management and credential replay functionality.
OpenICF
ICF connectors provide a consistent layer between target resources and applications and expose a set of programming functions for the full lifecycle of an identity.
OpenUMA
OpenUMA aims to add support for User-Managed Access (UMA), a protocol that enables an individual to control the authorization of data sharing and service access made by others.
Latest Activity
J_S started the topic Users unable to self-register in the forum OpenAM 3 hours, 4 minutes ago
I’m using Active Directory as a users datastore. The problem is following: when the user who wants to self-register follows the link from the registration email, he is unable to complete registration. The error is “user already exists” – I guess there is only one error message for all problems. In the debug file IdRepo I see the…[Read more]
tmschlot replied to the topic OpenID Connect authorization endpoint yields server_error in the forum OpenAM 3 hours, 18 minutes ago
That works! Thanks!
Scott Heger replied to the topic OpenID Connect authorization endpoint yields server_error in the forum OpenAM 3 hours, 33 minutes ago
In your OAuth 2.0/OpenID Connect Client, how do you have your Scope(s) defined? Is it just a list of attributes or do you include a description after each attribute name? Try adding in the following to your Scope(s) and see what shows up on the consent screen:
email|Read Email Address
It should show the text “Read Email Address” as what the…[Read more]