aPersona Identity

identity reimagined

Announcing aPersona Identity

aPersona Identity (aPi) is a new private cloud identity platform that rides on top of AWS serverless infrastructure. aPi installs in minutes and is resilient, easy to operate and maintain, and is scalable to over one million users.

aPersona Identity offers these benefits:

  • Complete Solution Unlike our competition, aPi comes with everything built-in. There are no “extra features” you need to purchase to have enterprise capability.

  • Centralized User Management Instead of maintaining separate user accounts across dozens of applications, you can use aPi’s Identity Service Manager to manage all identities from one pane of glass. When someone joins or leaves your organization, you can provision or revoke access to all systems at once.

  • Enhanced Security aPi’s Adaptive Security Manager is the most powerful identity platform in the market. It provides SSO, adaptive MFA with passwordless support, and advanced threat detection & response.

  • Compliance and Governance aPi provides detailed audit trails showing who accessed what and when. aPi also enables role-based access control, ensuring employees only see data relevant to their job functions. This helps meet regulatory requirements like SOX, HIPAA, or GDPR.

  • Cost and Efficiency aPi installs in minutes and handles software updates, security patches, scaling, and maintenance - while often costing less than building internal solutions.

  • Scalability and Flexibility As your organization grows and changes, aPi can quickly integrate new services. aPi supports modern protocols like SAML and OAuth, making it easier to connect with virtually any business application. And aPi scales to over a million users.

  • Improved User Experience Password resets, access requests, and more can usually be handled through aPi’s self-service portals.

  • Affordable aPi’s per user pricing is from 50 to 75 percent less than other identity offerings.

Affordable private cloud identity in your AWS account.

aPersona Identity is the right solution for you if you:

  • Have been considering various cloud identity platforms and found they are not affordable

  • Have found that AWS Cognito requires additional development and coding to meet your particular use cases

  • Would prefer to house identity off-premises, but can’t move into a public “shared” platform due to security concerns

  • Are looking for an identity platform with fully automated identity threat detection and response capabilities.

What is aPersona Identity?

aPI is built around four key components, which leverage various AWS infrastructure services.

  • Identity Service Manager

  • Adaptive Security Manager

  • End-User Login Services

  • End-User Service Provider Portal

    The two end-user components can be branded. (Branding is illustrated below using a demo company, WeaveAI.)

aPersona Identity Service Manager

Manage all of your users, user settings, security groups, OIDC and SAML service providers, and branding settings – all on a single pane of glass.

This component is built on top of AWS Cognito.

Adaptive Security Manager:

At the heart of aPi, is aPersona’s Adaptive Security Manager. Login policies are set by security groups and easy to setup and manage. Each policy includes its own set of setting that include: Country Fencing, Active Threat Actor Fencing, MITM detection, Device Forensics, ISP/GEO, Specific Geo, login behaviors, and tunable Time-To-Live (TTL) parameters. aPersona secured logins are easy, friction free with passwordless capability. For details click here.

Built-in Identity Threat Detection and Response (IDTR):

ASM has Identity Threat Detection and Response built-in. aPersona’s ASM actively monitors failed login attempt velocities from multiple perspectives.

  • Number of failed logins due to failed MFA challenges.

  • Number of attempted logins from unauthorized countries.

  • Number of attempted logins from known threat locations.

  • Total number of any of the above failures.

When a threat is detected, ASM automatically:

  1. Pushes the user into a threat state.

  2. ASM sets the Adaptive setting for the user to Challenge “always”,

  3. Resets the user’s password.

  4. Informs the user of the actions taken, and explains that they will need to reset their password on their next login.

  5. Once the user has reset their password, aPI automatically lifts the user’s threat state and resets their MFA setting in keeping with the established policy.

End-User Login, Self-Service, and Service Provider Applications:

Registration, login, and password reset

Self-Service - Update Profile/MFA Settings

Service Provider Portal/Landing Zone

Interested in tying aPersona Identity?

Click Here for installation instructions.