KuppingerCole Report
Executive View
By Alexei Balaganski

ForgeRock Identity Gateway

ForgeRock Identity Gateway is a centralized proxy-based gateway enabling secure access and policy enforcement for web applications, APIs, devices and things.

1 Introduction

ForgeRock is a privately held information technology and services vendor headquartered in San Francisco, California, USA. The company was founded in 2010 in Norway by a group of former employees of Sun Microsystems after it was acquired by Oracle to prevent the phasing out of Sun’s identity products. With the focus on developing a unified platform, ForgeRock continued to work on an open source IAM stack based on Sun’s IAM projects, finally achieving the goal of shipping the complete ForgeRock Identity Platform by 2013.

Over the years, the company has grown into one of the leading identity and access management solution vendors with a strong global presence around the world with offices in the USA, UK, Germany, France and Norway, as well as in Singapore and Australia. ForgeRock is one of the very few players in the market that is able to offer a unified platform for managing all types of digital identities - people, devices, applications or smart things – as opposed to a “suite” composed of insufficiently integrated products resulting from multiple acquisitions. Among these, ForgeRock is the only one able to successfully commercialize the open source model, making the complete source code of major releases available for free and earning revenue from subscriptions, maintenance releases and updates, legal indemnification and training. The ForgeRock Trust Network, the company’s partner ecosystem, currently includes over 70 technology partners, system integrators and OEM partners around the world. Naturally, there is also a large developer community around the company’s open source projects.

With all the profound changes the Digital Transformation is bringing to the IT industry in general and Identity and Access Management services in particular, it’s becoming clear that traditional loosely coupled enterprise IAM infrastructures are no longer capable of keeping up with the latest challenges like supporting multiple identity types, securely interacting with the Internet of Things or addressing privacy and consent issues. ForgeRock’s answer to these challenges is their next-generation “Identity Relationship Management” platform, which extends the traditional IAM concepts to the Internet scale, enabling new communications channels with external partners, consumers and IoT devices, and integrating the concept of user-managed access directly into the platform, thus elevating customer trust beyond just compliance and data protection regulations.

Based on open standards and fully available under an open source license, the platform is designed to be modular and flexible, yet integrated and purpose-built. At the platform’s foundation are the ForgeRock Shared Platform Services, which provide a common programming interface, standardized GUI, APIs, scripting, logging and auditing and other important functions, upon which the key IAM solutions are implemented.

The platform comprises the following products: Access Management (OpenAM open source project) for identity federation, strong authentication and user self-service across multiple platforms, devices and channels; Identity Management (OpenIDM) for provisioning and managing digital identities; User-Managed Access (OpenUMA) implementing standards-based privacy and consent; Directory Services (OpenDJ) for consolidating identity data across multiple services and, last but not least, Identity Gateway (OpenIG), which extends centralized identity management and policy enforcement across applications, APIs, devices and smart things.

2 Product Description

ForgeRock Identity Gateway, which is the commercial release built from the open source OpenIG project, is perhaps the most business-critical component ...

Login Get full Access

3 Strengths and Challenges

Designed from the ground up to be modular and flexible, yet integrated and purpose-built, based entirely on open standards and fully available under a ...

Login Get full Access


©2021 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole, founded in 2004, is a global, independent analyst organization headquartered in Europe. We specialize in providing vendor-neutral advice, expertise, thought leadership, and practical relevance in Cybersecurity, Digital Identity & IAM (Identity and Access Management), Cloud Risk and Security, and Artificial Intelligence, as well as for all technologies fostering Digital Transformation. We support companies, corporate users, integrators and software manufacturers in meeting both tactical and strategic challenges and make better decisions for the success of their business. Maintaining a balance between immediate implementation and long-term viability is at the heart of our philosophy.

For further information, please contact clients@kuppingercole.com.