- About Us
Many organisations, either by choice or out of necessity, use a mix of on-premise and cloud-based applications. These hybrid landscapes demand a thorough IAM approach.
iWelcome integrates with both ends to ensure a frictionless Single Sign-on experience across all applications. Your local directory can be leveraged for SSO to cloud applications, as well as for immediate blocking of users. So your hybrid environment stays connected and protected at all times.
With iWelcome's B2E IAM solutions, organisations can easily automate the on- and offboarding of new employees and assign them to groups. Delegation is supported on several levels; at every level a user manager can be assigned the role of delegated admin.
Once onboarded, employees are provided with 24/7 Self-Service functionality to view and manage their identity information, perform password resets and request additional access. iWelcome can also be integrated with already available workflow systems.
Single Sign-on is a quick and convenient way to log in to many different applications simultaneously. At the same time it has higher inherent security risks, so it should always be combined with an additional factor of authentication.
iWelcome offers different possibilities, where the aim is to combine the ease of use of SSO while meeting the organisation's security standards with the right level of MFA. While today a One Time Password (OTP) is still frequently used, more user friendly push-swipe via a customer branded App is also supported.
On top of their internal workforce, most organisations also need to give access to certain systems and applications to extended workforce, such as freelancers, consultants, and vendors.
While internal users are usually managed in an existing directory, iWelcome's cloud directory is the ideal place to register, manage and authenticate your extended workforce. You can easily add guest accounts, federate with trusted partners, and use our advanced iWelcome RITM module to manage delegated access for your business partners using roles and attributes.
iWelcome’s user-service functionality enables employees to access and change profile information and data attributes, add different types of federations, request additional access, do password resets, give or withdraw consent, and much more. All 24/7.
User Self Service empowers the employees to manage everything around their identity. It can be offered via iWelcome's white-label portals and/or via RESTful API integrations with the
The key to being successful is to offer frictionless user experiences with the right levels of authentication.
iWelcome offers the following capabilities:
iWelcome offers multi-level user management functionality that can be used to add users and groups and to assign users to groups. Delegation of user management is supported on several levels, where at every level a user manager can be assigned the role of delegated admin.
Among others, the following scenarios are supported:
To facilitate its clients’ customer care management, iWelcome offers a Service Desk application that is tailor-made for customer care and service desk operating teams. It provides these teams with all of the functionality needed to effectively help (end-)users with any access-related issues that may arise. The application is highly scalable as it is designed for serving large enterprises serving millions of users.
Provisioning refers to the creation, maintenance and deactivation of user objects and user attributes over multiple systems and applications allowing these to interact with business logic.
The iWelcome platform provisions and de-provisions’ user accounts and attributes from multiple source systems (e.g. CRM, HR or any other identity stores like Active Directory, Windows Azure Active Directory, Identity Management Systems, and/or Master Data Management) and/or LDAP directories to business applications (relying parties). Provisioning of groups can be arranged via both push and pull mechanisms.
An interesting B2E IAM case is when