The Aquera SCIM Gateway Platform is a cloud-based service that provides out-of-the-box connectivity via connectors-as-a-service between your identity access, governance, and privileged identity management platforms and all your applications, databases, directories, devices, and B2B portals, and rapidly adds new connectors on-demand. The platform features multi-purpose gateway services and out-of-the-box connectors for user provisioning/deprovisioning, HR application user onboarding/mastering, delta account aggregation, password synchronization, and privileged account password validation and rotation. The Aquera platform detects account changes across applications and to maximize performance sends only those changes to identity governance platforms for aggregation processing. For applications without API support, Aquera uses robotic automation of the applications’ administrative consoles, which provides connectivity to the full range of applications required.

To satisfy your security needs the platform does not store application credentials, which are stored in the identity platform, and the platform regularly undergoes SOC 2 type 2 audits. The Aquera platform’s delta aggregation capability speeds up the account aggregation time by delivering only the incremental account changes to identity governance platforms, when using Aquera connectors, existing files, or existing JDBC connectors.

Key features include:

  • Out-of-the-box connectors-as-a-service provided, maintained, and supported by Aquera
  • Ability to create, read, update, de-activate or delete user accounts
  • Highly performant, delta account aggregation, which loads only changed accounts, and is applicable to existing or new files, existing JDBC connectors built with identity governance platforms, or Aquera connectors
  • SCIM protocol support for any identity management platform
  • SCIM normalized data structure presented for simplified, consistent aggregation and provisioning logic creation in IAM/IGA platforms
  • Integration with applications via REST-based APIs, SOAP/web service-based APIs, SQL, LDAP, SDKs, FTP, admin console automations, and message queues
  • Orchestration services supporting scheduled imports, event detection or other actions
  • Password synchronization services with self-service password reset and randomized password synchronization for secure web authentication applications
  • Password validation and rotation for managing privileged accounts in cloud and on-premises applications
  • Import of users and attributes from multiple sources
  • No store and forward of user information
  • Credentials stored in identity management platforms
  • Cloud-based service
  • Scale-out architecture