Find out what your peers are saying about Auth0, Ping Identity, Okta and others in Customer Identity and Access Management (CIAM).
Security Monitoring, Blocking, and Fraud Protections
Akamai Identity Cloud continuously monitors our production environments for the state and health of the Akamai Identity Cloud platform. We gather detailed key performance indicator (KPI) metrics on uptime and availability for every service. Abnormalities trigger alerts to the Network Operations Command Center (NOCC) staff, on-call 24/7/365.
Brute Force Attacks (Account Takeovers)
Akamai Identity Cloud offers account-locking functionality to protect against brute force password attempts. After a specific number of failed attempts from a user, Akamai Identity Cloud locks an account. This feature is completely customizable Customers determine when and how to block additional login attempts. In addition, the Akamai Identity Cloud offers CAPTCHA- and SMS-based authentication options. Customers can choose to implement these for step-up authentication at any login attempt threshold.
Advanced Persistent Distributed Attacks
Akamai Identity Cloud has experience in successfully staving off distributed attacks. By proactively monitoring for bots/malicious activity — correlating dozens of custom metrics specific to login and registration — we can block the numerous sets of dynamic IPs that malicious actors spin during an attack.
Through IP-blocking and whitelisting, Akamai Identity Cloud can ensure that access is granted only when authorized. For example, Akamai Identity Cloud can identify IP addresses from specific countries or regions and block them from registering and/or logging in on a per customer choice (geoblocking). It can also block specific lists of IP addresses (e.g., lists of known bad IP addresses and black hat-associated IP addresses). If IP addresses are legitimate but exceptions to standard rules, or if they’ve been erroneously added to blacklists, Akamai Identity Cloud can whitelist them ensuring that IP addresses on this list are always accepted.
Denial-of-Service Attacks
Online Business Systems, Inc., an external third-party penetration testing firm, tested Akamai Identity Cloud’s ability to withstand DoS attacks. Bot mitigation strategies include rate limiting to mitigate bot DoS attacks, reCAPTCHA to mitigate bots that create fake user profiles, and both client- and server-side validation to ensure that all field values are legitimate.
Trend Monitoring
Akamai Identity Cloud employs custom API monitoring on a per-customer basis to establish trends in usage as well as to identify and block abnormal usage patterns. It is proven to successfully identify and mitigate malicious activity on behalf of Akamai Identity Cloud customers. And because each customer is unique, Akamai Identity Cloud can implement alerting and blocking rules that reflect inherent trend differentiations.
Adjusting a customers custom blocking rules is a collaborative process between Akamai Identity Cloud and the customer. Different customers have different risk appetites and risk tolerances, and these affect trade-offs between blocking some legitimate traffic and assuming some costs of fraud. Advanced persistent attacks might involve multiple adjustments of the custom policy engine rules.
Intrusion Detection
OSSEC intrusion detection system automatically reviews logs for suspicious activity on a regular basis. New account creation fraud protections include CAPTCHA- and SMS-based authentication — options that a customer may choose to implement as a step-up authentication protection against scripted account creation attacks. Akamai Identity Cloud proactively monitors for bots/malicious activity by correlating dozens of custom metrics specific to login and registration, as well as by identifying anomalies specific to a customer’s unique traffic patterns.
miniOrange Customer Identity & Access Management (CIAM) platform is a versatile solution for managing customer identities and sculpting fruitful customer experiences over your digital resources or assets. Configure seamless customer authentication experiences with miniOrange CIAM tools like Custom User Login Form, Single Sign-On, Social Login, and Passwordless Authentication. Increase security with Multi-Factor Authentication and protect privacy with user consent management, privacy protection, and self-service. Drive more business growth with Progressive Profiling and User Analytics and Insights. The miniOrange CIAM solution is designed to scale as your customer base grows. Manage bulk users efficiently while providing a smooth experience to each one of them!
miniOrange offers a range of CIAM tools and solutions to secure customer Identities anywhere and everywhere! Here are some of the major features of miniOrange CIAM:
Custom User Login Form (Universal Login): Create customized login pages for your customers that reflect the brand image.
Single Sign-On: Enable your customers to login via a single set of credentials to all your apps.
Social Login: Allow your customers to login hassle-free with their existing social media account credentials.
Passwordless Authentication: Remove weak & stolen password threats by enabling Passwordless Login.
Account Management: Streamline the creation of customer accounts, their access requests, and termination.
Adaptive MFA: Use pre-defined risk factors to validate customer identities in high-risk scenarios.
Identity Brokering: The CIAM platform supports multiple external Identity Providers and different protocols.
Directory Authentication: Manage all identities on-premise or on the cloud with the miniOrange Universal Directory.
User Analytics and Insights: Get analytics on customer behavior & engagement from customer data collected by the CIAM platform.
Pricing Model Description
miniOrange offers competitive pricing in the IAM & CIAM market, making their solution cost-effective for modern enterprises and businesses. Also, no minimum contract amount or order value is required, which differentiates miniOrange from other vendors.
The pay-as-you-go option offers more payment flexibility for companies. miniOrange provides a 30-day free trial to try their platform. This free trial offers full feature access without any restriction and also offers Proof Of Concept or POC, including dedicated support from trained engineers.
No credit card detail is required to start the free trial for using and integrating miniOrange with any IDP, User Store, Protocol, or Application hosted on the Cloud or on-premise. The pricing is customizable and starts from $49/500 user/month.
Reviews from Real Users
“The miniOrange team is very Professional. The Support is Great. Our overall experience with miniOrange CIAM from Initiation till implementation is outstanding.”
Senior Executive, IT Security and Risk Management Team
Education Industry
“The product fulfills our requirement and makes our cloud customer happy with user friendly interface.”
Senior Manager, IT
IT Services Industry
“We needed to implement SSO in short time, and miniOrange support was really responsive to the issues we encountered.”
Manager, IT
IT Services Industry
“miniOrange team is always available and always prompt in addressing any questions about the product”
Manager, Engineering Team
Finance (non-banking) Industry
We monitor all Customer Identity and Access Management (CIAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
