Exostar has launched Managed Access Gateway (MAG), a cloud-based identity hub offering that enables businesses to outsource the external identity management function.
Exostar said that MAG allows businesses to control access their applications and associated data by third-parties, without the need for any on-premise hardware or software. It provides an identity management service in the cloud for partners, while also meeting the security requirements of application owners.
According to Exostar, MAG is built on an identity hub federation model, incorporating federation protocols including WS-Federation and SAML to support web-based access to multiple applications. It supports a variety of authentication methods, from username/password to digital certificates issued after an in-person proofing event.
The MAG service offering extends beyond the core identity hub federation technology. Exostar manages interactions with all partners in the ecosystem, including all initial communications, training, user enrollment and customer care. In addition, application owners can track the status of external user enrollment and leverage Exostar as the single contact point for all customer support, the company said.
The company has upgraded and expanded MAG to include integration with its trading partner manager (TPM), which accesses independent third-party sources like Dun & Bradstreet to gather information about partners, such as socio-economic status or inclusion on denied party lists. MAG supports export control compliance by accounting for attributes such as US person status.
Vijay Takanti, vice president of security and collaboration solutions at Exostar, said: Companies are redefining the roles of their partners, more closely aligning them with the processes, applications, and data that are critical to operations.
“As a result, facilitating external access without compromising security becomes a top priority. Solutions that leverage a cloud-based model that can help connect partner networks, optimise and strengthen application access, and support compliance have been needed, but have heretofore been lacking.status.