top of page

Solutions

We are experts in identity management and help your organization set up an authentication solution that works for the entire business, whether the users are employees/consultants or citizens/partners/retailers.

With our long experience in integrating with a wide range of applications and systems, you can focus on your core business instead of authentication, authorization and access.

automation-bg_edited_edited.jpg

Non-human identities

Fortified ID supports key parts of a non-human identity strategy across both Access and Control, although not in the same cloud-native model as platforms such as Microsoft Entra managed identities.


In Access, non-human identities can be handled through standards-based authentication and authorization for applications, APIs and service-to-service communication, using mechanisms such as OAuth 2.0, OpenID Connect and certificate-based trust. Access can therefore act as the authentication and trust layer for workloads, applications and other machine identities, even though it is not tied to a proprietary resource platform in the way managed identities are tied to Azure resources.

 

In Control, non-human identities can be governed in the same overall identity lifecycle model as human identities, with ownership, provisioning, delegated administration, approvals, auditability and access reviews. This makes it possible to manage service accounts, bots and AI agents as first-class identities rather than as hidden technical accounts.

 

A practical example is a personal AI agent assisting a case worker in Control. Such an agent should be treated as a separate non-human identity linked to a named user, with its own credentials, tightly scoped permissions, clear delegation rules and full audit logging. This preserves accountability while enabling automation.
PKI certificates are a strong fit for authenticating machine identities at runtime, while verifiable credentials can complement this by carrying portable, cryptographically verifiable claims about an application, system or agent across organizational boundaries.
In short, Access provides the authentication and trust layer for non-human identities, while Control provides the governance and lifecycle management layer.

bg2_edited_edited.jpg
non-human.jpg
green-bg.jpg
native-MIM.png

Komplement MIM

Fortified ID Control can be used as a complement to MIM. Fortified ID Control offers a modern interface with configurable flows that can be adapted to the specific needs of the organization. With Fortified ID Control, organizations can implement self-service, delegated administration and password reset flows

Fortified ID modernizes IAM for organizations by adding an API gateway. This creates conditions for supporting organizations in several scenarios.

 

Integrity's API gateway can:

  • act as a bridge for data exchange and data formatting, Cloud-to-cloud and cloud-to-native. e.g. enrichment of Custom Claims Provider in Azure

  • act as backend support in a variety of applications, e.g. identity administration, outsourced configuration, self-registration, account sync, merge and enrich data from many different information sources.

  • support ADFS MFA providers from Fortified ID. Can be run on-premise or in cloud (for example, for service delivery to multiple customers)

Previously, Integrity from Fortified ID can solve strong authentication, single sign-on and an application portal. Of course, adapted for modern (DevOps) operation with option for container delivery, monitoring and traceability.

API gateway

automation-bg_edited.jpg
api_vit.jpg

IdP Broker / Proxy

The number of Identity Providers (IdP's) continues to increase and there is a large variation in what types of use cases that these can implement. In addition to delivering a full-scale IdP,

Fortified ID Integrity can act as a broker/proxy and thereby deliver functionality and meet requirements that existing solutions cannot meet for various reasons.

 

Do you have an IdP that cannot be connected to a certain federation due to connection rules? Fortified ID Integrity is compatible with many federations such as Sweden Connect, Skolfederation, SAMBI, SWAMID, eIDAS. Fortified ID offers two options:

  • You replace your existing IdP with Fortified ID Integrity that meets all connection requirements.

  • You keep your existing IdP but let Fortified ID Integrity act as Proxy/Broker. which becomes an intermediary between your existing IdP and your federations, in a way that you can easily fulfill all connection requirements.

automation-bg_edited.jpg
broker_proxy.jpg

Application Identity Gateway

Fortified ID Application Identity Gateway adds an identity layer to your application or service without you having to program functionality yourself. This solution increases security by adding e-credentials, which ensures that access to your services is both safe and reliable. In addition, the traceability of accounts and permissions is improved, enabling better tracking and auditing of user activities in accordance with regulatory compliance for NIS, GDPR, etc.

AIG.jpg
automation-bg_edited.jpg
integration-adfs.jpg

ADFS adapter

With the Fortified ID ADFS adapter, any MFA method or e-legitiomation can be added as an authentication method to ADFS. The solution is very cost-effective because the systems within the organization that are already connected to ADFS do not need to change anything!

 

The graphical interface, the one that meets users, is fully customizable to be able to align with the organization's graphical profile. It is possible to turn off/on the requirement for MFA or eID authentication for a user based on a number of criteria, for example which system the user is about to log into, if the user is in the office or from home, if the user is connecting from a trusted unit etc

bottom of page