Domains / Security and Compliance/ Software System

IAM Platform

Identity and access management platform providing SSO federation, SCIM provisioning, MFA enforcement, and RBAC/ABAC policy evaluation.

Software System Application active hybrid

IAM Platform is a Keycloak-based deployment extended with custom authorization policies. It handles OIDC/SAML federation with enterprise IdPs, SCIM provisioning, and delegates fine-grained authorization decisions to the embedded OPA (Open Policy Agent) policy engine.

Relationships

Composes outgoing 2
Target Element Element Type
IAM API Software Subsystem
Policy Engine Software Subsystem
Realizes outgoing 1
Target Element Element Type
Identity and Access Management Component
Realized by incoming 1
Source Element Element Type
Identity and Access Management Component
Part of incoming 2
Source Element Element Type
IAM API Software Subsystem
Policy Engine Software Subsystem

Architecture Context

Diagrams

Not yet referenced in any diagram

Properties

Type Software System
Layer Application
Domain Security and Compliance
Status active
Sourcing hybrid
Owner Security Team

Additional Metadata

Catalog Id SYS-SEC-001
System Type platform
Vendor Keycloak (self-hosted)
Archimate Type application-component
C4 Type System
Togaf Type Application Component

Meta Model

Business
Organization
Application current
Technology

Actions