Akamai Technologies Ltd

Akamai Identity and Access Management Cloud

The Akamai Identity and Access Management (IAM) Cloud (Janrain) provides management, security and activation solutions that enable seamless and safe customer experiences across their digitally connected world, while providing enterprise organizations with deep customer insights. Founded in 2002, Janrain pioneered Customer Identity and Access Management (CIAM).

Features

  • Identity and access management, CIAM (Consumer), IAM (B2E)
  • Registration, Authentication, Single Sign on (SSO), Private Groups, Social Login
  • Access Management (RBAC, ABAC, Scoped Access)
  • Customer Care Portal for customer service and user level access
  • Externalised Access Management (inc PDP, PAP), policy, governance
  • Customer Profile Management In Region
  • Fraud detection, risk analysis, strong auth and threat response
  • Customer Journey Analytics and Customer Experience Optimization
  • Anonymous to Known Analytics to optimize customer journey/conversion
  • Data Integration Platform to ease interoperability and activation

Benefits

  • Enable organizations to understand, engage and activate customer relationships
  • Prevent Fraud, Avoid Risk and protect identities of your consumers
  • Ensure compliance with GDPR and the evolution of privacy regulation
  • Future Proof Cloud Scalability
  • Future Proof Interoperability with other vendors
  • Protect customers while optimising the customer journey
  • Activate customer data to optimize business and consumer value
  • Manage CapEx more effectively with scalable pricing
  • Consent and preference management, supporting down stream systems
  • Cloud directory which is compatible with existing directories

Pricing

£100000 per licence per year

  • Education pricing available

Service documents

Framework

G-Cloud 11

Service ID

2 1 8 4 1 3 7 3 1 2 6 6 0 4 3

Contact

Akamai Technologies Ltd

Mike Havelock

07711 424216

mhaveloc@akamai.com

Service scope

Service constraints
No
System requirements
  • Organizations must have a web or mobile user experience
  • Janrain is platform agnostic

User support

Email or online ticketing support
Email or online ticketing
Support response times
24/7 coverage is provided based on tiered support packages.
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
No
Onsite support
Yes, at extra cost
Support levels
All Technical Support is 24/7 and comes in different variations depending on customer requirement. Each variation has a different response SLA.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Organisations have options when it comes to implementing Akamai Identity Cloud.

We provide technical resources that range from basic assistance to turnkey, white glove services.

Every Akamai Identity Cloud customer receives training, project management and personalized guidance based on a jointly agreed project plan
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
Bulk export services via our API's, SFTP data transer or even bulk upload via CSV.
End-of-contract process
Customer access to the service via the portal is stopped and the service ceases to perform. There are no costs associated with contract ending, unless the customer chooses to renew.

Using the service

Web browser interface
Yes
Using the web interface
Every aspect of our service is configurable via the web interface.
Web interface accessibility standard
None or don’t know
How the web interface is accessible
NA
Web interface accessibility testing
NA
API
Yes
What users can and can't do using the API
Akamai's Customer Identity and Access Management Platform is a comprehensive solution consisting of several components to meet a range of needs, from simplified registration and user engagement to collecting rich demographic data over multiple web properties. All capabilities can be managed, customized and configured via our API's.

In the Akamai Developer Portal outlines more detailed information on the technical capabilities of the platform, step-by-step instructions on how to implement and customize each product, and documentation on the JavaScript and RESTful APIs that are available for configuring your solution

As an API first organization, all features are accessable by API
API automation tools
  • Ansible
  • Chef
  • OpenStack
  • SaltStack
  • Terraform
API documentation
Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • ODF
  • PDF
  • Other
Command line interface
Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface
Most aspects of our service can be managed using the command line interface. There are a few functions which cannot be managed using the command line interface and must instead by managed via our web interface.

Scaling

Scaling available
Yes
Scaling type
Automatic
Independence of resources
Akamai Identity Cloud operates across more than 40 data centers and has been tested by the worlds largest businesses to be performant under the most extreme load testing.

Built on Amazon Cloud and deployed globally with multiple failover mechanisms and multi-tenant architecture, our customers trust Akamai to provide business continuity in the most extreme circumstances.
Usage notifications
Yes
Usage reporting
Email

Analytics

Infrastructure or application metrics
Yes
Metrics types
Other
Other metrics
  • Thousands of data points available based on usage
  • Examples: identity provider, device, customer demographics plus many more
  • All configured and managed through the customer insights dashboard
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
  • Other locations
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least every 6 months
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
Data sanitisation process
Yes
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
No

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
99.95% or better uptime
Rectified based on Support Package
Service Credits
Approach to resilience
Available on request
Outage reporting
Email alerts and public dashboards

Identity and authentication

User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Limited access network (for example PSN)
  • Username or password
  • Other
Other user authentication
Biometrics
Access restrictions in management interfaces and support channels
Documentation available on request
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Devices users manage the service through
Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
User-defined

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Available on request
ISO/IEC 27001 accreditation date
Available on request
What the ISO/IEC 27001 doesn’t cover
Available on request
ISO 28000:2007 certification
No
CSA STAR certification
Yes
CSA STAR accreditation date
Available on request
CSA STAR certification level
Level 2: CSA STAR Attestation
What the CSA STAR doesn’t cover
Available on request
PCI certification
No
Other security certifications
Yes
Any other security certifications
  • HIPAA/HITECH compliance
  • Privacy Shield certification
  • OIDC RP certification
  • SOC 2 Type 2 (Security, Availability Confidentiality) compliance
  • TRUSTe certification

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
Information security policies and processes
ISO, SOC with details available on request

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Documentation available on request.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Documentation available on request.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Documentation available on request.
Incident management type
Supplier-defined controls
Incident management approach
Documentation available on request.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart
Yes
Who implements virtualisation
Third-party
Third-party virtualisation provider
AWS
How shared infrastructure is kept separate
Akamai is experienced at running its own shared infrastructure as well as operating on third party public cloud infrastructure. Akamai adopts best security practices and fully observes the government's guidance in this area.

Energy efficiency

Energy-efficient datacentres
No

Pricing

Price
£100000 per licence per year
Discount for educational organisations
Yes
Free trial available
No

Service documents

Return to top ↑