Brief
A unified governance platform for identities and access rights — from onboarding to offboarding, from access requests to periodic certifications. Every decision governed, auditable, and automated.
Who has access to what? At any time. Across every system. Fully auditable.
idpulse
Technology
Spring Modulith, React, TypeScript, Tailwind CSS, PostgreSQL, Redis, Flyway.
OAuth2 via Keycloak, SCIM 2.0, LDAP, REST connectors. Architecture tests enforce clean module boundaries at build time.
100,000
Identities
10,000
Rights
3,000
Approvals/Day
Your Challenge, Our Solution
The larger your organization grows, the harder it becomes to keep track of access rights. Our platform gives you back control.
Employees join and leave, roles shift, systems multiply — and with them the question: who has access to what, and why? Without centralized governance, compliance gaps and security risks are inevitable.
Our IAM platform brings identities, entitlements, and compliance together in one place — automated, transparent, and fully auditable. From onboarding to offboarding, every access decision is governed and traceable.
Governance Without Friction
From identity lifecycle through self-service requests to automated access provisioning — every decision governed, transparent, and traceable.
Identity Lifecycle
Keep track of every identity in your organization — employees, teams, services, and external partners. Flexible attributes and organizational hierarchies map your structure exactly as it is.
Access Profiles
Bundle technical permissions into business-meaningful units that your teams can understand and request. Each profile is assigned an owner and tracked across its full lifecycle.
Self-Service Requests
Your employees request access themselves — with a guided request wizard, multi-step approval chains, and real-time status tracking. Governance runs in the background, not in the way.
Auto-Assign Rules
Grant and revoke access automatically based on identity attributes. The expression-based rule engine with priority ordering and grace periods eliminates manual provisioning.
Compliance You Can Prove
Certification campaigns, separation of duties, and real-time access analytics — so you have an answer for every audit question.
Certification Campaigns
Launch targeted access reviews for SOX, ISO 27001, or regulatory requirements. Configurable review windows and automatic actions on non-response keep the process moving.
Separation of Duties
Prevent toxic access combinations before they happen. Restriction rules detect conflicts in real time — during assignments, requests, and approval workflows.
Effective Access Analytics
Answer the question every auditor asks: who actually has access to what — and why? Real-time calculation with source tracking, bi-temporal history, and trend dashboards.
Delegation & Deputies
Governance workflows keep moving, even when key people are unavailable. Time-bounded deputy delegations with automatic activation and a complete audit trail.
Connected to Your Landscape
Multi-system provisioning, SQL-based reporting, and automated governance tasks — seamlessly integrated into your existing infrastructure.
Multi-System Provisioning
Connect your entire IT landscape via SCIM 2.0, LDAP, REST webhooks, and manual connectors. A central task dashboard with status tracking and retry handling keeps everything in view.
SQL Reporting
Answer any access question yourself — with direct SQL access to read-only views, AI-assisted query suggestions, and one-click export to CSV and Excel.
Job Automation
Automate recurring governance tasks with a visual job builder. Groovy scripting, cron-based scheduling, and live monitoring keep your processes running reliably.
Notifications
Keep every stakeholder informed — via email and in-app notifications for assignments, requests, certifications, and approvals. With a complete notification history.
Built for the Enterprise
Security, compliance, modern architecture, and accessibility — built in from the ground up, not bolted on.
Our platform is built on proven enterprise technology with enforced architectural quality gates. Every endpoint is protected by a default-deny policy, every change captured in an immutable audit log, and every interface designed to meet WCAG AA accessibility standards.
Security First
OAuth2 authentication via Keycloak, fine-grained RBAC with auto-discovered permissions from code annotations, and admin impersonation for secure support scenarios.
Compliance Ready
Immutable, partitioned audit log with a bi-temporal data model. Point-in-time reconstruction for SOX, ISO 27001, and regulatory requirements. Full traceability from business decision to technical enforcement.
Modern Architecture
Spring Modulith with enforced module boundaries, React frontend with TypeScript and Tailwind CSS, PostgreSQL with Flyway migrations. Full i18n support (EN/DE) and WCAG AA-compliant accessibility.