Proven flexibility to meet your most demanding identity and production requirements. Engineered for 24/7/365 uptime, distributed operation and low TCO.
-
Web and device SSO with OpenID Connect
Issue ID tokens to sign users into web, mobile and desktop applications. Devise your own authentication and consent journeys, enjoying full control over the UX.
-
Provision identities
Operate a fully fledged OpenID provider, at the level of assurance required by your applications. Federate social and partner logins, supply verified data for IdA / eKYC.
-
Secure APIs with OAuth 2.0 & 2.1
Protect your web APIs with access tokens, optionally locked with mTLS or DPoP. The entire lifecycle of tokens can be managed, their codecs and introspection customised.
-
Operate with confidence 24/7/365
Clustering for high-availability and servicing multi-million user bases is supported out of the box. 100+ metrics to monitor usage, anomalies and performance in real time.
“Love the simple on-prem license, but can we purchase a hosted plan?”
Essentials offering for a hosted and managed highly-available Connect2id server cluster
User credentials and data remain on your systems, under your direct control
Deploy in a AWS region of your choice
The golden conservative strategy
We serve our customers by delivering continuous improvements, attention to detail and thoughtful curation of technology standards. Along the 4 critical axes of security, reliability, performance and the maintenance of conceptual integrity.
- Banking
- Content Management
- Data Centre
- Education
- eHealth
- eID
- eGovernment
- eKYC
- Fintech
- Gaming
- Manufacturing
- Media
- Mobile Apps
- Research
- Retail
- SaaS
- System Integrators
- Travel
Established and emerging OpenID and OAuth standards explained
Internet standards can hold hidden nuggets of opportunity for your applications and business. To fully benefit from them, you need to get them right.
-
OpenID Federation and the trust chain explained
OpenID Federation and the trust chain explained
Establishing trust at Internet scale
-
OpenID Connect native SSO explained
OpenID Connect native SSO explained
Finally, a UX-friendly login flow for multi-app vendors
-
OpenID Connect Identity Assurance / eKYC
OpenID Connect Identity Assurance / eKYC
The verified identities that the digital economy needs
-
OAuth 2.1 explained
OAuth 2.1 explained
New baseline security and interoperability for OAuth
Long-term open source
Since 2012, two key components of the Connect2id server have been developed and maintained as open source, benefiting 1000s of projects and programmers.
Users
Apache Camel
Apache Hive
Apache IoTDB
Atlassian
CAS
Cloud Foundry
Eclipse
GlassFish
Gravitee
IBM
KeyCloak
Mastercard
Micronaut
Microsoft Azure
Okta
OpenBanking
Pac4j
Snowflake
Spring Security
Stripe
Vaadin
VMWare
WildFly
XWiki
-
Nimbus JOSE+JWT
The leading Java and Android library for JSON Web Tokens (JWT). Supports all standard signature (JWS) and encryption (JWE) algorithms as well as recent developments such as secp256k1, ECDH-1PU and XC20P.
-
86.4%
-
A
-
0
-
-
Nimbus OAuth 2.0 / OpenID Connect SDK
Comprehensive Java SDK for OAuth 2.0 and OpenID Connect applications. Covers over 30 IETF and OIDF specifications and extensions, including ground-breaking OpenID Federation for post-X.509 trust infrastructure.
-
90.0%
-
A
-
0
-
Blog
-
Connect2id server 16.0 rolls out device SSO for mobile and desktop applications
Connect2id server 16.0 rolls out device SSO for mobile and desktop applications
-
Connect2id server 15.9
Connect2id server 15.9
-
Connect2id server 15.8
Connect2id server 15.8
-
Connect2id server 15.7.1
Connect2id server 15.7.1
Upcoming events
-
Reyjkavik, Iceland
OAuth Security Workshop 2025
OAuth Security Workshop 2025
Join us at OSW #10 to learn about the latest standards in development and share your thoughts and ideas. Hot topics will likely include OpenID Federation, the EUDI wallet, device SSO, and first-party app integration.