Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
  • CipherTrust Manager
  • CipherTrust Application Data Protection (CADP)
  • CipherTrust Application Key Management (CAKM)
  • CipherTrust Batch Data Transformation (BDT)
  • CipherTrust Cloud Key Management (CCKM)
  • CipherTrust Data Discovery and Classification (DDC)
  • CipherTrust Data Protection Gateway (DPG)
  • CipherTrust Database Protection (CDP)
  • CipherTrust Intelligent Protection (CIP)
  • CipherTrust Integrations
  • CipherTrust Migrations
  • CipherTrust RESTful Data Protection (CRDP)
  • CipherTrust Transparent Encryption (CTE)
  • CipherTrust Transparent Encryption Userspace (CTE-U)
  • CipherTrust Secrets Management (CSM)
  • CipherTrust Vaulted Tokenization (CT-V)
  • CipherTrust Vaultless Tokenization (CT-VL)
  • CTE-Linux
  • CTE-Windows
  • CTE-AIX
  • CTE-K8s
  • CTE-U
  • Crypto Command Center
  • Data Protection on Demand
  • Luna Cloud HSM
  • Luna Network HSM
  • Luna PCIe HSM
  • Luna USB HSM
  • OneWelcome Identity Platform
  • ProtectApp LUKS
  • ProtectServer 2 HSM
  • ProtectServer 3 HSM
  • SafeNet Trusted Access (STA)
  • SafeNet MobilePASS+
  • SafeNet MobilePASS+ for Android
  • SafeNet MobilePASS+ for Chrome
  • SafeNet MobilePASS+ for macOS
  • SafeNet MobilePASS+ for iOS
  • SafeNet MobilePASS+ for WatchOS
  • SafeNet MobilePASS+ for Windows
  • SafeNet Synchronization Agent
  • SafeNet Logging Agent
  • SafeNet Agent for FreeRADIUS
  • SafeNet Agent for NPS
  • SafeNet Agent for Windows Logon
  • SafeNet Authentication Service Private Cloud Edition (SAS PCE)
  • SafeNet Remote Logging Agent
  • SafeNet Keycloak Agent
  • SafeNet IDPrime Virtual (IDPV)
  • SafeNet FIDO Key Manager
  • SafeNet FIDO Key Manager for Android
  • SafeNet FIDO Key Manager for iOS
  • SafeNet FIDO Key Manager for Windows
back

IDAAS core

Getting started with the OneWelcome Identity Platform

search
printsuggest an editpdf paneldownload

Getting started with the OneWelcome Identity Platform

Identity and Access Management (IAM) solutions play a critical role in helping digital-first organizations address the numerous identity-centric challenges of cybersecurity, regulatory compliance, and user experience. Most organizations are likely to have one or more IAM solutions in place, ranging from homegrown custom solutions to off-the-shelf vendor products. These solutions can work either independently or integrated together to deliver the necessary business outcomes. Unfortunately, in many cases, legacy solutions are not able to quickly adapt to meet the dynamic needs of an agile organization.

The Thales OneWelcome Identity Platform is an IAM solution that is specifically focused on securing identities and enhancing the digital journey of external users. An external user can be a customer, a citizen, a business partner, a contractor, or even a temporary or gig worker. As such, the OneWelcome Identity Platform can be more precisely classified as a Customer Identity and Access Management (CIAM) solution. Unlike other CIAM products on the market, the OneWelcome Identity Platform has been purpose-built to support the security and regulatory requirements associated with some of the most demanding industries (such as banking, financial services, and insurance) and geographic regions (such as the EU General Data Protection Regulation (GDPR)).

Organizations leverage the OneWelcome Identity Platform to support a number of mission-critical use cases, including:

  • Provide delegated user management for agencies, business partners, suppliers, and other collaborative networks across multiple industries, such as insurance, finance, capital goods manufacturing, and more.

  • Enable optimized customer journeys for onboarding and accessing digital services with bring-your-own-ID (BYOID), single sign-on, passwordless authentication, progressive profiling, and consent management.

  • Prove compliance and deliver more secure transactions with strong customer authentication (SCA) for banking and other highly regulated industries.

  • Verify and affirm identities to deliver frictionless and secure digital user onboarding and know your customer (KYC) support.

  • Replace homegrown CIAM solutions and consolidate multiple lines of business or brands into a common solution, to optimize costs and resources.

copy link to clipboardCore and identity apps

The OneWelcome Identity Platform is a modular SaaS solution that is designed to integrate into an organization’s existing IAM and IT environment. While the platform has a broad range of technical capabilities to secure and enable all stages of the user digital journey, the modular offering enables you to use as many of these capabilities as needed, and to pay for only what you use.

The OneWelcome Identity Platform offers a robust identity core and provides additional identity apps. These apps give digital identities significant business value, allowing businesses to implement best-in-class online strategies. Selected identity apps can be delivered not only as a full and integrated CIAM service, but can also be used to augment a third-party or home-grown identity platform as part of an identity fabric.

Core and apps Description
IDAAS core The foundation for CIAM provides the identity store and functionality like:
  • Single and multi-factor authentication
  • Single sign-on
  • Federation
  • Coarse-grained authorization
  • User profile management
User journey orchestration This identity app enables your organization to configure various user flows, such as login, registration, and self-service. To speed up onboarding, a library of out-the-box user journeys is included in the customer catalog that contains all possible pre-configured options. Customer journeys outside the catalog (that is, organization-specific journeys) are possible, and require a more customizable approach.
Identity broker This identity app connects multiple external identity providers with third parties. It also supports the new trends of digital wallets and decentralized identities (SSI).
Consent and preference management This identity app enables organizations to manage document consent, attribute consent, and user preferences. All this is crucial for your organization to comply with regional data privacy laws, such as the GDPR, in conjunction with other data protection regulations, such as the CCPA or your organization’s compliance rules.
Delegated user management With this identity app, companies can enable their partners to access online services. By appointing a delegated administrator, companies delegate onboarding and access management policies for partner accounts. This relieves companies of this workload and associated responsibilities, while partners also gain more control and can provide secure and easy access to their employees.
Mobile identity This identity app allows organizations to create an app with bank-grade security and push or swipe approvals, without having to invest in building and maintaining an appropriate security infrastructure.
Externalized authorization This identity app enables organizations and their developers to have dynamic, fine-grained, and policy-driven relationship-infused authorization. Externalized authorization separates policy management from the application lifecycle and delegates access control decisions to an external decision point.

copy link to clipboardSample sites

The OneWelcome Identity platform webpages are responsive. Visit our example sites to see how our pages and UI elements react to different screen sizes and user interactions:

  • InsurGroup is a user interface (UI) for employees of a fictitious company (tenant). It also provides links to the customer-oriented UIs for its various brands:
  • RoadHelp is a UI for a different fictitious company. RoadHelp is a tenant with one brand of the same name.

On this page