XtremeCloud Single Sign-On (SSO), as an identity and access management (IAM) platform, provides cross-cloud (CC), Cross-Site (x-site), and Cross-Datacenter (xDC) single sign-on (SSO) capabilities.
XtremeCloud Single Sign-On (SSO) is a multi-cloud application as we define it. This is not the multi-cloud variety where you pick and choose which workloads are going to be run on which CSP. XtremeCloud applications run the full workload on each CSP in a service mesh. Users transactions are routed to a CSP based on the load-balancing configuration. The load can be split amongst the CSPs to have the best Service Level Agreements (SLA) at the best price point.
XtremeCloud SSO provides unparalleled resiliency across major Cloud Service Providers (CSP) like Google Cloud Platform, Microsoft Azure, Oracle Cloud, IBM Cloud, and Amazon Web Services (AWS). For enterprises that have additional hardware capacity, a multi-cloud configuration can be set up to run part of the homogeneous distributed workload on a CSP and part of the workload in-house on an on-premise private cloud. You can even split the operations and support between your on-premise team by having one of our Managed Services Provider (MSP) running XtremeCloud Single Sign-On (SSO) for you. Think of the possibilities of covering any workshift you want by literally outsourcing it on an shift-by-shift basis. No longer is it necessary to staff up three (3) shifts over a seven (7)-day week with entirely in-house staff. Even some of your key personnel can get PTO when they need it and your operations and support efforts are not impacted.
XtremeCloud SSO utilizes key open source components, to provide leading edge functionality in our Cyber SAFE Continuum product series. XtremeCloud Single-Sign-On is provided for a variety of mobile, workstations, and web applications.
Protect all of your Kubernetes applications which can deployed to any Kubernetes-based cluster. XtremeCloud SSO can be deployed in single-tenancy or multi-tenancy mode. OpenID Connect (OIDC) and SAML 2.0 protocols are supported. When securing clients and services the first thing you need to decide is which of the two you are going to use. If you want, you can also choose to secure some with OpenID Connect (OIDC) and others with SAML. With XtremeCloud SSO, you have that flexibility.
To secure clients and services, you are also going to need an adapter or library for the protocol you’ve selected. XtremeCloud SSO comes with its own adapters for selected platforms, but it is also possible to use a generic OIDC Resource Provider or SAML Service Provider (SP) libraries
1.Single-Sign On (SSO) and Single-Sign Out for browser applications.
2.OpenID Connect (OIDC) support.
3.OAuth 2.0 support.
4.SAML2 support.
5.Identity Brokering - Authenticate with external OpenID Connect (OIDC) or SAML Identity Providers.
6.Social Login - Enable login with Google, GitHub, Facebook, Twitter, and other social networks.
7.User Federation - Sync users, or query users attributes, from XtremeCloud Data Grid-ldap , other LDAP servers, and Microsoft Active Directory (AD) servers.
8.Kerberos bridge - Automatically authenticate users that are logged-in to a Kerberos server.
9.Admin Console for central management of users, roles, role mappings, clients and configuration.
10.Account Management console that allows users to centrally manage their account.
11.Theme support - Customize all user facing pages to integrate with your applications and branding.
12.Two-factor Authentication - Support for TOTP/HOTP via Google Authenticator or FreeOTP.
13.Login flows - optional user self-registration, recover password, verify email, require password update, etc.
14.Session management - Admins and users themselves can view and manage user sessions.
15.Token mappers - Map user attributes, roles, etc. how you want into tokens and statements.
16.Not-before revocation policies per realm, application and user.
17.CORS support - Client adapters have built-in support for CORS.
18.Service Provider Interfaces (SPI) - A number of SPIs to enable customizing various aspects of the server. Authentication flows, user federation providers, protocol mappers and many more.
19.Client adapters for JavaScript applications, WildFly, JBoss EAP, Fuse, Tomcat, Jetty, Spring, and more.
20.Supports any platform/language that has an OpenID Connect (OIDC) Resource Provider library or SAML 2.0 Service Provider library.
Details on how to administer this Active-Active multi-cloud cloud-native application and use the SSO service as a Service Provider (SP) or Relying Party (RP) are covered in the XtremeCloud SSO Quick Start Guide.
Integrate Guardian with any Kubernetes-based web application and authenticate and authorize users and client applications without changing a single line of your code.
The Federal Frontier Application Platform is a public sector and private sector DevSecOps-based application development and production run-time solution that is the basis for any organization that wants to optimize and transform themselves in a secure cloud-native ecosystem.
The Federal Frontier Application Platform includes Mirantis Lens. Lens unlocks situational awareness and enables users to easily manage, develop, debug, monitor, and troubleshoot their apps across a fleet of clusters in real time. Provided as a desktop application for MacOS, Windows, and Linux, Lens lets you connect, interact with, and develop against any Kubernetes Clusters deployed by the Cluster API (CAPI)-based Federal Frontier Application Platform.
Realize unparalleled time-to-market or time-to-mission by working with a customer-oriented Eupraxia Labs Professional Services Team to streamline application development, application migration, and the running of legacy applications in an on-premise or cloud-based cloud-native environment. Federal Frontier's Cluster-API (CAPI)-based Management Cluster is provided for containers, virtual machines and bare metal, enabling you to replace multiple silos with unified infrastructure operations for both legacy and cloud-native workloads within the data center, in the cloud, hybrid cloud, or at the edge/tactical edge.
At Federal Frontier's core, within the data center, is the Mirantis Container Cloud (MCC). MCC is a turnkey zero lock-in approach that makes it easy to benefit from the best of open source innovation, with continuously delivered updates, upgrades, and comprehensive infrastructure operations provided throughout your cloud’s lifecycle.
We are seeing clients move away from the traditional enterprise-style gateways towards the more cloud-native API gateways. These more nimble gateways may lack features like GUIs and "drag and drop" components, but they do offer other highly desirable features that resonate in the near term.
Features like Infrastructure-as-Code (IaC) and Kubernetes-style declarative configuration overwhelm the perceived GUI shortcomings. IaC and declarative configuration can be used, by independent cross-functional and product-focused teams, to release and manage services and desired business functionality as part of their typical development workflow.
We can work with you to provide authentication and fine-grained Authorization of microservices with our SAML2 and OIDC-compliant AuthN/AuthZ Identity, Credential, and Access Management (ICAM) platform, XtremeCloud SSO.
Our Business Process Accelerators (BPA) are pre-built Business Process Model and Notation (BPMN)-based processes. BPAs are complete applications that are fully tested and ready for customization and deployment via a CI/CD pipeline.
Additionally, our Business Process Accelerators (BPA) are cloud-native engineered out-of-the-box to be extensible and customizable by your business analysts and full-stack development teams. We provide the CI/CD pipeline and the Kubernetes Helm Charts to rapidly build and deploy your business-ready applications. You will beat your competitors to market and you will stay ahead of them.
The Travel Request Management and Monitoring Business Process Accelerator (BPA) allows organizations to submit, review, and track travel requests.
Align your onboarding process with the corporate strategy of reducing costs through increased efficiency. Your new hires will be ready to go, right from their first day in your organization. Automatically track who is doing what and when - our BPA will do it for you. Manual and labor-intensive paper-based tracking will be in your rear-view mirror.
The DRRA Business Process Accelerator is a process solution that enables organizations to submit, approve, and track document approval requests using document categories which drive standard routings.
Oracle GoldenGate for Big Data streamlines real-time data delivery into the most popular Big Data solutions, including Apache Hadoop, Apache HBase, Apache Hive, Confluent Kafka, NoSQL Databases, Elasticsearch, JDBC, Oracle Cloud, Amazon Web Services, Microsoft Azure Cloud, Google Cloud Platform, and Data Warehouses to facilitate improved insight and timely action.
Organizations are adding public cloud infrastructure to their on-premises virtual and private cloud environments as part of their digital transformation. With the shift to public cloud, the operational expenses are increasing, causing a shift in the balance of IT capital and operational expenses. We help your buyers of public cloud services throughout your organization manage the challenge of cloud costs and utilization.
With a single view of on-premises and public cloud infrastructure expenditures, we will enable you to track and analyze infrastructure costs and utilization, identify wasted spending, and forecast future costs. The ability to easily simulate migrations to the public cloud providers and compare on-premises and public cloud infrastructure costs helps you to run your applications on the most cost-efficient infrastructure.
We will provide you with the user interface to globally load balance your selected multi-cloud service providers and the dashboards to show spend rates on infrastructure and run-time XtremeCloud Applications. Achieve the best Service Level Agreements (SLA) at the best price with the XtremeCloud Cost Controller.
With XtremeCloud Dynamic Rendering and Extensible Application Methodology (DREAM), Eupraxia Labs is offering an ever-evolving vision of delivering a low-code platform that is business-oriented and inclusive of business people and software developers throughout your enterprise. XtremeCloud DREAM is more than a software delivery methodology, it is a combination of software, business process modeling and management, collababorative engagements, and a governance methodology. From modeling in a graphical user interface and rapidly deploying to the executing solution, to embedded workflows in a cloud-native microservice, you will achieve unparalleled productivity and reduced time-to-market. Markets are captured and missions are achieved unlike anything you've ever experienced.
The XtremeCloud DREAM documentation repository is available to any company that has subscribed to the XtremeCloud BPM Suite product or has signed a Professional Services contract with Eupraxia Labs for two (2) weeks or more.