Fully-featured access management as-a-service

We know that every customer is different: templates can not be the answer for everything.
For this reason, we will always be committed to address your specific needs

  • Provide control over who accesses any of your Cloud assets, from one central point
  • Synchronize user identities from your AD (or directory) to Evidian IDaaS
  • Invite your partners to securely access your cloud ecosystem with traceability
  • Support Identity Federation: control access to resources while delegating partner identity authentication to an external IdP
  • Provide SSO and MFA to your legacy web applications already available from internet
  • Benefit from Integrated Windows Authentication (IWA) for users in your AD domain,  with Evidian IDaaS

IDaaS-SSO-Single Sign-On

Transparent Single Sign-On - SSO

In today's digital world, each of us expect the same convenience at work that we experience at home.

Evidian IDaaS lets your users authenticate once to transparently access all entitled web resources. While their satisfaction has increased, you also improve overall security level: every suppressed (avoided) password is one less attack vector.

Evidian IDaaS integrates your on-premise and on the cloud applications to your Transparent SSO.


  • SSO for all web resources (Legacy, Modern, Mobile; APIs...)

  • Same user experience across all terminals

  • Less helpdesk calls to improve economics

  • Faster adoption of new applications

  • Predefined application catalog for quicker integration

  • Leverage modern Federation protocol

Integrated strong authentication

Evidian IDaaS includes a comprehensive list of authentication methods

Simple Login/Password     -     Password plus email OTP

Password plus Software OTP     -     Password plus FIDO 2.0/Webauthn

Evidian Authenticator Push     -     Certificates 


Strong Multi-Factor Authentication methods (MFA)
are built as a combinaison of

Personalized and responsive  access portal

Evidian IDaaS adapts to the needs of all organizations, regardless of size, to provide a highly customizable standalone access portal or the capacity to integrate into preexisting corporate portals.

Ready to use access portal encompassing self-service user facilities and links to authorized services, plus a personal list of user preferred applications. All your enterprise valuable web assets are just one click away for your users and always securely accessed.

Evidian IDaaS Connect SDK allows you to seamlessly integrate all available user-facing features to any of your existing webpages such as your intranet, while respecting your graphic guidelines. 

User import & management

User import & management

Three ways to import & synchronize users:

  • Provide an AD/LDAP extract during on-boarding

    a convenient and secure way to quickly start off

  • Implement our provided SCIM REST API

    to integrate in your existing workflows

  • Direct import from the web administration interface

Straightforward interface for user management:

  • Drag and drop CSV-file

    for quick and convenient user import

  • Multi-attributes dynamic search feature

    Easily access to user information

  • Lock/unlock users

    Rapidly react when it's necessary

  • Create, Read, Update and Delete users

    A convenient way to accomplish user management tasks

User Mngt screen

Evidian IDaaS User Management

Web resource protection, the right way

Your resources deserve the best protection. In today’s world, company's IT assets are typically web accessible, yet there is a wide variety of such services: modern web applications, REST APIs, legacy* web resources, mobile apps...

And that is in addition to even more parameters: are there homegrown applications, on-premises or hosted in the cloud? SaaS applications? Are they accessed from a PC, a tablet, an iPhone or a Chromebook?...

Evidian IDaaS is a versatile solution that helps you answer all of these challenges... and more!

*Requires Evidian WAM

Identity federation     -     API protection     -     Next generation authentication

Single Sign-on     -     Connect Toolkit     -     Security


Identity federation to secure your SaaS/Cloud assets

From a simple central point of access to your SaaS business applications to complex scenarios involving suppliers and/or consumers, keep control of your  important assets. 

Evidian IDaaS extensively supports Identity Federation standards, acting as an Identity provider to authenticate internal users toward SaaS apps, as a service provider to let you securely publish your own services or even as an IdP proxy to allow your partners' users access your resources in a trustworthy way. 

API protection for modern IT

REST APIs are the way toward modernization, either to create custom applications or to open your IT to the outer world.

Delegate the burden of protecting your APIs to Evidian IDaaS: it can manage both API authorization with OAuth 2.0 and allow you to securely publish your APIs with access protection, ensuring only the right resources are accessed by the right app at any time.

Next generation authentication

Passwords have been identified for some time as a potential vector of data breach.

Evidian IDaaS comes with a large catalog of embedded authentication methods. From passwords combined with OTPs,  TOTP, or FIDO tokens to next generation authentication means : Push Authentication with Evidian Authenticator mobile app, and up to X509 certificates based authentication. Even third party authentication services (such as Gemalto, RSA, Double Octopus, ...) can be seamlessly integrated.

SSO (Single Sign-on) to SaaS, mobile apps, on-prem or cloud applications

Security is not all about encryption, all security strategies must take into account the human factor. Today, the average internet user possesses more than one hundred online accounts, which means a lot of passwords to remember and a lot of associated risks (password re-use, weak passwords, password sharing, etc...).

Leveraging Evidian universal SSO combined with strong authentication, drastically diminishes your exposed attack surface and makes it much harder to exploit compromised credentials. In the meantime user experience is enhanced : one unique point of access whatever the location, whatever the device, to access all applications and tools.  

Connect Toolkit: seamless and secure digital experience

With the embedded "Connect Toolkit", easily integrate  all user facing functionalities of Evidian IDaaS into any of your existing websites. Users can authenticate, access corporate resources, enroll their smartphone as an authentication mean, check their profile... No modification is required for content and styling of the pages, just add actions to any existing HTML elements. 


IDaaS is built for modern web security. It offers a wide variety of authentication methods, access control to different Web resources, SSO... 

By default, fine tuning of SSL protocol, secured Certificates handling, anti-replay mechanisms, hardened cookies, CORS protection, allows for trust in protecting the information streams with the highest security level. 

No plugin is necessary for Web browsers and no modifications of your existing applications required.

Self-service of IDaaS user accessible features, helps secure behaviors and limits the need for help desk calls. The autonomous user does not need to contact a third party and provide sensitive information to get assistance. This function includes the following:

  • Changing password (for second factor methods)
  • Reseting password, by Q&A, OTP, Push, Certificate...
  • Enrolling and managing authentication methods
  • Accessing profile and updating it according to organization rules

In addition, Evidian IDaaS can be conveniently linked to CASB, Cloud security and Network security as a Service solutions to complement your level of protection.

Cornerstone of a Zero Trust strategy: IDaaS solutions provide a comprehensive set of features to support organizations in attaining a Zero Trust Security model. It prepares organizations to align their IAM with their Cloud strategy, with zero trust in mind.

IDaaS help you with GDPR compliance

To answer the growing needs of our customers for guidance and GDPR-ready software, Atos with the Evidian IAM Suite presents the key aspects and features of our Identity and Access Management products that will empower your organization in a context of strengthened regulation.

While no single technology will by itself ‘solve’ GDPR, Identity and Access Management (IAM) is explicitly or implicitly required at every stage of the compliance process.
This document highlights how IAM solutions answer GDPR requirements related to User Access and Security of Processing (Art. 5 to Art.32).

The Evidian IAM Suite can be integrated to the Atos Continuous Improvement Cycle, among many elements in the wide range of security, monitoring and process improvement tools allowing dealing with the wide ranging impacts of GDPR.

Download our White Paper:Powering GDPR - Identity & Access Management in your compliance journey” to get an insight into what Evidian IAM Suite can bring to your GDPR approach.

Analytics for Evidian IDaaS Access

Optional and complementary, the Analytics module reinforces the Evidian Identity as a Service offer. It collects the audit trails generated by the Evidian IDaaS product, sorts and enriches them in order to generate a synthetic representation while respecting the compliance rules, business security policies and risk management objectives of the business.

Its ergonomic and dynamic web interface provides you with dashboards that allow you to view and analyze events relating to the activity of your users. Thanks to Analytics for IDaaS, you will be able to determine trends, investigate the origin of a problem, assess a level of risk or even meet a regulatory requirement.

IDaaS is part of the Evidian IAM Suite
and integrates perfectly with all its on-premise products

Enterprise Single Sign-On (SSO)

A single authentication for all applications using passwords.

Learn more

Identity Governance and Administration

Control identities and rights to enable business transformation

Learn more

Authentication Manager

Multi-Factor authentication framework for windows.

Learn more


The simplest cluster with zero extra hardware

Learn more

Analytics and Intelligence

Detect Suspicious behaviour and improve governance

Learn more