Indigo OpenConnect

At the intersection of consumer, mobile and social identities

The proliferation of smart mobile devices and the rapid adoption of the social web are the two most significant and "game-changing” developments of recent times. Many companies have rushed to adopt the mobile platform and social media to better serve their customers.

As a result of the rapid pace of these developments, and the lack of products and tools, IT has overlooked the area of Identity and Access management for the mobile and social space. For instance, for companies that have multiple mobile applications, it is common that there is no Single Sign-On between them, requiring each application to handle authentication, authorization and token management independently.

In a similar vein, companies have not been able to leverage their customer’s social identities in a consistent manner both for the web and the mobile platform. Indigo's OpenConnect addresses these issues with a standards based highly scalable platform that allows companies to provide consistent Mobile Access Management and social identity integration for both mobile and web applications.

Mobile Access Management


Provides both a native shared client application for iOS and Android platforms and a web based application to present a common login interface with consistent and configurable forgotten password flows and device lockout policies.


OpenConnect allows customers to sign in and register using their social identities from providers like Facebook and Twitter. With a stepped authentication approach companies can allow access only to non critical data with Social Login and enforce that the customer steps-up to credential authentication to gain access to critical areas. OpenConnect can also be configured to optionally federate their social identities with their customer identity.


OpenConnect provides single sign on capabilities which allows SSO between native applications and also between native and web applications. OpenConnect's extensions for web SSO products like OpenSSO, OpenAM, OAM allows easy integration with existing web access management deployments.


When using the common native login service on the Android platform, sensitive information can only be accessed by this service and only be accessed by native client applications that have been signed by known certificates. Likewise on the iOS platform, sensitive data is stored in a Keychain only accessible by a restricted pre defined set of applications using a shared bundle ID.

Integration with strong risk based authentication tools like Oracle Adaptive Access Manager allows device fingerprinting and adaptive risk based authentication OpenConnect allows devices to be blacklisted and disabled.


OpenConnect allows web and mobile customers to login using their Social Identities (Facebook, Yahoo, Twitter or Google) and optionally federate with local identities [Gartner Says Half of New Retail Customer Identities Will Be Based on Social Network Identities by 2015]. Use APIs like FB Social Graph API consistently.


OpenConnect provides comprehensive support for current social identity standards, including OpenID Connect 1.0 & OAuth 2.0. It deploys fully functional OpenID Provider (OP) and Relying Party (RP) implementations.


Social logins can be used by both the web and mobile platform. On the web, OpenConnect provides extensions for many of the existing Web Single Sign On products like OpenSSO to create authenticated sessions based on the social identities.