Trusted by market leaders in Uzbekistan
A unified platform for access management and authentication across corporate systems. SSO, multi-factor authentication, and centralized access control.
Trusted by market leaders in Uzbekistan
One login for 1C, ERP, CRM, email, portals, and internal services. Employees sign in once and work without re-authentication.
Protection against password compromise. Even if a password is stolen, access is impossible without the second factor.
Revoke all of an employee's access from a single console. A departing employee loses access to every system at once, instead of retaining it in some of them.
Authentication log: which user, when, from where, and from which device. Ready-to-use data for internal audit.
The platform is deployed in certified Tier III data centers in Uzbekistan. An active-active configuration with automatic failover ensures uninterrupted authentication. All data — accounts, logs, policies, tokens — remains within Uzbekistan. Deployment on the customer's own infrastructure is also possible.
Authentication for web applications and services based on OpenID Connect, OAuth 2.0, and SAML 2.0. One sign-in grants access to all connected systems.
Sign-in confirmation via a mobile app (TOTP). Selective policies for critical systems.
Works on top of your existing Active Directory without replacing the infrastructure. Employees sign in with their current accounts, with synchronization of users and groups.
Create, change roles, block, and delete from a single console. Role-based access control (RBAC) at the organization, application, and resource level.
Complete sign-in history with export to SIEM systems. An administrative action log: changes to roles, policies, and configurations.
Self-service password reset and second-factor enrollment without contacting IT. Profile and contact data management — reducing the support load and speeding up onboarding.
Fixed price per user per month. From 300 users, in steps of 100.
Active Directory handles access to Windows infrastructure and file resources. IAM adds what AD lacks — single sign-on for web applications and cloud services, multi-factor authentication, a centralized sign-in log, and support for modern OpenID Connect and SAML protocols. IAM works on top of AD, and employees sign in with their existing accounts.
The platform is built on Keycloak, an enterprise-grade open-source solution. Uzcloud takes care of operations, security updates, and support. You get a managed service, not raw open source.
Hosting in an Uzcloud data center — from 3–5 business days, including the integration of 2–3 applications. On-prem with AD federation — 2–4 weeks, depending on the number of systems to integrate. For users, only the sign-in page changes.
Any application that supports OpenID Connect, OAuth 2.0, or SAML 2.0 connects without any changes on the platform side. For applications that don't support standard protocols, integration via a reverse proxy is possible.
Configuration, users, roles, and clients are exported via a standard API in JSON format. Keycloak is an open-source project, so an organization can continue operating it independently. The data remains the customer's property.
In certified Tier III data centers in Uzbekistan or on the customer's own infrastructure (on-prem). Compliance with ZRU-547 "On Personal Data".
Get a free assessment of your current authentication system and a cost estimate tailored to your organization.
