Securing the Perimeter

Deploying Identity and Access Management with Free Open Source Software

  • Michael Schwartz
  • Maciej Machulak

Table of contents

  1. Front Matter
    Pages i-xv
  2. Michael Schwartz, Maciej Machulak
    Pages 1-16
  3. Michael Schwartz, Maciej Machulak
    Pages 17-57
  4. Michael Schwartz, Maciej Machulak
    Pages 59-103
  5. Michael Schwartz, Maciej Machulak
    Pages 105-149
  6. Michael Schwartz, Maciej Machulak
    Pages 151-203
  7. Michael Schwartz, Maciej Machulak
    Pages 205-229
  8. Michael Schwartz, Maciej Machulak
    Pages 231-265
  9. Michael Schwartz, Maciej Machulak
    Pages 267-299
  10. Michael Schwartz, Maciej Machulak
    Pages 301-336
  11. Michael Schwartz, Maciej Machulak
    Pages 337-363
  12. Back Matter
    Pages 365-377

About this book


Leverage existing free open source software to build an identity and access management (IAM) platform that can serve your organization for the long term. With the emergence of open standards and open source software, it’s now easier than ever to build and operate your own IAM stack.

The most common culprit of the largest hacks has been bad personal identification. In terms of bang for your buck, effective access control is the best investment you can make. Financially, it’s more valuable to prevent than to detect a security breach. That’s why Identity and Access Management (IAM) is a critical component of an organization’s security infrastructure. In the past, IAM software has been available only from large enterprise software vendors. Commercial IAM offerings are bundled as “suites” because IAM is not just one component. It’s a number of components working together, including web, authentication, authorization, cryptographic, and persistence services. 

Securing the Perimeter documents a recipe to take advantage of open standards to build an enterprise-class IAM service using free open source software. This recipe can be adapted to meet the needs of both small and large organizations. While not a comprehensive guide for every application, this book provides the key concepts and patterns to help administrators and developers leverage a central security infrastructure.

Cloud IAM service providers would have you believe that managing an IAM is too hard. Anything unfamiliar is hard, but with the right road map, it can be mastered. You may find SaaS identity solutions too rigid or too expensive. Or perhaps you don’t like the idea of a third party holding the credentials of your users—the keys to your kingdom. Open source IAM provides an alternative. Take control of your IAM infrastructure if digital services are key to your organization’s success. 

What You’ll Learn:

  • Understand why you should deploy a centralized authentication and policy management infrastructure
  • Use the SAML or Open ID Standards for web or single sign-on, and OAuth for API Access Management
  • Synchronize data from existing identity repositories such as Active Directory
  • Deploy two-factor authentication services


OAuth SAML LDAP OpenID 2FA MFA SSO Federation IAM Mobile Security Identity PKI X.509 U2F FIDO Free Open Source Software Identity and Access Management

Authors and affiliations

  • Michael Schwartz
    • 1
  • Maciej Machulak
    • 2
  1. 1.AustinUSA
  2. 2.LondonUK

Bibliographic information

Industry Sectors
IT & Software
Finance, Business & Banking