| Zero-knowledge encryption |
Idemeum cloud is encrypted with your own private encryption keys, which means we do not see your passwords, and if our cloud gets compromised, no passwords will be exposed. |
| Just-in-time account creation |
Connect Entra ID tenants with oAuth and enable JIT Entra accounts with assigned roles and specified duration. |
| Zero-standing privilege |
Idemeum allows technicians to request Entra ID accounts and disables these accounts after a specified period of time. |
| Auto password rotation |
Idemeum will rotate admin accounts passwords every time technician makes a request. |
| Audit logs |
Detailed audit logs are captured and maintained in the cloud (account requested, accessed, disabled). |
| MFA OTP support |
Technicians can store OTP codes for JIT Entra accounts. |
| Autofill browser extension |
Idemeum offers browser extension to seamlessly autofill credentials and OTP codes when technicians access customer Entra tenants. |
| Granular role control |
JIT Entra accounts can be configured to use roles when requested. You can define various technician groups and assign different roles when technicians request Entra ID accounts. |