Identity and Access Management (IAM)
![iam_hero_600x400](https://cdn.statically.io/img/us.ovhcloud.com/sites/default/files/styles/desktop_full_width/public/2023-04/iam_hero_600x400_transparent.png)
Federated identity
Seamlessly authenticate users by connecting your desired corporate directory, including ADFS, Azure AD, Google Workspace, and Okta, to your OVHcloud Control Panel.
Unified portfolio
OVHcloud IAM offers robust privilege management of your users, groups, and applications across your entire product portfolio including VMware on OVHcloud, Nutanix on OVHcloud BYOL, and OpenStack.
Fine grained policy management
Foster collaboration securely. Set specific conditions to grant users access to mission critical tools, such as their role, responsibilities, type of resources, and more.
Enhanced productivity
IAM is available via OVHcloud API to help boost productivity with automation. Multi-tenancy helps you delegate access to partners while maintaining granular control.
Enhanced productivity
IAM is available via OVHcloud API to help boost productivity with automation. Multi-tenancy helps you delegate access to partners while maintaining granular control.
Available Without Additional Charge
To help keep costs low, the IAM feature is available at no additional cost for all OVHcloud customers.
How it works
![IAM main illustration principles](https://cdn.statically.io/img/us.ovhcloud.com/sites/default/files/styles/large_screens_1x/public/2024-02/iam_main_illustration_principles.png)
Effortlessly identify all users with access to specific OVHcloud resources and any additional conditions required with OVHcloud IAM.
OVHcloud's access management is based on a policy management system with a zero-trust framework, meaning each individual must be identified and authorized by policies that grant users access to specific OVHcloud solutions and features.
Policies contain a list of identities, such as accounts, users, and user groups, a list of resources where the policies are applicable, and a list of actions that the identities are allowed to perform.
Single Sign-On
Choose an identity provider as the single source of trust for your users, enabling them to use a common set of login credentials to access OVHcloud solutions. Leverage SAML 2.0 federation protocol to seamlessly connect your Identity Provider, such as ADFS, Azure AD, Google Workspace, and Okta.
![single-sign-on](https://cdn.statically.io/img/us.ovhcloud.com/sites/default/files/styles/large_screens_1x/public/2023-04/single-sign-on_photo1_600x4002x-100.jpg)
Granular access
Separate access between your resources.
Keep your production environment safe by creating stringent policies that establish a high level of security and continuity for your services while enabling more users to access your test/dev environment.
![separate_access](https://cdn.statically.io/img/us.ovhcloud.com/sites/default/files/styles/large_screens_1x/public/2023-04/separate_access_photo6_600x4002x-100.jpg)
Prevent identity theft and errors
Reduce the risk of identity theft and human error by restricting access to mission critical applications, data, and actions to a limited number of users.
![prevent_unwanted_action](https://cdn.statically.io/img/us.ovhcloud.com/sites/default/files/styles/large_screens_1x/public/2023-04/prevent_unwanted_action_photo4_600x4002x-100.jpg)
Get Started with Identity Access Management
Professional services to help you
FAQ
Why do I need OVHcloud IAM?
OVHcloud IAM helps improve security and enhance team productivity by enabling you to manage granular permissions for users within your organization.
As a result, identity management, identity federation, and access management for all your users and applications become seamless and intuitive on a single management plane.
What is Identity Federation?
Identity Federation enables Single Sign-On (SSO) through OVHcloud solutions via an Identity Provider (IdP), such as ADFS, Azure AD, Google Workspace, or Okta, to log into the OVHcloud Control Panel using the SAML 2.0 federation protocol.
What do I have to do to start using IAM with my OVHcloud solutions?
Start using IAM with your OVHcloud solutions by following our guide. Click here.
What is the protocol used for OVHcloud Identity Federation?
Identity federation supports the SAML 2.0 protocol.
Is OVHcloud IAM a paid service?
No. OVHcloud IAM is available without additional change for all OVHcloud customers.
Does activating IAM change the way I access my existing OVHcloud solutions?
No. The way you access OVHcloud solutions will remain the same unless they are changed with policies.