About About
- Excellence
- Open Source
- Team
- Case History
- Partners
Solutions Solutions
- Education
  
  A complete and tested solution for the world of Education
- Healthcare
  
  A complete and tested solution for the world of Healthcare
- PA
  
  A complete and tested solution for the world of Public Administration
- Financial
  
  A complete and proven solution for the word of Finance
- Tailored
  
  A completely customized and proven solution for your needs
Develop Develop
Blog
Support
Contacts Contacts

A complete and reliable solution fully customized on your needs

Centralized
management

From a single console you can manage the full lifecycle of accounts owned by employees, customers, suppliers and visitors, with control over access permissions to all resources owned by the organization.

Authoritative
systems synchronization

The process of user enablement will not be subject to manual actions, pointlessly long and tedious. With our solution all the data from authoritative systems (company HR, for example) will be automatically distributed across the target applications according to specific business rules, so that each user is operational in the shortest time possible.

Automated
provisioning

Creating, disabling and optionally removing user accounts onto various systems as Active Directory, LDAPv3 systems, time-tracking, physical access management devices, etc. will not be requiring manual actions, subject to inevitable human errors. With our solution it will be possible to automate such operations by simply defininig specific business rules that appropriate software components will enforce.

Email box and
home directory management

Managing email boxes will not be an issue any more. Create, disable and any possible operation including removal could be delegated to appropriate automated tasks provided by the system to support the onerous management activities erogated day by day by IT infrastructure's staff.

Permissions

Finding and defining access permissions to resources is often a long, difficult process. Thanks to our solution it will be possible to define once for all the specific business rules to process user roles and to automatically define access permissions to logic and physical resources as labs, parking areas and libraries.

Single Sign-On
Access

Managing credentials and permissions is becoming increasingly difficult due to the proliferation of new applications. Our solution allows to configure, in a single point, access control in order to allow the validation of the most different types of user credentials, and single sign-on access to the various web applications available.

Domain SSO

If a Microsoft® domain is present, it will be possible to allow all domain users to access web applications in the company intranet with no need to provide additional credentials, once domain authentication has been performed.

Federation

Adopting our solution quickly allows, thanks to supported standards as OpenID Connect, OAuth 2.0 and SAML 2.0, to federate with other organizations in order to provide services to external users pertaining to organizations with which a reciprocal trusted relationship exists.

Discover all
other features

Self-management and approval

With purpose of simplifying user lifecycle management, but especially to comply with privacy regulations (as GDPR), our solutions allows user to self-manage their own personal data, preserving the possibility to submit to approval each change configured as particularly relevant.
Password reset and update

User credential management is always an expensive and very unrewarding activity. It is now possible to let users autonomously reset their own password in order to restore access to services they are allowed to.
Physical access

Today our solution gives the chance to control from a single point all accesses to both logical and physical resources as parking areas, labs, reserved / danger areas, and libraries. This control is enforced through generation and propagation of specific access rules onto hardware and software systems responsible for such checks.
Credential generation

With our solution it is possible to generate and assign to users logical credentials (as traditional username and password) but also physical credentials as RFID tags. The system could be in fact configured to remotely interact with hardware and software systems for tag issuance with purpose of centrally manage whatever credential type.

Want to see
the software
in action?

Try our demo and discover how easy identity and access management can be

Access to the base demo
we have prepared for you.

Contact one of our consultants and obtain a demo designed for your needs.
You will be guided by a developer to quickly understand product capabilities, or you could ask for tailored features.

Demo request

We have solved complex problems in a simple way

Read the stories of who did already choose Tirasa for digital identities

ASL CN1

Healthcare

Tirasa provided a project for ASL CN1 to improve access management and identity management in the healthcare sector. The implemented solution was designed to manage access for about 8000 users, including doctors, healthcare operators, technicians, administration staff, and external visitors, providing them with access rights or restrictions depending on their identities.

With the proposed solution, ASL CN1 has achieved a scalable, robust and secure authentication and identity management system that meets the needs of thousands of users.

Azienda ULSS 6 EUGANEA

Healthcare

The overall goal is to renew and standardize user management and the whole process of authorization for IT services.

The solution is based on Apache Syncope with the support of Tirasa for product implementations and customizations.

Esercito Italiano

The Italian Army, through its department dedicated to management, development and security of network and system / service infrastructures, needs to manage thousands of users on heterogeneous sources as Oracle databases, LDAP, Zimbra and Active Directory: the typical scenario which an Identity Management system should rule.

The Open Source selection resulted in Apache Syncope and Tirasa, which provided ts activities to support the Army staff in building the best IdM system possible, for their own specific needs.

Gordon Food Service

Tailored

Tirasa has joined the IDaaS (Identity as a Service) project at Gordon Food Service after an initial phase where access policy enforcement via entitlements was already implemented through Okta. It centralized authentication and authorization features for all company applications, about 400,000 users.

Being aware of how fundamental it is to manage identities and user permissions on applications at the core of our infrastructure, we have started a long-running process to rebuild our approach on top of Cloud Computing and best-of-breed software components, with help by Tirasa to streamline Apache Syncope. (Team Lead at Gordon Food Service)

Istituto Zooprofilattico Sperimentale dell'Abruzzo e del Molise "Giuseppe Caporale"

Distributed on around 20 web applications, the Institute makes its IT services available to several of these internal users but especially to tens of thousands of externals which daily operate on them. With the intention of renewing and standardizing its services, IZSAM has recently highlighted the following specific needs.

After a PoC built by Tirasa and based on Apereo CAS and Apache Syncope, the Institute decided to proceed on this path by engaging Tirasa itself to realize the whole infrastructure.

iWelcome

Tailored

Digital transformation is the key word in today’s businesses. Identity Management is a pivotal element of this transformation, however traditional IAM does not suffice. iWelcome’s Identity & Access Management as a service, provides all the capabilities for organizations to interact with their employees, being inside or outside the organization, towards both internal and cloud applications.

Provisioning is involved with managing the internal data sources and external via specific connectors for representation of users, groups and attributes. This component often needs to be tailored to meet the requirements of a specific deployment. The enterprise support of Tirasa, gave us the manageability, scalability and flexibility to connect and protect millions of consumers at enterprise customers

Ministry of Infrastructure and Transport

In 2021, the Directorate-General for Digitalization of the Ministry of Infrastructure and Transport has decided to update its infrastructure for accessing IT services by integrating it with strong authentication systems based on Digital Identity in order to further improve the technical security level and to avoid any possible risk of attacks or negligence deriving, for example, from the presence of obsolete components. With the support of Tir...

The authentication infrastructure based on Apache Syncope allows dynamic management and continuous monitoring of access permissions to the application services offered by the Ministry.

Nivo1

Tailored

AP Express by Nivo1 is a SaaS platform that provides accounts payable automation, and has experienced significant growth in its customer base, as well as application features. Nivo1 recently embarked on an important enhancement to AP Express: allow customers to authenticate users with their internal identity services.

Tirasa built for Nivo1 a full-blown, integrated, IAM platform based on the Open Source tools as Apache Syncope and Apereo CAS, granting full control, on customer base, to both user lifecycle and differentiated authentication and authorization. This combination of tools gives Nivo1 a distinct competitive advantage.

Ospedali Riuniti di Ancona

Healthcare

The ongoing push towards administrative and clinic processes' improvement caused a deep review of pre-existing users and access management. In particular, the need of centralized authentication and authorization mechanisms emerged.

Currently the whole infrastructure, based on Apache Syncope, manages about 5.000 users, periodically synchronized with HR.

PlainID

Tailored

PlainID is the go-to Authorization solution, securing digital assets with one unified policy based authorization platform. PlainID provides IAM teams with a simple and intuitive means to control their organization’s entire authorization process.

We choose Apache Syncope to carry out the provisioning and account management role as part of our authorization platform, due to its simplicity and flexible adoption to the product needs. Another important consideration was the knowledge and excellent support provided by the Tirasa team

PTC

Tailored

PTC Vuforia is the world’s leading augmented reality platform used by over 200K users worldwide. Vuforia’s Identity Management System was moved from a proprietary solution to one built using Apache Syncope. Apache Syncope was chosen as the Identity Management platform because of the simplicity and flexibility of its REST API and also for its support to import users from various sources.

Tirasa provided timely support and always followed up to ensure that all issues were resolved to satisfaction.

Stichting Bibliotheek.nl

Education

One of the projects was implementing a centralized identity and access management infrastructure. The IAM infrastructure aims to hold all users of the national library in the Netherlands, fed by a continuous feed from the local libraries. This way, all Dutch library members can authenticate and use digital services connected to the IAM infrastructure.

Stichting Bibliotheek.nl is very content with Apache Syncope as a product and intends to extend its services based on it.

SURFnet

Education

SURFnet’s mission is to improve higher education and research by promoting, developing, and operating a trusted, connecting ICT infrastructure that facilitates optimum use of the possibilities offered by ICT.

SURFnet is currently planning how to include Syncope it in its identity management and collaboration middleware for provisioning / deprovisioning needs.

SWM

The Syncope-based solution is initially used in mobile ticketing for public transport customers. Among others, it provides functionality for self-registration, login, password reset, and user suspend/reactivate. The user data is synchronized with other backend systems.

SWM is very satisfied with both the community and the commercial support of Tirasa.

University of Helsinki

Education

Identity and access management is particularly difficult in the university environment because many users have two or more roles. For instance, many students who are close to graduating are also employed by their university departments. In the academic world, many employees have temporary contracts or their work is funded through grants. Because of these factors, it is important that the life-cycle management of identities is not made too aggr...

We have had a few years to get to know Apache Syncope and have gained some in-depth knowledge of its use. For this, the support provided by Tirasa has been a vital aid. We have received help in the form of, for instance, code examples providing a preview of the implementation, as well as solutions to configuration problems and quick fixes to any errors we have discovered.

University of Pavia

Education

The first engagement for Tirasa was a feasibility study about a IAM solution that, besides application level, takes into account all the access control issues to physical resources, like as car parks and restricted areas. The University has further engaged Tirasa to build a real Physical Identity & Access Management (PIAM) solution.

Users can log in via SPID, thanks to the functional extension developed by Tirasa.

University of Porto

Education

The U.Porto combines high quality education focused on individual vocations and talents as well as market needs with the claim to being the greatest birthplace of science in Portugal. It is committed to converting into social assets the talent and innovation from its 14 faculties, one business school and over 50 research centres.

Currently, the U.Porto is the most international of Portugal’s universities thanks to its active cooperation with hundreds of higher education institutions worldwide. The ambition now is to establish the U.Porto as one of the top 100 universities in the world by 2020.

UShareSoft

Tailored

The new module allows management of auditing (reports), policies, roles, users, tasks and entitlements. At present UForge uses this embedded IDM service for authentication and role-based access control (RBAC) authorization through special entitlements. The persistence store behind the IDM service is an SQL store and there is a resource connector, connecting to an LDAP V3 Service, for storage of roles, users and entitlements information, in an ...

The UShareSoft UForge Identity management service, is based on Apache Syncope, which was expressly chosen for it's richly defined and complete RESTful API.

Virgin Voyages

Tailored

In the initial scenario, identities from multiple HR systems (including Workday) were set to be transferred to Azure AD via Okta. The situation was problematic for various factors, including almost no control over the process, several potential points of failure and impractical scaling.

Managing the complexity of identity flows across ships and shore is an extremely delicate and involved task: we did choose Open Source software to rule them all. Trusting Tirasa to build our Identity and Access Management system was simply refreshing.

Developed with

Open Source Software

Benefits and Regulations

All around the world, Open Source software is strongly recommended - when not mandatory choice - for Public Administration, when it comes to acquisition and reuse of software.
As an example, the Open Source Observatory and Repository (OSOR) is a project launched by the European Commission for exchanging information, experiences and best practices around open source solutions for use in public administrations.

This happens because open source software is recognized as inherently robust and secure, and preserves by nature its adopters from vendor lock-in.

In this perspective we can not but play a leading role.
The philosophy that guides our company in its daily operating choices, the care and the ways in which it creates solutions for its customers as well as the total absence of proprietary licenses make Tirasa the "virtuous" supplier for Public Administration.

A complete and reliable solution fully customized on your needs

Self-management and approval

Password reset and update

Physical access

Credential generation