Cerby is an access management platform for nonfederated applications. Nonfederated applications do not support common identity and security standards like APIs and SSO. They also lack the ability to effectively onboard, offboard and manage users at scale in large organizations. The Ponemon Institute found that 52% of organizations have experienced a cybersecurity incident caused by the inability to secure nonfederated applications. From a financial perspective, the average cost of manually onboarding and offboarding users from nonfederated applications is $1000 per employee.
Cerby mitigates the cyber risk and financial impact by bringing every nonfederated application into the identity lifecycle of your existing workforce identity platform, e.g., Okta, Azure AD, Ping, etc. This removes the need for manual tools like enterprise password managers and reduces the compliance burden of managing nonfederated apps manually.
How Cerby works
Our patent-pending platform has two primary ingredients: our access orchestration engine and extensive application catalog. The intuitive access orchestration engine uses a combination of browser plug-in and APIs to automate critical security tasks.
Cerby maps each supported application and, depending upon what it exposes from an identity and security perspective, it extends your IdP using a combination of protocols, robotic process automation, and application APIs. This allows us to create points of programmatic control even when the application itself does not expose them.
Today, adding, removing, and sharing access to legacy applications and modern ones like Asana is manual. With Cerby, you can link these tasks to employee creation and removal events in systems like Okta or Azure AD, even if the application doesn't support SCIM. One click adds or removes access everywhere.
Passwords aren’t the problem, users management of them and missing security standards like SAML and OIDC are. Once an application is managed in Cerby, users never see or manage the password again. They can authenticate to any Cerby-managed application with corporate authentication methods, like Microsoft’s Authenticator, FIDO2 security keys, or Okta’s FastPass.
Enable visibility and response
Many nonfederated applications don’t support integrations with SIEMs and cannot track access at the individual level, particularly with shared and privileged accounts. With Cerby, all access is individualized and tracked, ready for your SIEM.
Automated 2FA enrollment
Getting your users to enable 2FA can be painful. With Cerby, you can set a policy and when employees onboard an application in Cerby, the access orchestration engine will automatically set up and enable 2FA.
Manage privileged access
When an employee leaves your company or a contractor's time is up, resetting passwords is an often forgotten step, especially for privileged and shared accounts. With Cerby, passwords automatically rotate according to your policy and SCIM events, guaranteeing access isn’t retained.
Cerby also manages passwords for SaaS administrative accounts in crown jewel applications like Microsoft 365, Salesforce, ServiceNow, Slack, and others.
Real results from real users.
No one says it better than our customers.
"We are impressed by Cerby's approach to facilitating distributed access management for traditionally unmanageable applications, allowing users and IT to complement each other's efforts."
Lana Farrand, Executive Director, Information Security Program Management
"Cerby provides an access and password management platform that goes beyond traditional password managers. We know that our social presence is secure and that we are following industry best practices when it comes to managing security features like two-factor authentication."
Wendy Johansson, Cofounder, Chief Product Officer
"Before Cerby, our marketing teams spent hours each month managing access to Twitter, Facebook, Instagram and other social platforms. With the automation Cerby provides, we no longer have to worry about managing access and this has saved a lot of valuable time and increased our efficiency."
Danielle Ruess, Chief Marketing Officer
"We chose Cerby because we needed a secure and centralized place to manage access to our paid social accounts. Additionally, the automated access removal of employees who have left the company provides a level of security we did not previously have.”
Nina Donnard, AVP Paid Social
Integrate with your existing applications in a few clicks
Cerby natively supports many applications right out of the box, and we add more regularly. Don’t see your application listed below? Don’t worry, we got your back! Request an integration below. And yes, we natively integrate with Okta, Azure AD, Ping, and any standards supporting IdP.