Sold by: miniOrange
Deployed on AWS
AWS Free Tier
Build a strong defence around all your on-premise applications. The miniOrange Identity and Access Management (IAM) platform, with Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions, helps secure user account access for on-prem infrastructure.
4.6
Overview
miniOrange Identity and Access Management (IAM) platform offers a comprehensive suite of products such as Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions, which are developed for identity management, access control, and layered defences, to scale your businesses, and to easily secure workforce identity, including employees, partners, and clients.
Our on-premise IAM solution adheres to a range of regulatory compliances, such as GDPR, PCI DSS, and more. It is developed to withstand malicious cyber threats and unauthorized account access through strong granular policy frameworks.
Use miniOrange on-premise IAM with AWS Integrations, along with AWS IAM, AWS Organizations, AWS SSO, AWS Session Tags, and Amazon Control Tower.
On-Premise IAM Solution includes:
- Single Sign-On (SSO): Enable secure and effortless access to on-premise resources and 5000+ applications with just a single set of credentials with role-based access.
- Multi-Factor Authentication (MFA) & Passwordless Access MFA solution adds an extra layer of security and also enforces passwordless access via authentication methods, like OTP, TOTP, biometrics, push notifications, and hardware tokens.
- Identity Brokering & Federated Authentication Authenticate users from third-party Identity Providers (IDPs), like Entra ID, Active Directory (AD), or Google, for better on-prem access via a Single Sign-On solution.
- User Lifecycle Management & Provisioning Maximize productivity and manage workforce and customer identities with automated SCIM-based user provisioning and deprovisioning.
Highlights
- Unified Identity Platform: miniOrange Single Sign-On solution delivers security and the speed you need to manage your users access to your applications and data all in one place.
- Focused Advanced Security: Our on-premise identity management provides critical low latency and reliability for performance-sensitive advanced security, enabling immediate threat response and superior control.
- Customized Products: Tailor IAM products like SSO and MFA solutions for better integration with operational workflows, delivering a customized identity management solution for your security posture.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
AmazonLinux Amazon Linux 3
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
30 Day Free Trial
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
miniOrange IDP - Getting Started Guide
Prerequisites
Before launching, ensure your EC2 Security Group has the following inbound rules:
| Port | Protocol | Description |
|---|---|---|
| 22 | TCP | SSH access |
| 443 | TCP | HTTPS (application) |
Step 1 - Launch the AMI
Launch the instance from AWS Marketplace. Once the instance is in Running state, note the Public IP address.
Step 2 - Access the Application
Open your browser and navigate to:
https://<your-public-ip>You will see a browser warning for the self-signed certificate - this is expected. Accept and proceed.
Step 3 - Complete First-Time Setup
The setup wizard will ask for your database, cache, and message queue connection details. All services are pre-installed and running locally on the instance. Use the following values:
Database (PostgreSQL)
| Field | Value |
|---|---|
| Host | localhost |
| Port | 5432 |
| Database | miniorange |
| Username | postgres |
| Password | (see /home/ec2-user/ami.env.sh on the server) |
Cache (Redis)
| Field | Value |
|---|---|
| Host | localhost |
| Port | 6379 |
Message Queue (RabbitMQ)
| Field | Value |
|---|---|
| Host | localhost |
| Port | 5672 |
| Username | admin |
| Password | (see /home/ec2-user/ami.env.sh on the server) |
Complete the wizard and save the configuration.
Step 4 - Restart Services
After saving the setup, SSH into the instance and restart all microservices so they pick up the new configuration:
ssh -i your-key.pem ec2-user@<your-public-ip> sudo moctl service restartWait about 2-3 minutes, then refresh the application in your browser.
Step 5 - Verify Everything is Running
All services should show as active/running.
Optional - Set Server Base URL (Branding)
If you want to use a custom domain (e.g. <https://sso.yourcompany.com>) instead of the public IP:
- Log in to the miniOrange IDP admin console
- Click the gear icon in the top-right corner
- Go to Settings
- Update Server Base URL with your desired domain or IP
- Save
If using a custom domain, ensure your DNS points to this instance's public IP and update your SSL certificate in /etc/nginx/conf/.
Connection Details Reference
All service connection details are stored on the instance at:
/home/ec2-user/ami.env.shSSH into the instance and run:
sudo cat /home/ec2-user/ami.env.shSupport
For assistance, contact miniOrange support at idpsupport@xecurify.com
Resources
Vendor resources
Support
Vendor support
Get 24*7 technical support from miniOrange seasoned engineers to effectively use IAM products and services. Our support team is available via email and phone to assist with troubleshooting, configuration, and deployment. Email Support: idpsupport@xecurify.com or Call us on +1 978 658 9387 (US) / +91 97178 45846 (India)
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
miniOrange Identity and Access Management (IAM) solution is built to secure workforce identity and manage B2B access for users, devices, and applications across on-premise infrastructure.
Host a secure your WordPress site & ease login of your users into WordPress using our SAML Single Sign-On plugin for WordPress CMS
miniOrange CASB controls access to cloud applications, protecting your data from unauthorized sharing. Gain real-time visibility, enforce data protection measures, and detect threats seamlessly within your AWS infrastructure. Solve Workplace access security problems for Google Workspace, Microsoft Office suite, Atlassian, Shopify or any app.
miniOrange's PAM solution ensures robust Privileged Access Management across cloud, on-premises, and hybrid environments. Here’s how it benefits your business: enhances visibility, streamlines deployment, and automated processes, and boosts security, along with risk minimization. It enables companies to securely manage, control, and monitor privileged access anywhere in the digital infrastructure.
Customer reviews
Harriet G.
Straightforward MFA Deployment and Fast, Reliable Push Authentication
Reviewed on May 30, 2026
Review provided by G2
What do you like best about the product?
We use miniOrange mainly for securing windows server and admin logins with MFA. Deployment was straightforward and the documentation helped during setup. Push authentication works well for our team and the login process us quick
What do you dislike about the product?
Reliable MFA for Securing windows server access but the platform has many features which can take time for someone new to the system
What problems is the product solving and how is that benefiting you?
Our goal was to protect administrator access to servers. with MFA enabled for windows logins, it reduces the chance of unauthorized access and improves overall security
Doug W.
Seamless Integration with Our In-House Custom Apps via the Access Gateway
Reviewed on May 30, 2026
Review provided by G2
What do you like best about the product?
It has enabled integration with our custom apps which we developed in house via their Access gateway module of the IAM product
What do you dislike about the product?
Integration heavy for custom apps but works very well once integration is completed
What problems is the product solving and how is that benefiting you?
Custom apps do not support standard sso protocols for communication with IAM
Bhargav C.
Easy-to-Configure Legacy Connectors That Extend Our System Seamlessly
Reviewed on May 29, 2026
Review provided by G2
What do you like best about the product?
MiniOrange has an easy to configure connector for many legacy systems like oracle Apps and in-house apps that enables us to extend 550 support to our existing system which doesn't natively support these non standard apps
What do you dislike about the product?
It is set and forget, nothing to dislike besides maybe the slightly challenging implementation process but their support team handles everything so we aren't impacted by that to begin with
What problems is the product solving and how is that benefiting you?
Existing IAM didn't support Legacy apps and miniorgange came in and federated identities for existing IAM
Oleks M.
Reliable MFA with Seamless Integrations Across Systems
Reviewed on May 29, 2026
Review provided by G2
What do you like best about the product?
The platform support multiple integrations which makes it easier to implement MFA across different systems. we use it for applications, VPB access, and network authentication. The authentication process is simple for employeees and works reliably.
What do you dislike about the product?
The UI works fine but it could be improved visually. sometimes navigating through settings takes time until you get used to it
What problems is the product solving and how is that benefiting you?
It helped us implement MFA across several systems from a single platform. instead of managing different tools for applications and VPN access, we now manage authentication centrally
Swamy S.
miniOrange Makes MFA Integration Easy Across Multiple Systems
Reviewed on May 27, 2026
Review provided by G2
What do you like best about the product?
One of the good things about miniOrange is that it supports multiple systems. We integrated MFA with network devices using TACACS and RADIUS, and it worked well. The authentication options like OTP and push notification are simple for users
What do you dislike about the product?
The interface could be a little more modern. Sometimes it takes a few clicks to find specific configuration settings.
What problems is the product solving and how is that benefiting you?
We needed stronger security for network access and remote login. MiniOrange helped us add MFA to network authentication through TACACS and VPN access. this helped reduce the risk of password only logins