Sold by: miniOrange
Deployed on AWS
AWS Free Tier
Build a strong defence around all your on-premise applications. The miniOrange Identity and Access Management (IAM) platform, with Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions, helps secure user account access for on-prem infrastructure.
4.5
Overview
miniOrange Identity and Access Management (IAM) platform offers a comprehensive suite of products such as Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions, which are developed for identity management, access control, and layered defences, to scale your businesses, and to easily secure workforce identity, including employees, partners, and clients.
Our on-premise IAM solution adheres to a range of regulatory compliances, such as GDPR, PCI DSS, and more. It is developed to withstand malicious cyber threats and unauthorized account access through strong granular policy frameworks.
Use miniOrange on-premise IAM with AWS Integrations, along with AWS IAM, AWS Organizations, AWS SSO, AWS Session Tags, and Amazon Control Tower.
On-Premise IAM Solution includes:
- Single Sign-On (SSO): Enable secure and effortless access to on-premise resources and 5000+ applications with just a single set of credentials with role-based access.
- Multi-Factor Authentication (MFA) & Passwordless Access MFA solution adds an extra layer of security and also enforces passwordless access via authentication methods, like OTP, TOTP, biometrics, push notifications, and hardware tokens.
- Identity Brokering & Federated Authentication Authenticate users from third-party Identity Providers (IDPs), like Entra ID, Active Directory (AD), or Google, for better on-prem access via a Single Sign-On solution.
- User Lifecycle Management & Provisioning Maximize productivity and manage workforce and customer identities with automated SCIM-based user provisioning and deprovisioning.
Highlights
- Unified Identity Platform: miniOrange Single Sign-On solution delivers security and the speed you need to manage your users access to your applications and data all in one place.
- Focused Advanced Security: Our on-premise identity management provides critical low latency and reliability for performance-sensitive advanced security, enabling immediate threat response and superior control.
- Customized Products: Tailor IAM products like SSO and MFA solutions for better integration with operational workflows, delivering a customized identity management solution for your security posture.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
AmazonLinux Amazon Linux 3
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
30 Day Free Trial
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
miniOrange IDP - Getting Started Guide
Prerequisites
Before launching, ensure your EC2 Security Group has the following inbound rules:
| Port | Protocol | Description |
|---|---|---|
| 22 | TCP | SSH access |
| 443 | TCP | HTTPS (application) |
Step 1 - Launch the AMI
Launch the instance from AWS Marketplace. Once the instance is in Running state, note the Public IP address.
Step 2 - Access the Application
Open your browser and navigate to:
https://<your-public-ip>You will see a browser warning for the self-signed certificate - this is expected. Accept and proceed.
Step 3 - Complete First-Time Setup
The setup wizard will ask for your database, cache, and message queue connection details. All services are pre-installed and running locally on the instance. Use the following values:
Database (PostgreSQL)
| Field | Value |
|---|---|
| Host | localhost |
| Port | 5432 |
| Database | miniorange |
| Username | postgres |
| Password | (see /home/ec2-user/ami.env.sh on the server) |
Cache (Redis)
| Field | Value |
|---|---|
| Host | localhost |
| Port | 6379 |
Message Queue (RabbitMQ)
| Field | Value |
|---|---|
| Host | localhost |
| Port | 5672 |
| Username | admin |
| Password | (see /home/ec2-user/ami.env.sh on the server) |
Complete the wizard and save the configuration.
Step 4 - Restart Services
After saving the setup, SSH into the instance and restart all microservices so they pick up the new configuration:
ssh -i your-key.pem ec2-user@<your-public-ip> sudo moctl service restartWait about 2-3 minutes, then refresh the application in your browser.
Step 5 - Verify Everything is Running
All services should show as active/running.
Optional - Set Server Base URL (Branding)
If you want to use a custom domain (e.g. <https://sso.yourcompany.com>) instead of the public IP:
- Log in to the miniOrange IDP admin console
- Click the gear icon in the top-right corner
- Go to Settings
- Update Server Base URL with your desired domain or IP
- Save
If using a custom domain, ensure your DNS points to this instance's public IP and update your SSL certificate in /etc/nginx/conf/.
Connection Details Reference
All service connection details are stored on the instance at:
/home/ec2-user/ami.env.shSSH into the instance and run:
sudo cat /home/ec2-user/ami.env.shSupport
For assistance, contact miniOrange support at idpsupport@xecurify.com
Resources
Vendor resources
Support
Vendor support
Get 24*7 technical support from miniOrange seasoned engineers to effectively use IAM products and services. Our support team is available via email and phone to assist with troubleshooting, configuration, and deployment. Email Support: idpsupport@xecurify.com or Call us on +1 978 658 9387 (US) / +91 97178 45846 (India)
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
miniOrange Identity and Access Management (IAM) solution is built to secure workforce identity and manage B2B access for users, devices, and applications across on-premise infrastructure.
Host a secure your WordPress site & ease login of your users into WordPress using our SAML Single Sign-On plugin for WordPress CMS
miniOrange CASB controls access to cloud applications, protecting your data from unauthorized sharing. Gain real-time visibility, enforce data protection measures, and detect threats seamlessly within your AWS infrastructure. Solve Workplace access security problems for Google Workspace, Microsoft Office suite, Atlassian, Shopify or any app.
miniOrange's PAM solution ensures robust Privileged Access Management across cloud, on-premises, and hybrid environments. Here’s how it benefits your business: enhances visibility, streamlines deployment, and automated processes, and boosts security, along with risk minimization. It enables companies to securely manage, control, and monitor privileged access anywhere in the digital infrastructure.
Customer reviews
Information Technology and Services
Easy SSO & MFA Setup That Makes Daily Logins Smooth
Reviewed on May 07, 2026
Review provided by G2
What do you like best about the product?
What I liked most is how easy SSO and MFA setup was. Earlier I had to remember different passwords for different apps which was frustrating. Now logging in once and getting access to everything makes day to day work much smoother.
What do you dislike about the product?
Nothing. Platform works well, but sometimes i feel that UI can took a bit modern in some areas. Sometimes finding specific settings take extra clicks but once you get used to it, it's fine.
What problems is the product solving and how is that benefiting you?
It solved password management for me, so i no longer need to reset passwords or keep track of multiple logins. At some point, MFA keeps access secure, so it feels like security's improved without making daily login difficult.
Amir Z.
Robust MFA, Slightly Steep Learning Curve
Reviewed on Mar 28, 2026
Review provided by G2
What do you like best about the product?
I like that miniOrange Identity & Access Management supports multiple systems and that we could integrate MFA with network devices using TACACS and RADIUS effectively. The authentication options, like OTP and push notifications, are simple for users, which I appreciate. The overall setup was fairly straightforward, particularly for basic configurations, and the core features like MFA were easy to get up and running.
What do you dislike about the product?
While the platform works well overall, there are a few areas that could be improved. The initial setup and configuration can be a bit complex, especially integrating with multiple systems. Some parts of the interface also feel less intuitive, which can make navigation and advanced configurations challenging for new users. Additionally, improving documentation and providing more step-by-step guides for specific integrations would make the onboarding process smoother.
What problems is the product solving and how is that benefiting you?
miniOrange Identity & Access Management strengthens security for network access and remote logins, making access management more consistent and less challenging.
Amit G.
Flexible IAM platform for managing authentication
Reviewed on Mar 17, 2026
Review provided by G2
What do you like best about the product?
What I appreciate most about miniOrange IAM is how it brings multiple identity and authentication capabilities into one platform. It supports different authentication protocols and integrates well with various applications, which makes it easier from a development perspective. Instead of building custom authentication systems, we can rely on the platform to manage identity and access securely.
What do you dislike about the product?
The dashboard includes many features, so it can take a little time to navigate everything initially. After some use, it becomes quite manageable.
What problems is the product solving and how is that benefiting you?
It helps centralize authentication and access management across applications. This improves security while also saving development time since we don’t have to implement authentication separately for each system.
Computer Software
Simple, Effective MFA for Our Entire Environment
Reviewed on Dec 12, 2025
Review provided by G2
What do you like best about the product?
miniOrange stands out due to the flexibility available for Multi-Factor Authentication (MFA), offering diverse methods like push and conditional access. The MFA solution is pretty holistic, covering our applications, VPNs, and Windows devices—it secured everything we needed. The platform's high Ease of Use for our employees makes securing our entire environment a straightforward task.
What do you dislike about the product?
The administrative console's interface occasionally feels slightly dated, particularly when navigating the vast Number of Features. This sometimes makes simple management tasks, which we perform with high Frequency of Use, a little slower than necessary.
What problems is the product solving and how is that benefiting you?
miniOrange is critical in solving the problem of ensuring secure, multi-factor authenticated access across all our endpoints. This immediately benefits us by drastically reducing risk from credential theft and helping us meet critical compliance mandates with ease. By enforcing MFA universally, we've created a single, consistent security layer, which has improved overall user adoption and boosted our security posture immensely.
Chandan S.
Versatile MFA Options, Needs Enhanced Support
Reviewed on Dec 12, 2025
Review provided by G2
What do you like best about the product?
I like that miniOrange Identity & Access Management provides hybrid solutions with multiple options for multi-factor authentication (MFA) like FIDO, push notifications, email, and TOTP. This flexibility allows me to implement the authentication method that fits the organization's needs, whether it's FIDO or email as a second factor. It also supports other TOTP methods like Google Authenticator and Microsoft Authenticator, which can be used according to user requirements.
What do you dislike about the product?
I think they could improve their support system and make it easier to integrate other products. Sometimes there's a delay with support, and integration should also work well with solutions like routers, switches, and firewalls.
What problems is the product solving and how is that benefiting you?
I use miniOrange Identity & Access Management to ensure only actual users can access Windows machines and data with second-factor authentication. It offers hybrid MFA solutions like FIDO, push notifications, email, and TOTP, adaptable to our organizational needs.