The following is a high level capabilities matrix for OAuth2. The vendors chosen for comparison, are a selected few, that have well known capabilities within the access management space.

For example, some are listed within the Gartner Magic Quadrant for Access Management – typically seen as the largest and most capable providers of access technology.

The most recent Gartner Magic Quadrant for Access Management, was released in August 2019 (available here – subscription required).

In addition, Google’s IAM platform and Amazon Cognito have also been added.

This article is to take a look at the capabilities, specifically related to OAuth2, for each vendor.

Note testing was not conducted and analysis was based on publicly available documentation, with the necessary links added.


OAuth2 Provider Capabilities

The following table is a matrix of OAuth2 provider related functionality. The feature list, is derived from a common set of key components required to deploy a successful, secure and broad based ecosystem and takes some pointers from the OAuth2 Best Current Practice.

Yes – supported and public documentation link could be found and referenced

No doc found – no evidence of support in public documentation

VendorClient CredsAuthz CodeDevice GrantPKCEMTLSJWT TokensClient RegProof of Poss.Custom Claims
Amazon CognitoYesYesNo doc foundYesNo doc foundYesNo doc foundNo doc foundNo doc found
Auth0YesYesYesYesNoYesYesNo doc foundYes
Broadcom (CA)YesYesNo doc foundYesNo doc foundNo doc foundYesNo doc foundNo doc found
ForgeRockYesYesYesYesYesYesYesYesYes
Google IAMYesYesYesYesNo doc foundNo doc foundNo doc foundNo doc foundNo doc found
IBMNo doc foundYesYesYesNo doc foundYesNo doc foundNo doc foundNo doc found
MicrosoftYesYesYesYesNo doc foundYesNo doc foundNo doc foundYes
OktaYesYesYesYesNo doc foundYesYesNo doc foundYes
OneLoginYesYesNo doc foundYesNo doc foundNo doc foundNo doc foundNo doc foundNo doc found
OracleYesYesYesNo doc foundNo doc foundNo doc foundNo doc foundNo doc foundNo doc found
Ping IdentityYesYesYesYesYesYesYesYesNo doc found

Categories:

Tags:

Comments are closed