Latest
ACTIVE_NOT_READY: Not all modules started error in IDM (All versions)
The purpose of this article is to provide assistance if you encounter errors such as "OpenIDM failure during startup, ACTIVE_NOT_READY: Not all modules started" when starting IDM.
Do ForgeRock products run on AWS?
AWS stands for Amazon Web Services and encompasses a range of cloud-based services provided by Amazon. ForgeRock products work well with many AWS offerings. Additionally, ForgeRock has also partnered with AWS to make it even easier for companies to control access to AWS Resources.
Does the ForgeRock solution integrate with ServiceNow?
ForgeRock can integrate with ServiceNow® to provide both identity management and Single Sign-On (SSO) capabilities.
What operating systems are ForgeRock products supported on?
The purpose of this article is to provide a summary of the currently supported operating systems for the latest ForgeRock products: AM 7.1, DS 7.1, IDM 7.1 and IG 7.1.
Can the ForgeRock Identity Platform be deployed to provide high availability (HA) and failover?
Yes. The ForgeRock Identity Platform provides telco-grade scalability and availability, with the ability to respond to spikes in demand. By eliminating single points of failure, application uptime requirements can easily meet customer expectations, helping to maintain customer loyalty, and drive organizational growth.
Does the ForgeRock Identity Platform include an audit logging service?
The ForgeRock Identity Platform includes a REST-based Audit Logging Service that captures all auditing events critical for system security, troubleshooting, usage analytics and regulatory compliance.
Do ForgeRock products run on VMware?
The short answer is yes they do. ForgeRock products can run very successfully on VMware providing you configure your VMware environment correctly.
Is the ForgeRock Identity Platform FIPS 140-2 compliant?
ForgeRock can make use of a FIPS 140-2 certified cryptographic module through a standard PKCS#11 interface.
Does the ForgeRock solution support UI flexibility?
This article provides answers to frequently asked questions on UI flexibility when evaluating the ForgeRock Identity Platform.
Does the ForgeRock Identity Platform support HSMs?
Hardware Security Modules (HSMs) can be used in various places across the ForgeRock Identity Platform to store and protect private and secret keys. ForgeRock uses HSMs through standard PKCS#11 interfaces and supports the use of compliant cryptographic algorithms.
Books
Product Q&As - ForgeRock Identity Platform
This book provides answers to questions when evaluating the ForgeRock Identity Platform and its components (AM, DS, IDM and IG). It assumes that the platform is deployed on-premises or in a private or public cloud rather than ForgeRock-hosted in Identity Cloud.
Administering and configuring IDM
This book provides information on administering and configuring IDM, including frequently asked questions and known issues.
Synchronization in IDM
This book provides information on synchronization in IDM including Reconciliation, liveSync and Implicit synchronization.
Platform compatibility
This book provides information on compatibility between ForgeRock products (AM, DS, IDM and IG).
Performance tuning and monitoring ForgeRock products
This book provides information on performance tuning and monitoring ForgeRock products (AM, DS, IDM and IG).
Security Advisories
This book provides security advisories for ForgeRock products (AM, DS, IDM and IG).
Using the REST API in IDM
This book provides information on using the REST API in IDM and includes known issues (including solutions).
Troubleshooting IDM
This book provides information on troubleshooting various issues in IDM, including collecting useful troubleshooting information such as logs, heap dumps and stack traces.
Scripts in IDM
This book provides information on scripts in IDM, including troubleshooting them.
SSL in IDM
This book provides information on SSL in IDM, including connections and certificates.
Security Advisories
Spring Framework Security Advisory #202203
The purpose of this advisory is to inform our customers that, based on current information, ForgeRock products (Identity Cloud, AM, DS, IDM, IG, Agents and Autonomous Identity) are NOT vulnerable to the Spring Framework vulnerabilities: Data Binding Rules CVE-2022-22968, RCE (Remote Code Execution) CVE-2022-22965 (Spring4shell), RCE CVE-2022-22963 and DoS (Denial of Service) CVE-2022-22950.
Java JDK Security Advisory #202109
ForgeRock are aware of a serious vulnerability in the implementation of certain cryptographic operations in Java® JDK versions 15 and later: CVE-2022-21449. This vulnerability affects Oracle® Java and OpenJDK, including other JDKs derived from OpenJDK. You should follow the advice in this advisory to secure your deployments at the earliest opportunity.
Log4j Security Advisory #202111
The purpose of this advisory is to provide information on whether ForgeRock products (Identity Cloud, AM, DS, IDM, IG, Agents and Autonomous Identity) are vulnerable to recent Log4j 2 vulnerabilities: RCE (Remote Code Execution) CVE-2021-44228, DoS (Denial of Service) CVE-2021-45046, DoS CVE-2021-45105 and ACE (Arbitrary Code Execution) CVE-2021-44832. These vulnerabilities allow an attacker to remotely execute code in certain circumstances.
ICF Security Advisory #202102
ForgeRock has discovered two security vulnerabilities in the Identity Connector Framework (ICF).
IDM Security Advisory #202002
A security vulnerability has been discovered in an IDM component. This issue is present in version 7.0.0 of ForgeRock Identity Management.
IDM/OpenIDM Security Advisory #201705
Security vulnerabilities have been discovered in IDM/OpenIDM components. These issues may be present in IDM 5.0 and OpenIDM 2.1.x, 3.x, 4.x. The OpenIDM Community Edition 2.1.2 is also affected.