Perun is an identity and access management system that covers management of the whole user life cycle. Its key features are virtual organisation management, user and group management, resource management and service management. Perun has been designed to work in distributed and federated environments.
Licence: FreeBSD licence
Open source project available at https://github.com/CESNET/Perun
Developed by CESNET and Masaryk University in Brno, Czech Republic
Features
Complete VO and group management
Identity consolidation (account linking)
Push mechanism for authorisation data delivery (delivering ACLs, group information to services using push)
Pull mechanism for authorisation data delivery via LDAP and AA
Provisioning/de-provisioning of the user rights on services
Enrolment management (customisable application forms, various enrolment flows)
Delegation support for VO and group management
Security teams support (global user banning)
Import and synchronisation of users/groups with existing identity and group management systems
Homeless users
Different Levels of Assurance
Flexible and scalable attribute release policies
Persistent and unique user identifiers
Browser & non-browser based federated access
Social media identities
Effective accounting
Integration with e-Government infrastructures (Ready to be supported)