Home Platform IAM

IAM

Platform core

Engine 05 of 12 · Identity

One login, RBAC and tenant isolation across the platform.

Request a demo All 12 engines
What it does

IAM

IAM provides one login, role-based access control and tenant isolation across the entire platform. Identity federates to each customer's own directory, and every permission is enforced at the gateway before a request reaches an app.

Consumed by
Every suite — one login
Gateway — request authorisation
Audit — who did what
Admin — role management
Capabilities

Inside the IAM

Single sign-on

One identity across all four suites

RBAC

Fine-grained, role-based permissions

Federated identity

Connect to AD / Entra / your IdP

Tenant isolation

Hard boundaries between tenants

The platform core

The other engines

Every engine is built once and consumed by all four suites. That is the platform-first dividend.

Workflow Engine

Configurable approvals, stage gates and state machines

Forms Engine

Admin-built forms and data capture, no redeploy

Automation Engine

Runbooks, drills and event-triggered actions

Integration Engine

Source and target adapters, gov-platform connectors

File Service

Sovereign document storage, legal hold and evidence

Notifications

Email, SMS and in-app alerting, centrally governed

Licensing

Per-tenant entitlement and packaging control

AI Services

Copilots, contract review and detection, RAG-ready

API Gateway

AuthN/Z, rate limits, routing and versioning · Go

Event Bus

Ordered, per-tenant, replayable domain events

Observability

RPO/RTO/latency SLOs and platform-wide audit

See the platform core in a deep-dive

From the gateway to the event bus — a working session on how the engines fit together in your environment.

Request a demo Explore the architecture
    IAM — Platform Core — Clario360