# What is OpenIAM Business systems can be unstructured and require many resources to manage accounts and access to each application, service, etc. One user can have multiple accounts in connected systems, but the problem is that it is very difficult to know that these accounts all belong to that same user. Besides the obvious challenges in creating a unified user profile, one cannot readily determine what access a person has in each application, why they have it and when it was granted. The problem goes deeper as the number of users grows. The more users, the more resources and time are needed to ensure a reliable level of security. Here, an IAM solution steps in, being a set of solutions to provide digital identification of a person. The identification feature may include account, synchronization, management, passwords, access control and many more. IAM systems are, in fact, based on the pattern that *Each user must have the right access to the right resources at the right time*. To achieve this objective IAM solutions provide integration with one or more authoritative sources such as an HR system and business applications so that they can create a framework by which access can be granted to the right applications to the right users at the right time. OpenIAM addresses these challenges using a converged architecture, easy-to-use interface and flexible deployment model. Aside from its direct purpose as an identity and access management platform, OpenIAM can provide end users with the following capabilities: * Unified view of identity across all applications (both on-premises and in the cloud). * Flexible role-based access control (RBAC) model. * User life cycle management with the ability to provision/deprovision identities and permissions across applications. * Access to SelfService portal supporting: * Password resetting * Workflow-based request/approval * Single sign-on * Profile management * User access reviews * Various authentication possibilities: * MFA * Adaptive authentication * Social login * Single Sign-On (SSO) with support for: * SAML 2, oAuth 2, and OIDC * Legacy application using the reverse proxy Watch the video below for some more details about the platform. {% embed url="" %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs-beta.openiam.com/getting-started/what-is-openiam.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.