Secure everyone, wherever they are.

Five+ years of Gluu 4.x

If you are running the popular Gluu Server version 4.x containers or VM packages, and want the latest security updates, you’ll need a Gluu 4 VIP Subscription. Gluu 4 will be supported until Dec 31, 2028. Extended support will be available after that.

If you want free open source IAM, please check out the Linux Foundation Janssen Project.  The source for Gluu 4 is still available in Github if you want to build your own binaries.

Created with Snap Created with Snap


Very large deployments where control of scalability is critical. With Gluu’s cloud-native distribution, you can scale out by adding more servers–automatically on the fly.  No matter what your performance requirements are, the Gluu Server can handle it. Gluu is the only identity platform that can take advantage of Couchbase’s next-generation persistence capabilities.


Multi-tenant cloud-hosted identity services mix your personal data in a shared database with lots of other customers. It also means that secrets, like user passwords and client credentials, are stored in the cloud. By self-hosting a Gluu Server, you know where your personal data resides.  Also, use the UMA protocol to interact with end-users after authentication to gather consent before sharing PII with third parties. This can help your organization comply with GDPR.


The Gluu Server is very flexible. You can add custom code to integrate backend systems at many points in the authentication and authorization workflow.  We don’t waste your time with a fancy workflow GUI.  We define many interfaces, and let you write a little bit of Python or Java code to implement the exact logic you need to get the job done. Plus, Gluu is based on open-source code. You’ll never again be stuck waiting for a vendor to ship some critical new feature.

Take a closer look at Gluu Enterprise

Auth Server

Auth Server

The core identity provider software that renders login pages, authenticates clients and issues tokens.

Based on the Linux Foundation Janssen Project, the Gluu Server is one of the most comprehensive OAuth and OpenID Connect Providers.

Casa Gluu


An extensible self-service web portal for end-users to view, add and enroll 2FA credentials

What happens when you lose your 2FA credential? With Casa, end-users have a website to remove lost credentials, and to enroll a replacement! FIDO, OTP, Super Gluu, SMS, smart card, and Duo are built in. You can add others via plugins.

multi-datacenter deployments


Choose LDAP for small deployments and Couchbase for mega-scale.

Choosing the right persistence mechanism is critical for the performance and availability of any identity platform. LDAP has fast performance and good replication. Couchbase offers sharded, multi-datacenter deployments. SQL is coming soon!

social identity


Federation broker for SAML IDPs and social login

If your partners or customers have their own SAML IDP, or you want to use a social identity provider, passport enables you to normalize authentication and to map user claims on a per IDP basis.

Shibboleth SAML IDP

Shibboleth SAML IDP

SAML identity provider

Using the Shibboleth IDP, you can achieve SSO with SAML websites (SP's). With the Gluu Server, no need to hand edit confusing XML files--use the admin UI (or config API) to create trust relationships and release attributes to websites.

Admin UI web interface for configuration

Admin UI

Easy to use web interface for configuration.

The Admin web UI is nice for ad hoc configuration. You can also use the config API to achieve more automation.

Self-Service MFA
Gluu Casa is revolutionary. It provides a single point of management for end users to view, enroll, and remove MFA authentication credentials,
Single Sign-On
Configure web SSO to any application that supports OpenID Connect or SAML. This critical to improve user experience and productivity.
Mobile SSO
Using the OpenID AppAuth libraries, you can enable SSO to mobile applications without accidentally leaking passwords to third party partners (or hackers!).
Inbound SAML
Leverage the SAML IDPs of your partners to offload credential management and enable end-users to seamlessly access protected resources by bringing their own identity.
Social Login
Support registration and sign-in at Google, Facebook, GitHub or any other popular consumer IDP.
Single Sign-On Social login

Features and Entitlements

Support and license entitlements for Gluu open source products and services.

Gluu Support Portal

Support Portal

The Gluu Support Portal ( is the primary mechanism to triage support. It is available to the community, and to VIP customers.  Community issues are all public, while VIP customers can open private issues.  VIP customers have some additional features, like the ability to attach files and images to support requests.

Support SLAs

Support SLAs

Gluu makes every possible effort to respond to support incidents to meet SLA obligations that support 99.999% uptime. We offer up to 1-hour response and within 4-hour resolution for priority one system down events and triage based on severity and risk to life and business impact. We do not offer different response times per contract ensuring all support staff responds appropriately the first time, every time.

Consultative Support

Consultative Support

With a VIP support contract, you have an allocation of hours to schedule ad hoc Zoom calls with the Gluu engineering team. You can use these consultative sessions to review application design, obtain training, or dive deeper into a topic of your choice. Advance notice is required so Gluu can schedule the appropriate resources. The quarterly hours are “use-it-or-lose-it”, i.e. they don’t accumulate.

Functional and Devops Support

Functional and Devops Support

Application developers and deployers have different sets of challenges. The former frequently need to know how to use the Gluu Server and the latter how to operate it. VIP Support covers both requirements. Functional support issues are more common at the start of access management projects. DevOps support is critical for the production rollout and subsequent operation.

VIP Support

Prioritization Feature Requests

The requests of VIP Support customers for enhancements get special attention. Gluu cannot guarantee to add new features based on these requests. This decision is ultimately made by the product team, and in some cases, in collaboration with the open-source community that leads development. But if possible, customer requests are accommodated.

OpenID Connect

Cluster Manager

Cluster Manager is a deployment tool that makes it easier to configure a cluster of Gluu Servers on virtual machines. It saves time by automating many manual tasks and makes your cluster easier to upgrade. Cluster Manager is commercially licensed. Subscriptions give your organization the right to use the software on an annual basis.

Try the Gluu Server Community Edition free with no limitations

« »