01 / CIAM
Customer Identity
Your ONE account for everything Skyfallen.
Sign in to create a ONE ID, use Skyfallen services, and connect to partner services.
about.skyfallen.one
Skyfallen ONE
Flexible identity for you, your customers and your workforce.
Skyfallen ONE is Skyfallen's identity platform. Sign in to all Skyfallen services with one account. Give your workforce branded access to organisation apps. Give administrators IAM tools to manage members, permissions, and integrations.
Platform pillars
02 / WIAM
Workforce Identity
ONE account for your workforce.
Allow your workforce to sign in with branded pages, connect to third party apps with SSO and the Workforce app launcher, sync with supported directory integrations.
03 / IAM
Access Management
Tools for tenant administrators.
Members, invites, roles, permissions, imports, and self-service password reset.
04 / API
Integrations
Integrate with your whole business stack.
Synchronise with your organisation directory using Skyfallen Account Provisioning Protocol or choose one of our identity integrations, including Google Directory.
Use cases
ONE for every role.
ONE connects customer identity, workforce identity, organisation administration, and application integrations in one platform.
-
01
Customer identity
People use ONE to create an account, sign in to Skyfallen services and manage all their data on Skyfallen systems from ONE place.
-
02
Workforce identity
Organisations use ONE to give their employees ONE branded place to reach internal and partner apps.
-
03
Organisation administration
Administrators use IAM to manage members, permissions, invitations, branding and partner applications.
-
04
Application integrations
Connected services use ONE APIs, webhooks, and provisioning tools to work with trusted identity and tenant data.
Features
What ONE includes.
Customer identity, organisation administration, workforce access, and integrations — in one platform.
01
Customer identity
Sign-in and account features for individual users.
-
ONE ID
ONE personal identity record to sign in to all Skyfallen services.
-
ONE Pass
2FA on desktops with device certificates and biometrics.
-
Passkeys
Securely authenticate with passkeys across devices.
-
Password recovery
Self-service password reset by email or phone verification.
-
Profile management
Manage all profile data through a single interface.
-
Account deletion
Request account deletion from your profile.
02
Organisation administration
Tenant controls for members, invitations, roles, and permissions.
-
Tenant setup
Create personal, commercial, and enterprise tenants with the right ownership details.
-
SECR™ lookup
Let enterprise users find approved organisation records during sign-in.
-
Invites
Issue invitations, monitor responses, and revoke access when plans change.
-
Members
Maintain member profiles, roles, and permission sets from one place.
-
CSV import
Add or update large member lists without manual entry.
-
Legacy SSO migration
Move verified SAML users into ONE without losing their account path.
03
Workforce identity
Branded access for employees and the applications they use.
-
Workforce portals
Give each organisation a subdomain for sign-in and app launch.
-
Workforce apps
Publish CAS and SAML apps for members to open from the portal.
-
Custom links
Place trusted external tools beside managed applications.
-
Branding
Set logos, imagery, text, and default language for the experience.
-
Google Workspace
Sync and provision Google Workspace accounts for members.
-
SAML app launch
Start SAML sign-in from the portal with the right app context.
-
CAS consent
Let users approve identity sharing with Skyfallen CAS apps.
04
Developer integrations
API, provisioning, and event tools for connected services.
-
CAS API
Exchange sessions and read user, tenant, and membership records.
-
SAPP API
Read tenants and users, then update integration metadata.
-
Signed webhooks
Receive verified account and tenant change events.
-
API keys
Issue client credentials for provisioning and service integrations.
-
Metadata sync
Keep HRIS, ERP, and lifecycle identifiers attached to records.
-
ONE Pass certificates
Validate device-signed authentication tokens from ONE Pass.
-
PBX lookups
Use trusted lookup endpoints for phone and enterprise records.
Entry points
Access ONE services.
Sign in, request information, read help, or work with the API documentation from here.
Enterprise enquiries
Bring ONE to your organisation.
For customer identity, workforce access, tenant administration, or integrations, share what you need and Skyfallen will respond with the right product information.
CIAM / WIAM / IAM / API - the full ONE platform stack
Identity infrastructure for customers, teams, and connected services.
01 / CIAM
Customer Identity
Your ONE account for everything Skyfallen.
02 / WIAM
Workforce Identity
ONE account for your workforce.
03 / IAM
Access Management
Tools for tenant administrators.
Identity lifecycle
Every account needs a clean path.
ONE keeps the account journey clear: create the record, verify trust, grant access, connect services, and retire data when required.
-
01
Create
Users and tenants can be created through sign-up, invitations, imports, or approved API flows.
-
02
Verify
Business, identity, and contact checks help decide when trust should be granted.
-
03
Operate
Administrators manage membership, permissions, apps, branding, and recovery settings.
-
04
Retire
Deletion and lifecycle workflows keep account changes traceable across connected services.
More Skyfallen
Related Skyfallen resources.
Company, desktop sign-in, legal, and commercial links for ONE.
Google user data