Enterprise-grade · Self-hosted · Built for scale

Identity management
built for teams
that take security seriously.

AKY DEVA is the enterprise IAM platform built for teams that demand control. Single Sign-On, Passkeys, MFA, and Audit Logs — fully deployed on your own infrastructure.

Get started freeRead the docs
500+ Integrations·99.9% Uptime·SOC 2 Ready

Platform Features

Everything you need to manage identity at scale.

From passkeys to audit logs, every security primitive is built in — no SaaS dependencies.

Single Sign-On

Standards-based SSO using OAuth 2.0 and OpenID Connect. Any application can integrate as a service provider in minutes.

Passkeys & WebAuthn

FIDO2 passwordless auth with Touch ID, Face ID, and hardware security keys.

Multi-Factor Auth

TOTP-based MFA with QR code setup. Enforced at login and in every OAuth flow.

Admin Console

Full user, group and role management.

User Portal

Self-service profile, MFA and passkey management.

Device Management

Track and control enrolled devices.

Audit Logs

Immutable event log for all security events.

RBAC

Roles and permissions for fine-grained access.

User Invites

Invite users with pre-assigned roles via email.

Single Sign-On

One login for every app in your stack.

AKY DEVA acts as a central identity provider using industry-standard OAuth 2.0 and OIDC. Users authenticate once and gain access to all connected applications.

  • OAuth 2.0 Authorization Code + PKCE
  • OpenID Connect ID tokens
  • Configurable consent screens
  • Automatic session reuse

User

Browser

AKY DEVA

Identity Provider

App

Your Service

OAuth 2.0OIDCPKCE

Security

Built secure from the ground up.

Hardened by default with rate limiting, immutable audit trails, and encrypted tokens.

headerscorssql-safe

Zero-Trust Architecture

Helmet.js headers, parameterized queries, CORS locking enforced at every layer.

immutablesearchable

Immutable Audit Logs

Every authentication event, user change, and admin action logged and tamper-proof.

loginmfa

Rate Limiting

Brute-force protection on all auth endpoints. 20 logins/15min, 10 MFA attempts/5min.

SOC 2 ReadyGDPR CompliantOWASP Top 10FIDO2/WebAuthnOAuth 2.0 RFC 6749OpenID Connect 1.0

Why AKY DEVA

Rethink how you manage identity.

Most identity platforms lock you into their cloud. AKY DEVA is different — self-hosted, enterprise-licensed, and built for teams that take data sovereignty seriously.

Feature
AKY DEVA
Okta
JumpCloud
Self-hosted
Self-hosted deployment
Passkeys
Partial
Pricing
Free
$8/user/mo
$11/user/mo
OAuth 2.0 / OIDC
Audit logs
✓ (paid)
✓ (paid)
Custom branding
✓ (paid)
✓ (paid)
Vendor lock-in
None
High
High
No per-seat pricing. Deploy for free.
Commercial license. Enterprise support and SLA guarantees included.
Your data stays on your servers.

Integrations

Connects with your entire stack.

AKY DEVA works as a standard OIDC/OAuth2 provider. Any application supporting these protocols can integrate in minutes.

Google WorkspaceGitHubSlackMicrosoft AzureAWSVercelGitLabNotionLinearFigmaJiraConfluenceHubSpotSalesforceStripeZendeskDatadogPagerDutyCloudflareSupabaseNeonRailwayRenderHerokuDockerKubernetesTerraformVaultGrafanaPrometheusGoogle WorkspaceGitHubSlackMicrosoft AzureAWSVercelGitLabNotionLinearFigmaJiraConfluenceHubSpotSalesforceStripeZendeskDatadogPagerDutyCloudflareSupabaseNeonRailwayRenderHerokuDockerKubernetesTerraformVaultGrafanaPrometheus
PrometheusGrafanaVaultTerraformKubernetesDockerHerokuRenderRailwayNeonSupabaseCloudflarePagerDutyDatadogZendeskStripeSalesforceHubSpotConfluenceJiraFigmaLinearNotionGitLabVercelAWSMicrosoft AzureSlackGitHubGoogle WorkspacePrometheusGrafanaVaultTerraformKubernetesDockerHerokuRenderRailwayNeonSupabaseCloudflarePagerDutyDatadogZendeskStripeSalesforceHubSpotConfluenceJiraFigmaLinearNotionGitLabVercelAWSMicrosoft AzureSlackGitHubGoogle Workspace
Google Workspace

SSO for Gmail, Drive, and all Google apps via OIDC

Learn more
Microsoft Azure AD

Connect Azure AD as an upstream identity provider

Learn more
GitHub

GitHub OAuth for developer tools access

Learn more
Slack

Enable Slack workspace SSO

Learn more
Any OIDC App

If it speaks OIDC, it works with AKY DEVA

Learn more
REST API

Full OpenAPI spec available for custom integrations

Learn more

Book a Demo

See AKY DEVA in action.

Get a personalized walkthrough. We'll show you how to deploy AKY DEVA and connect your first application in under 30 minutes.

  • 30-minute live walkthrough
  • Custom deployment planning
  • Dedicated setup support
  • Security review included

“AKY DEVA replaced Okta for us in one weekend. Our team had full SSO running by Monday.”

— CTO, Series B startup

Request a demo

FAQ

Frequently asked questions.

Everything you need to know about deploying and managing AKY DEVA.

AKY DEVA is a commercially licensed product. We offer flexible per-site and enterprise license tiers based on your deployment needs. Contact us at hello@akydeva.com for a quote — there are no surprise per-seat fees.
Most teams have AKY DEVA running in under 30 minutes using our Docker Compose setup. Connecting your first SSO application takes another 10–15 minutes with our guided setup.
AKY DEVA currently supports OAuth 2.0 and OpenID Connect (OIDC) as primary protocols. SAML 2.0 support is on our roadmap. Most modern enterprise applications support OIDC natively, and our integration library is growing continuously.
AKY DEVA offers full enterprise IAM capabilities — SSO, MFA, passkeys, user management, device management, and audit logs — without cloud SaaS lock-in. You own the deployment, the data, and the infrastructure. Unlike Okta, there are no per-seat fees that scale against you as your team grows.
Yes. Because AKY DEVA is built on standard protocols (OIDC/OAuth 2.0), your connected applications can be re-pointed to AKY DEVA with a configuration change. We provide a migration guide and offer dedicated migration support for enterprise customers.
AKY DEVA is delivered as a containerised deployment. It requires a supported relational database and standard server infrastructure. Our team provides detailed deployment guides and supports cloud, on-premise, and hybrid environments. Contact us for a deployment assessment.
AKY DEVA is architected with SOC 2 Type II requirements in mind — immutable audit logs, encrypted credentials, rate limiting, and role-based access controls. Since it's self-hosted, your team controls the compliance posture.
The current version is designed for single-tenant deployments, which is the standard model for self-hosted enterprise IAM. Multi-tenant support (for B2B SaaS use cases) is on our roadmap — contact us if this is a requirement.
Please email security@akydeva.com. We follow responsible disclosure practices and aim to patch critical vulnerabilities within 48 hours. Our security policy is in the GitHub repository.
Community support is available via GitHub Issues and Discussions. For enterprise support contracts with SLA guarantees, contact hello@akydeva.com.

Still have questions? Contact us at hello@akydeva.com

Get Started

Ready to take control of your identity stack?

Deploy AKY DEVA on your own infrastructure. Transparent licensing, no vendor lock-in, full control over your identity data.

Get started freeTalk to us

Self-hosted deployment · Your data stays on your servers · Enterprise support available

SAML 2.0FIDO2OAuth 2.0OpenID ConnectPKCEWebAuthn