SURF Research Access Management is built upon lots of well established and proven building blocks for identity management and research, and uses international open standards where possible (like the ones from AARC), and mostly consists of SURF-developed parts.
SURF Research Access Management consists for OpenConext EngineBlock as proxy and SBS as membership management system, GUI and provisioning interface.
Federated identities from SURFconext, eduGAIN (via MyAccessID), eduID.nl, eIDAS (planned) and govconext (not yet planned) are supported.
Applications can authenticate via OIDC, SAML2.0 and PAM web login, and can be provisioned via SCIM and LDAP.