SURF Research Access Management (SRAM) enables research collaborations to manage secure access to shared applications and resources, without the overhead of creating and maintaining separate user accounts for each service.

Behind this simple promise is a comprehensive platform that handles three major functional capabilities: identity management, collaboration management, and service integration.

Whether you are a researcher joining a collaboration, an administrator managing dozens of research groups, or a service provider connecting your application to the research community, SRAM provides the tools you need.

SRAM is based on the AARC Blueprint Architecture, a modular framework for authentication and authorisation infrastructures to support international research collaborations.

Search SRAM documentation

Release notes

SRAM Release notes

Contact us

Questions, or need help? Send us an email at sram-support@surf.nl.

Subscribe to important announcements

Get started

Want to start using SURF Research Access Management? Or do you want to learn more about it in a practical way? Let's get started!


Identity Management

How users authenticate and how their identities are managed across the platform

This capability encompasses the authentication and identity lifecycle management for SRAM users.

SRAM integrates with external Identity Providers via SURFconext, eduGAIN, and eduID.nl to enable researchers to sign in using their existing accounts.

SRAM then establishes a persistent identity for the researcher in the platform, which works across all connected applications.

Collaboration Management

How research teams are formed, governed, and given access to the applications they need

This capability encompasses the management of collaborations, including collaboration membership, user membership in groups, assignment of roles, and researcher access to applications.

The collaboration is the central concept in SRAM. A collaboration represents a research project, team, or community that needs access to shared resources.

Service Integration

How applications connect to SRAM and receive the identity and authorisation information they need

This capability encompasses the technical connection of services to the platform via a range of standard protocols, as well as identity assertion translations, identity enrichment, access policies, and integration of federated users into local environments.

See Identity Management in SRAM - Functional Description for more information

See Collaboration Management in SRAM - Functional Description for more information

See Service Integration in SRAM - Functional Description for more information

Two minute video explanation