Welcome to Maverics - Maverics Documentation

Maverics is Strata Identity’s orchestration platform for modern, legacy, and AI identity. The Orchestrator — a lightweight identity abstraction layer — routes authentication and authorization between your applications and any identity provider, while the Maverics Console provides a visual interface for managing connectors, policies, and configurations.

Why Maverics

Extend identity to AI — Connect enterprise identity to MCP servers and AI-powered applications through the AI Identity Gateway without rebuilding your identity infrastructure from scratch.
Vendor independence — Work with any identity provider, any protocol. Maverics translates bidirectionally between SAML, OIDC, LDAP, and header-based auth so you’re never locked into a single vendor’s ecosystem.
Identity Continuity — Maverics monitors IdP health and automatically fails over to a backup when an outage is detected. Multi-tier resilience options range from basic failover to tactical edge deployments that operate autonomously when cloud connectivity is severed.
Modernize apps without code changes — Add SSO, MFA, and authorization policies to applications that don’t natively support them. Maverics acts as an identity-aware reverse proxy so applications need zero modification.
Data stays in your environment — Maverics is self-hosted inside your infrastructure. Authentication traffic — tokens, credentials, user attributes — never leaves your environment. Only configuration flows through the cloud.
Zero-downtime migration — Migrate between identity providers incrementally. Maverics routes authentication between old and new providers simultaneously so you can move users at your own pace with no rip-and-replace.
Programmable at every layer — Service extensions give you 30+ hook points across the authentication and authorization lifecycle with an embedded Go runtime. Customize request handling, build custom API endpoints, or integrate with any external system.

What You Can Do

Maverics handles the identity complexity so you can focus on your applications.

Migrate Identity Providers

Move users from one identity provider to another incrementally, with zero downtime and no application changes.

Add SSO to Legacy Apps

Add SAML or OIDC single sign-on to legacy applications that only support header-based or forms-based authentication, without modifying application code.

Protect APIs

Enforce fine-grained authorization policies on API endpoints using OAuth 2.0 token validation, claim-based routing, and policy evaluation.

Secure AI Applications

Extend enterprise identity and authorization to MCP servers and AI-powered applications through the AI Identity Gateway.

Consolidate Multi-Cloud Identity

Unify identity across AWS, Azure, GCP, and on-premises environments through a single orchestration layer.

Who Is Maverics For

IAM Administrators

Tired of risky, all-or-nothing identity migrations? Use Maverics to migrate users between identity providers incrementally, configure SSO federation across protocols, and manage authentication policies — all without custom code or application changes.

Platform Engineers

Struggling with identity sprawl across environments? Deploy the Orchestrator as a lightweight identity abstraction layer, manage configuration with YAML and GitOps, and integrate with your existing secrets and caching infrastructure.

Developers

Need identity in your applications without becoming an IAM expert? Maverics simplifies application design with an extensible identity layer, built-in AI identity support, and standard protocol handling — so you can focus on features, not auth plumbing.