> ## Documentation Index
> Fetch the complete documentation index at: https://docs.strata.io/llms.txt
> Use this file to discover all available pages before exploring further.
# Welcome to Maverics
export function StatusWidget() {
const [indicator, setIndicator] = useState(null);
const [description, setDescription] = useState("");
useEffect(() => {
const controller = new AbortController();
const timeout = setTimeout(() => controller.abort(), 5000);
fetch(API_URL, {
signal: controller.signal
}).then(response => response.json()).then(data => {
setIndicator(data.status && data.status.indicator ? data.status.indicator : "none");
setDescription(data.status && data.status.description ? data.status.description : "");
}).catch(() => {}).finally(() => clearTimeout(timeout));
return () => {
controller.abort();
clearTimeout(timeout);
};
}, []);
if (indicator === null) {
return null;
}
const info = STATUS_MAP[indicator] || STATUS_MAP.none;
return {info.label};
}
Maverics is Strata Identity's orchestration platform for modern, legacy, and AI identity. The **Orchestrator** -- a lightweight identity abstraction layer -- routes authentication and authorization between your applications and any identity provider, while the **Maverics Console** provides a visual interface for managing connectors, policies, and configurations.
### Why Maverics
* **Extend identity to AI** -- Connect enterprise identity to MCP servers and AI-powered applications through the AI Identity Gateway without rebuilding your identity infrastructure from scratch.
* **Vendor independence** -- Work with any identity provider, any protocol. Maverics translates bidirectionally between SAML, OIDC, LDAP, and header-based auth so you're never locked into a single vendor's ecosystem.
* **Identity Continuity** -- Maverics monitors IdP health and automatically fails over to a backup when an outage is detected. Multi-tier resilience options range from basic failover to [tactical edge deployments](/guides/identity-continuity/reducing-spofs) that operate autonomously when cloud connectivity is severed.
* **Modernize apps without code changes** -- Add SSO, MFA, and authorization policies to applications that don't natively support them. Maverics acts as an identity-aware reverse proxy so applications need zero modification.
* **Data stays in your environment** -- Maverics is self-hosted inside your infrastructure. Authentication traffic -- tokens, credentials, user attributes -- never leaves your environment. Only configuration flows through the cloud.
* **Zero-downtime migration** -- Migrate between identity providers incrementally. Maverics routes authentication between old and new providers simultaneously so you can move users at your own pace with no rip-and-replace.
* **Programmable at every layer** -- [Service extensions](/reference/orchestrator/service-extensions) give you 30+ hook points across the authentication and authorization lifecycle with an embedded Go runtime. Customize request handling, build custom API endpoints, or integrate with any external system.
## What You Can Do
Maverics handles the identity complexity so you can focus on your applications.
Move users from one identity provider to another incrementally, with zero downtime and no application changes.
Add SAML or OIDC single sign-on to legacy applications that only support header-based or forms-based authentication, without modifying application code.
Enforce fine-grained authorization policies on API endpoints using OAuth 2.0 token validation, claim-based routing, and policy evaluation.
Extend enterprise identity and authorization to MCP servers and AI-powered applications through the AI Identity Gateway.
Unify identity across AWS, Azure, GCP, and on-premises environments through a single orchestration layer.
## Who Is Maverics For
Tired of risky, all-or-nothing identity migrations? Use Maverics to migrate users between identity providers incrementally, configure SSO federation across protocols, and manage authentication policies -- all without custom code or application changes.
Struggling with identity sprawl across environments? Deploy the Orchestrator as a lightweight identity abstraction layer, manage configuration with YAML and GitOps, and integrate with your existing secrets and caching infrastructure.
Need identity in your applications without becoming an IAM expert? Maverics simplifies application design with an extensible identity layer, built-in AI identity support, and standard protocol handling -- so you can focus on features, not auth plumbing.
## Security & Compliance
Deploy in your own infrastructure with full control over secrets, certificates, and network policies. Nothing leaves your environment unless you choose it.
Configuration bundles are cryptographically signed and verified before every deployment, ensuring only authorized changes reach your Orchestrators.
Every authentication event, configuration change, and administrative action is logged for compliance reporting and forensic analysis.
Certifications, security practices, penetration testing results, and compliance documentation.
## Explore the Docs
The documentation is organized by what you're trying to accomplish.
Deploy your first Orchestrator and route an authentication request in minutes.
Understand how the Orchestrator, Console, and identity providers fit together.
Step-by-step walkthroughs for authentication, AI identity, operations, and security.
Operating modes, configuration, route handling, and runtime behavior.
Identity providers, config sources, secret providers, caches, and sessions.
Complete configuration reference for apps, connectors, policies, and service extensions.
Watch video walkthroughs covering setup, configuration, and common workflows.