Let teams self-serve
access controls

The modern identity directory that automatically updates access when projects change

Screenshot of Oblique

Access controls are a mess

It's hard to understand what employees have access to and why

Most organizations' entitlements have evolved haphazardly. Ad hoc changes, cloned permissions and overprovised access "just in case" creates a tangled web of entitlements that nobody fully understands.

When employees get stuck, they turn to IT for help. But IT and security teams don't have the context as to why someone needs access — and so shouldn't be managing most access controls.

Get your access controls under control

Meet the identity directory for effective IT teams

We're here to help you get to more maintainable access controls.

Effective access controls must be usable by everyone — not just IT and security teams, but all employees. Complex systems are not only a barrier to getting work done, but also overwhelm IT teams with access request tickets.

Your access controls should reflect your organization's unique structures and workflows, and be able to handle exceptions. Overly rigid controls are fragile.

Reviewing every access change doesn't scale. Even though your organization is growing, your IT and security teams may not be. Instead, establish guardrails that guide teams toward secure choices while giving them autonomy.

By streamlining access management changes, you not only free up precious time, but also establish a single source of truth for entitlements that can be properly audited. This visibility lets you identify excessive permissions and meaningfully reduce access risks in ways that reactive ticket processing never could.

Why Oblique?

Scale access securely and automatically

Oblique lets teams manage and debug their own access. Set rules once, then let teams self-serve within your guardrails.

Self-serve

Get users unstuck quickly

The key to scaling access is empowering users to self-serve and debug their own access within clear security guardrails.

Clear.
Enable users to debug issues with their access, rather than just requesting new access.
Human-friendly.
Meet users where they work — by helping them debug their issues directly in Slack.
Get users unstuck quickly

Explainable

Reason about access

Define team-based permissions.
Define permissions for teams, like who works on what. When access controls map to a team’s actual work, you can actually understand why someone has access to something
Make access, well, accessible.
Understand how access is inherited, how it has changed over time, and how it's used.
Simplify compliance.
Complete user access reviews faster, thanks to context as to why a user has access.
Reason about access

Programmatic

Define entitlements as code

Version controlled.
Roll back to prior versions and understand change history.
Configurable.
Build workflows that are right for your organization, including testing changes before they're applied.
Extensible.
Use Oblique with your custom internal applications.
Define entitlements as code

Policy-based

Manage security pragmatically

Deny policies.
Set guardrails to restrict access that should never happen, without intervention.
Exception management.
Manage necessary exceptions with limitations on who can request them and mandatory expiration.
Expiring access.
Prevent access sprawl by expiring access and exceptions automatically.
Scalable.
Spend your time setting policy, not reviewing tickets.
Manage security pragmatically

Our approach

How Oblique works

Oblique is a drop-in tool that fits between your existing HRIS and your identity provider. Entitlements from Oblique are enforced by your identity provider.

  1. Pull employee data from HRIS

    Oblique pulls information about users and their attributes from your HRIS system, and detects changes that may have downstream effects. Your source of truth for employee data remains your HRIS.

  2. Employees self-define team in Oblique

    Your organization's managers and employees define, maintain, and update who works on what in a team directory. Access dynamically updates when these change.

  3. Define entitlements in Oblique

    Your IT and security team define groups, entitlements, and policies in a central system of record. Use both role- and attribute-based groups to define access.

  4. Push access controls to enforcement points

    Oblique makes changes to your corp and prod access by pushing effective groups to your identity provider, as well as other group management systems and internal applications. Oblique isn't in line for any access decisions.

    5. Manage groups for your whole stack

    Sources for users and attributes:

  5. Workday
    Users, titles, reporting chain, and more

    6. Destinations for effective groups:

  6. Okta
    Okta groups and Okta group rules
  7. Google Workspace
    Google Groups
  8. GitHub
    GitHub teams and GitHub repositories
  9. Slack
    Slack teams
  10. Internal apps
    Your custom groups
how it works

Stay updated

Get the latest product news and updates

Signup image

Ready to simplify access management?

Experience the joy of fewer IT tickets

We'd love to help you get to more maintainable access controls