📥 Getting Started with a Demo

Who will I work with during a demo process?

You’ll team up with our field engineers who eat, sleep, and breathe complex IAM challenges. They’ll map out a solution that fits your environment like a glove. After the demo, you’ll get a clear path forward — whether that’s exploring new use cases, running a proof of concept (POC), starting a paid pilot, or mapping out a full implementation plan.

What happens after I request a demo?

We’ll kick things off with a 30-minute call to understand your IAM setup, challenges, and goals. This ensures you receive a personalized demo from our engineers tailored to your environment — no generic sales pitches, just solutions that matter to you.

🔧 Technical Capabilities

How scalable is Strata?

Many of our customers are massive Fortune 500 organizations that handle millions of daily authentication events. Our identity fabric grows right alongside you, whether you’re starting small with a few apps or going enterprise-wide.

How does Strata generate claims for authentication tokens?

Strata’s software pulls user attributes from your existing IDPs or directories (Okta, LDAP, etc.) and dynamically populates tokens with the info your apps need — no complicated, custom-coded solution required.

Will adding new identity services impact users or app owners?

No. You can consolidate IDPs, add MFA, or replace legacy systems in the background — users don’t have to change a thing, and app owners don’t have to rewrite core app code to make most of the admin changes.

Can Strata support hybrid identity environments?

Absolutely. We’ll bridge your on-prem and cloud IDPs, letting them coexist gracefully. Whether rolling out modern identity in phases or dealing with overnight changes after MD&A, we can handle it on your timeline while delivering end users a secure and unified access experience.

Does Strata work with my existing IAM stack and custom authentication requirements?

Yes. Strata is vendor-agnostic and plays nicely with all major IDPs (Okta, Microsoft Entra, Ping, etc.), legacy WAM systems (SiteMinder, Ping Fed, Oracle Access Manager, ADFS, etc.) and any unique protocols, and access policy stores, ensuring compatibility with your highly customized and unique environment.

Is Strata an IDP?

No. Strata is not here to replace your existing providers (unless you want to deprecate old on-prem infra, which we can help you with). Our Identity Orchestration platform connects your apps and IDPs into a unified “identity fabric.” Apps might see Strata as an IDP, but our solution doesn’t manage user identities or store user data. Instead, it translates identity information and brokers authentication across systems.

What do you mean by “Identity Continuity”?

Identity Continuity is your safety net if your primary IDP experiences an outage or goes offline for any reason. Strata can seamlessly fail over to a secondary IDP (cloud or on-prem AD), so your users barely notice an interruption. It’s complimentary to but different from backup and recovery solutions because there’s no “wait for the system to restore” wasted time — just real-time, intelligent failover.

Strata’s air-gapped architecture is secure by design for modern enterprise requirements and also supports public sector DDIL (Disrupted, Degraded, Intermittent, and Low-Bandwidth) environments with limited connectivity.

What exactly are you orchestrating (or not orchestrating)?

Strata’s technology orchestrates all the behind-the-scenes identity stuff — user logins, token generation, attributes, you name it. Basically, your apps only need to talk to Strata, and then our software coordinates all your IDPs and authentication steps.

What we don’t do: Orchestrate IGA workflows and PAM providers. Instead, we stay laser-focused on bridging identity systems so your apps get exactly what they need (authentication data, authorization data, identity attributes/user metadata, session/context information, etc.).

What do you mean by “Identity Orchestration”?

Identity Orchestration is the integration of multi-cloud and hybrid identity systems using a distributed abstraction layer, called an identity fabric, ensuring consistent policy enforcement. By decoupling an application from its associated Identity Provider (IDP), Identity Orchestration can externalize identity processes from your apps. Unlike single-vendor solutions (e.g., Okta, Ping Identity) or workflow automation tools (e.g., Workato, UiPath), it provides vendor-agnostic, cross-platform integration without disrupting existing infrastructure.

🔒 Security and Compliance

Does Strata have a track record of handling mission-critical identity operations?

Absolutely. Some of the largest enterprises and government agencies worldwide rely on Strata to keep their identity environments running smoothly 24/7.

Does Strata introduce a new single point of failure?

No. Our distributed, hybrid architecture is resilient and redundant and can be deployed in any highly available configuration (Docker, Kubernetes, etc.) — no single bottleneck in sight.

How does Strata protect my sensitive data?

We use end-to-end encryption and follow stringent security protocols. Our platform is SOC2 Type II and ISO27001 certified. For the full scoop, check out our Security & Trust Center.

What’s the performance impact of deploying Strata’s orchestrator?

Strata’s orchestrators are designed to be lightweight and highly scalable. In most configurations, the additional latency is minimal — think milliseconds. We’ve tested (and proven) it in massive environments, so you won’t notice a performance hit if you set it upright.

Can Strata be deployed across multiple regions or data centers?

Yes. You can run Strata in multi-region or multi-datacenter setups with high availability and local failover strategies. If one region goes down, the others pick up the slack, keeping your identity operations live.

🚀 Implementation and Deployment

Does Strata require proxying all application traffic?

No. We can do proxied or non-proxied approaches — whichever fits your existing architecture and security requirements.

Is there a professional services team that can help me roll this out?

Yes. Our incredible team of experts will guide you through best practices, training, and ongoing support to make your modernization journey as smooth as possible.

Do I have to do a hard cutover between IDPs?

Nope! Most customers start with a “coexistence” phase, where both legacy and modern IDPs run in parallel. That way, you can roll back easily if needed — no burning bridges. This allows for phased modernization and further de-risks the process if a rollback is needed.

What happens if I’m not ready to modernize all my apps at once?

No problem! Modernize what you want, when you want, and how you want. We’ll meet you wherever you are. Start with a few critical apps if you like and roll out more as needed — no forced migrations here.

What deployment options are available?

We offer on-premises, public cloud (AWS, Azure, GCP), and hybrid setups. Our orchestrators can be deployed in Docker containers, so it’s super flexible.

How long does implementation take?

Your proof-of-concept for key applications will be completed within a few weeks. Full production rollouts for those key applications typically take eight weeks, depending on complexity and scope.

💼 Identity Projects & Business Value

How does Strata align with the principles of Zero Trust Identity?

We centralize policy enforcement, unify SSO, and support attribute-based access. We’re also a single enforcement point for cutting off risky sessions if you get alerted to a threat. Zero Trust done right.

What is the pricing model?

Strata offers predictable, transparent pricing based on the number of apps and IDPs in your environment. If you prefer a traditional user-based model, that is available too!

Can Strata help organizations consolidate multiple identity providers into one?

Absolutely. We let you centralize everything under a primary IDP of your choice, but we’ll also keep those legacy systems around for a smooth transition.

Does Strata support federated authentication across business entities?

Yes. We can enable identity federation across different orgs, perfect for MD&A situations, partner or third-party user access requirements, or multi-tenant setups where cross-organization login is needed.

Can Strata support authentication for legacy applications that don’t “speak” modern identity standards?

Sure can! This is our jam. Strata can “bridge” those old-school authentication methods, letting them talk to modern IDPs. So even if your app was written back when flip phones were cool, you can still leverage OAuth, OIDC, or SAML behind the scenes.

🔄 Identity Continuity and Resilience

Why do I need continuity if my cloud IDP vendor states it is reliable?

Even 99.99% uptime can mean a few minutes of downtime each month, plus misconfigurations, regional outages, etc. With Strata, if one IDP stalls, we instantly switch to another without missing a beat.

How does Identity Continuity preserve app access if my primary IDP goes down?

Strata automatically fails over to your backup IDP — cloud or on-prem. Your users keep going like nothing happened, avoiding those 3 A.M. “system’s down” fire drills.

⚙️ Advanced Technical Questions

Advanced and technical information

For more advanced and technical information, please visit docs.strata.io

This FAQ provides an overview of Strata’s capabilities and solutions. If you have additional questions, our team is here to help. When you speak with an Identity Expert, we can explore:

  • The best deployment models for your environment.
  • How Strata integrates with your legacy systems and IDPs.
  • Key use cases include Unified SSO, compliance-driven MFA, hybrid identity consolidation, and legacy app modernization.
  • Strategies for building a more resilient IAM infrastructure.

Still have questions? Contact us to discuss your specific needs.