VeraIDVeraID
Identity Security
Security Posture (ISPM)Threat Detection (ITDR)Directory IntegrationAI Agent Security
Governance
Lifecycle AutomationOffboarding CascadesComplianceCross-Cloud Correlation
FeaturesSecurityDocumentation
Blog
Partner ProgramMSP PartnersReseller PartnersTechnology PartnersReferral Partners
AboutCareersContact
Pricing
Join WaitlistLogin
Documentation/Identity Management

Identity Management

Create, manage, and secure non-human identities across your infrastructure.

Identity Types

VeraID supports four types of non-human identities, each with specific security controls:

Service Account

Machine-to-machine authentication for backend services, microservices, and internal APIs.

API Key

External API access for partners, customers, and third-party integrations.

CI/CD Token

Deployment pipeline access for GitHub Actions, GitLab CI, Jenkins, and more.

AI Agent

Autonomous AI systems with budget controls, prompt injection detection, and monitoring.

Creating an Identity

API Request
POST /api/v1/identities
Content-Type: application/json

{
  "name": "payment-service",
  "type": "SERVICE_ACCOUNT",
  "description": "Payment processing service",
  "owner": "platform-team@company.com",
  "metadata": {
    "environment": "production",
    "team": "payments"
  }
}

Risk Scoring

Every identity is assigned a dynamic risk score (0-100) calculated from multiple security factors. The score updates automatically based on behavior patterns, credential hygiene, and policy compliance.

Security Factors

FactorWeightTrigger
Failed Authentication+25 points10+ failed attempts in 30 days
Policy Violations+25 points10+ denied actions in 7 days
Geographic Anomaly+20 pointsAccess from unusual locations
Dormant Reactivation+20 pointsInactive 30+ days, then 10+ actions in 24h
Unusual Request Rate+20 pointsPeak rate 3x above average
Credential Not Rotated+15 pointsNo rotation in 90+ days
Unusual Access Hours+15 points50%+ access during 10PM-6AM
Expiring Credential+10 pointsExpires within 7 days
Excessive Permissions+10 pointsPermissions exceed actual usage

AI Agent Risk Factors

AI agent identities have additional security factors monitored:

FactorWeightTrigger
Prompt Injection Detected+30 pointsInjection attempts in requests
Capability Abuse+25 points5+ denied capability requests
Budget Exceeded+20 pointsOver 80% of token budget used
Unusual Model Usage+15 pointsUsing 3+ different AI models
High Cost Rate+15 pointsCost 2x above daily average

Risk Levels

Risk scores are grouped into four levels for quick assessment:

0-24: Low25-49: Medium50-74: High75-100: Critical
Tip: View the detailed risk breakdown for any identity by clicking "View Details" next to the Risk Score in the identity detail page.

Lifecycle Management

Identities move through defined states during their lifecycle:

Active
Suspended
Revoked

Suspended identities can be reactivated. Revoked identities are permanently disabled and all associated credentials are invalidated.