Welcome to Galeo

Galeo is an Identity and Access Management (IAM) platform. It gives organizations a single place to manage who exists in the workforce, how they prove their identity, what they are allowed to do, and how access is requested, approved, and reviewed over time.

Galeo is delivered as two products that share one platform:

• Identity Platform is single sign-on, multi-factor authentication, federation, the user directory, and the application catalog.
• Identity Governance is a superset of the Identity Platform. It adds authorization, access requests and approvals, lifecycle automation, recertification, and Privileged Access Management.

If you are new to Galeo, the What is Galeo page is the right starting point.

Concepts

The concept pages explain how Galeo works, not just how to click through it.

• What is Galeo and the two-product split.
• Tenants and what is isolated between them.
• Deployment models for on-premises single-tenant and shared multi-tenant.
• Authentication overview for methods, MFA, and federation.
• Authorization model for applications, roles, and grants.
• Lifecycle and governance for joiner, mover, leaver, returner, and recertification.
• Shared Signals Framework for what SSF, CAEP, and RISC are.
• Audit and events for the recording surfaces.

How-to guides

• Getting started is a tour of the admin dashboard.
• Managing users and Groups for the directory side of the product.
• Applications and Access policies for registering apps and controlling who can use them.
• Workflows for multi-step approval and lifecycle automation.
• API keys for letting external systems call Galeo.

Reference

• Glossary for every acronym used in the docs.
• Architecture for the conceptual map of every moving piece.
• API keys deep dive for the full request and response shapes for invoking workflows from partner systems.