Kleidia - YubiKey & FIDO2 Management for AD / Entra Environments
Deploy and manage hardware-backed authentication for AD / Entra & OIDC apps at scale — without per-user licensing or SaaS.
Built For
European government agencies · Critical infrastructure & utilities · Regulated enterprises (finance, telco, healthcare)
Key Features
- Runs in your own infrastructure - On-prem or your cloud, no SaaS dependency
- End-User Self-Service - Users can safely reset PINs and manage certificates without opening tickets
- FIDO2 & WebAuthn - Full support for modern passwordless authentication
- AD / Entra / OIDC Integration - Connects to your existing identity infrastructure
- Device Lifecycle - Auto-detection, PIN/PUK management, certificate operations
- Air-Gap Deployable - Highly available Kubernetes architecture
Transparent Pricing
€19,000/year - Flat annual pricing with unlimited users. Support during EU business hours included.
Professional services quoted separately. Managed appliance option available.
Licence terms designed to fit standard EU public-sector contracts.
How It Fits Your Stack
- Connects to AD / Entra ID via OIDC
- OpenBao as intermediate CA under your PKI
- Manages YubiKeys & FIDO2 on workstations
Data Sovereignty
EU-based development. Deploy on your own infrastructure with full data control. No vendor lock-in.
Made in EU
About Kleidia |
Full site content |
Documentation