Operation

IAM Securely Operated in Germany

Bare.ID operates your IAM as SaaS in German data centers. If required, the same solution can also be used in a hybrid or on-premises / self-hosted setup.

Contact Sales
Managed IAM Operation with Bare.ID

The Easy Path to Sovereign Operation

100%

Geo-redundant Operation

KRITIS-compliant, multi-redundant, and designed according to BSI guidelines – even for highly scaled multi-user scenarios.

100%

German Supply Chain

Development, hosting, and support entirely in Germany – for full control, legal certainty, and true digital sovereignty.

99.99%

Availability

Highly available operation even during peak loads thanks to Kubernetes multi-cluster architecture.

SaaS Operation under German Responsibility

Sovereign Delivery

Bare.ID operates IAM as SaaS exclusively in Germany – from development and hosting to ongoing operation and support. All services are provided entirely within the German legal and regulatory framework. Bare.ID's SaaS operation takes place in certified data centers in Germany and meets the requirements of the BSI C5 catalog of criteria. This makes the operation auditable, transparent, and suitable for use in the public sector.

100% German Supply Chain
Switch to self-hosted / hybrid setups of the same solution at any time
Clear responsibilities without third-country dependencies
High Availability & Operational Security

Ready for Peak Loads

Available when it counts. Bare.ID's SaaS operation is designed for reliability and peak loads.
Thanks to Kubernetes multi-cluster operation, your IAM platform remains stably available even with millions of logins. Especially when self-hosting Keycloak, such load peaks pose challenges for many organizations:
Cluster setup, load distribution, updates, and maintenance windows must be planned, tested, and coordinated. Bare.ID fully handles this complexity.

99.99% Availability via Kubernetes Multi-Cluster Setup
Geo-redundant operation (KRITIS-ready)
Plannable maintenance windows outside of usual business hours
Clearly defined and guaranteed SLAs
Security, Updates & No Vendor Lock-in

Secure, Up-to-date – and Always Verifiable

Bare.ID takes over the complete security operation of your IAM platform. This naturally includes consistently automated patch and update management, continuous monitoring, and structured security and quality checks of all software components – including the open-source core. No more outdated Keycloak, no more unnecessary security vulnerabilities.

Automated Patch & Update Management by Bare.ID
Always up-to-date Keycloak versions in SaaS operation
Audited Software: Transparent Open-Source Core
Easy switch back to a current Keycloak version at any time
Operational Flexibility

Choose the operating model that suits you

Bare.ID's SaaS operation already meets high demands from the public sector and critical infrastructure (KRITIS) environments. For specific circumstances, Bare.ID also professionally and practically supports alternative operating models. Our principle: The same Bare.ID platform for all operating models.

Suitable for:

  • Special requirements in the public sector
  • Special compliance or architectural requirements
  • Hybrid cloud and on-premise setups

SaaS with Bare.ID

Digitally sovereign operation in certified data centers in Germany.

On-Prem / Self-Hosted

When maximum control or specific compliance requirements are necessary.

Hybrid

International setups or when individual applications must remain local.

Who supports you?

Bare.ID: the IAM experts you can count on.

Bare.ID combines product development, security architecture, and regulatory expertise in one team.

  • Deep Keycloak & IAM expertise
  • Experience in regulated industries
  • Support from Bare.ID-certified partners
  • Development, support, operations & consulting exclusively in and from Germany
  • Business processes certified according to ISO/IEC 27001
About Bare.ID
Some of Our Clients
All things IAM

Blog Articles, Case Studies & More

To the Content Hub
Questions and Answers

FAQs

Still have questions? Feel free to schedule a no-obligation discovery call.

Contact Sales

Can Bare.ID be operated in your own data center?

Yes, Bare.ID can be operated entirely on-premise or in a private cloud. The necessary hardware requirements and an operating manual are provided to ensure smooth self-operation.

Which operating models does Bare.ID support – and how do they differ?

Bare.ID can be operated as SaaS, Hybrid, or fully Self-Hosted/On-Premises. In the SaaS model, Bare.ID handles the complete operation, including updates, monitoring, and security. Hybrid combines cloud convenience with local components, for example, for particularly critical applications. In On-Premises/Self-Hosted operation, the technical responsibility lies entirely with the customer's IT – supported by best practices and optional consulting services from Bare.ID.

Where is Bare.ID operated in the SaaS model?

Bare.ID is operated exclusively in certified data centers in Germany. All operational and security processes are carried out entirely in Germany.

What do Active-Active and Active-Passive operations mean?

Active-Active means that multiple Bare.ID instances process requests simultaneously (high availability and load distribution). Active-Passive uses standby instances that are only activated if the primary instance fails. Bare.ID supports both modes.

How can performance peaks and highly fluctuating loads be handled?

Bare.ID automatically scales in SaaS operation via a multi-cluster setup and can dynamically balance high load peaks. The platform distributes requests across multiple active nodes and automatically increases capacities.

Which compliance and security standards do SaaS operations meet?

SaaS operations comply with German security and data protection requirements, including GDPR and ISO 27001-compliant processes. Operations management adheres to BSI guidelines, including geo-redundant multi-cluster setups, continuous monitoring, and regular penetration tests. The infrastructure meets the requirements of the BSI C5 catalog (C5 conformity of the underlying data center).

Which backup strategies does Bare.ID support?

Bare.ID performs automatic backups: daily full backups, hourly incremental backups, and point-in-time recovery for the last 30 days. Via standard interfaces, companies can also export their own data from the SaaS platform and secure it themselves. For on-premise deployments, custom backup strategies can be implemented.

How is it ensured that configuration changes do not accidentally disrupt production operations?

Customers receive a dedicated staging/test environment. New policies (e.g., mandatory MFA), branding adjustments, or new integrations can be tested and approved there before going live.

How can the platform be administered without giving all admins full access?

Bare.ID supports fine-grained administrator roles. Teams like Helpdesk can be restricted to specific tasks (e.g., password or MFA reset) without being able to view or modify security-critical configurations.

Contact Us

Schedule a free initial consultation now.

It's that simple: 

1

Leave your contact details.

2

Our product experts will contact you to schedule an appointment.

3

Get a free consultation for implementing Bare.ID in your company.

Contact Information

Please fill out the following fields and we will get back to you as soon as possible.

How did you hear about us?*

Thank you for your message!

We have received your request and will get back to you as soon as possible.

Oops, something went wrong. Please check your details and try again.