okta
Auto Added by WPeMatico
Auto Added by WPeMatico
ForgeRock filed its form S-1 with the Securities and Exchange Commission (SEC) this morning as the identity management provider takes the next step toward its IPO.
The company did not provide initial pricing for its shares, which will trade on the New York Stock Exchange under the symbol FORG. The IPO is being led by Morgan Stanley and J.P. Morgan Chase & Co., with the company being valued as high as $4 billion, according to Bloomberg, which is a significant uplift over the $730 million post-money value that PitchBook had for the company after its last round in 2020.
With the ever-increasing volume of cybersecurity attacks against organizations of all sizes, the need to secure and manage user identities is of growing importance. Based in San Francisco, ForgeRock has raised $233 million in funding across multiple rounds. The company’s last round was a $93.5 million Series E announced in April 2020, which was led by Riverwood Capital alongside Accenture Ventures. At that time, CEO Fran Rosch told TechCrunch that the round would be the last before an IPO, which was also what former CEO Mike Ellis told us after the startup’s $88 million Series D in September 2017.
While the timing of its IPO might have been unclear over the last few years, the company has been on a positive trajectory for growth. In its S-1, ForgeRock reported that as of June 30, its annual recurring revenue (ARR) was $155 million, representing 30% year-over-year growth.
While revenue is growing, losses are narrowing as the company reported a $20 million net loss down from $36 million a year ago. There certainly is a whole lot of room to grow, as the company estimates that the total global addressable market for identity services to be worth $71 billion.
Among the many competitors that ForgeRock faces is Okta, which went public in 2017 and has been growing in the years since. In March, Okta acquired cloud identity startup Auth0 for $6.5 billion in a deal that raised a few eyebrows. Another competitor is Ping Identity, which went public in 2019 and is also growing, reporting on August 4 that its ARR hit $279.6 million in its quarter ended June 30, for a 19% year-over-year gain. There have also been a few big exits in the space over the years, including Duo Security, which was acquired by Cisco for $2.35 billion in 2018.
“ForgeRock has a good access management tool and they continue to be a strong player in customer identity and access management (CIAM),” commented Michael Kelley, senior research director at Gartner.
Kelley noted that in 2020, ForgeRock converted most of its core access management services to a SaaS delivery model, which helped the company catch up with the rest of the market that already offered access management as SaaS. Also last year the company expanded into identity governance, introducing a brand new identity, governance and administration (IGA) product.
“I think one of the more interesting products that ForgeRock offers is ForgeRock Trees, which is a no-code/low-code orchestration tool for building complex authentication and authorization journeys for customers, which is particularly helpful in the CIAM market,” Kelly added.
ForgeRock was founded in 2010, but its roots go back even further to an open-source single sign-on project known as OpenSSO that was created by Sun Microsystems in 2005. When Oracle acquired Sun Microsystems in early 2010, a number of its open-source efforts were left to languish, which is what led a number of former Sun employees to start ForgeRock.
Over the last decade, ForgeRock has expanded significantly beyond just providing a single sign-on to providing an identity platform that can handle consumer, enterprise and IoT use-cases. The company’s platform today handles identity and access management as well as identity governance.
The ability to scale is a key selling point that ForgeRock makes in the S-1, noting that its platform can handle over 60,000 user-based access transactions per second per customer.
“As of June 30, 2021, we had four customers with 100 million or more licensed identities, the company stated in the S-1. “Our ability to serve mission-critical needs in complex environments for large customers enables us to grow our base of large customers and expand within each of them. “
Powered by WPeMatico
Okta today announced it was expanding its platform into a couple of new areas. Up to this point, the company has been known for its identity access management product, giving companies the ability to sign onto multiple cloud products with a single sign on. Today, the company is moving into two new areas: privileged access and identity governance
Privileged access gives companies the ability to provide access on an as-needed basis to a limited number of people to key administrative services inside a company. This could be your database or your servers or any part of your technology stack that is highly sensitive and where you want to tightly control who can access these systems.
Okta CEO Todd McKinnon says that Okta has always been good at locking down the general user population access to cloud services like Salesforce, Office 365 and Gmail. What these cloud services have in common is you access them via a web interface.
Administrators access the speciality accounts using different protocols. “It’s something like secure shell, or you’re using a terminal on your computer to connect to a server in the cloud, or it’s a database connection where you’re actually logging in with a SQL connection, or you’re connecting to a container, which is the Kubernetes protocol to actually manage the container,” McKinnon explained.
Privileged access offers a couple of key features including the ability to limit access to a given time window and to record a video of the session so there is an audit trail of exactly what happened while someone was accessing the system. McKinnon says that these features provide additional layers of protection for these sensitive accounts.
He says that it will be fairly trivial to carve out these accounts because Okta already has divided users into groups and can give these special privileges to only those people in the administrative access group. The challenge was figuring out how to get access to these other kinds of protocols.
The governance piece provides a way for security operations teams to run detailed reports and look for issues related to identity. “Governance provides exception reporting so you can give that to your auditors, and more importantly you can give that to your security team to make sure that you figure out what’s going on and why there is this deviation from your stated policy,” he said.
All of this when combined with the $6.5 billion acquisition of Auth0 last month is part of a larger plan by the company to be what McKinnon calls the identity cloud. He sees a market with several strategic clouds and he believes identity is going to be one of them.
“Because identity is so strategic for everything, it’s unlocking your customer, access, it’s unlocking your employee access, it’s keeping everything secure. And so this expansion, whether it’s customer identity with zero trust or whether it’s doing more on the workforce identity with not just access, but privileged access and identity governance. It’s about identity evolving in this primary cloud,” he said.
While both of these new products were announced today at the company’s virtual Oktane customer conference, they won’t be generally available until the first quarter of next year.
Powered by WPeMatico
At its Oktane21 conference, Okta, the popular authentication and identity platform, today announced a new — and free — developer edition that features fewer limitations and support for significantly more monthly active users than its current free plan.
The new ‘Okta Starter Developer Edition,’ as it’s called, allows developers to scale up to 15,000 monthly active users — up from only 1,000 on its existing free plan. In addition, the company is also launching enhanced documentation, a set of sample apps and new SDKs, which now cover languages and frameworks like Go, Java, JavaScript, Python, Vue.js, React Native and Spring Boot.
“Our overall philosophy isn’t, ‘we want to just provide […] a set of authentication and authorization services.’ The way we’re looking at this is, ‘hey, app developer, how do we provide you the foundation you need to get up and running quickly with authorization and authentication as one part of it,’ ” Diya Jolly, Okta’s chief product officer, told me. And she believes that Okta is in a unique position to do so, because it doesn’t only offer tools to manage authorization and access, but also systems for securing microservices and providing applications with access to privileged resources.
It’s also worth noting that, while the deal hasn’t closed yet, Okta’s intent to acquire Auth0 significantly extends its developer strategy, given Auth0’s developer-first approach.
As for the expanded free account, Jolly noted that the company found that developers wanted to be able to access more of the service’s features during their prototyping phases. That means the new free Developer Edition comes with support for multi-factor authentication, machine-to-machine tokens and B2B integrations, for example, in addition to expanded support for integrations into toolchains. As is so often the case with enterprise tools, the free edition doesn’t come with the usual enterprise support options and has lower rate limits than the paid plans.
Still, and Jolly acknowledged this, a small to medium-sized business may be able to build applications and take them into production based on this new free plan.
“15K [monthly active users] is is a lot, but if you look at our customer base, it’s about the right amount for the smaller business applications, the real SMBs, and that was the goal. In a developer motion, you want people to try out things and then upgrade. I think that’s the key. No developer is going to come and build with you if you don’t have a free offering that they can tinker around and play with.”
She noted that the company has spent a lot of time thinking about how to support developers through the application development lifecycle overall. That includes better CLI tools for developers who would rather bypass Okta’s web-based console, for example, and additional integrations with tools like Terraform, Kong and Heroku. “Today, [developers] have to stitch together identity and Okta into those experiences — or they use some other identity — we’ve pre-stitched all of this for them,” Jolly said.
The new Okta Starter Developer Edition, as well as the new documentation, sample applications and integrations, are now available at developer.okta.com.
Powered by WPeMatico
When Okta announced that it was acquiring Auth0 yesterday for $6.5 billion, the deal raised eyebrows. After all, it’s a substantial amount of money for one identity and access management (IAM) company to pay to buy another, similar entity. But the deal ultimately brings together two companies that come at identity from different sides of the market — and as such could be the beginning of a beautiful identity friendship.
The deal ultimately brings together two companies that come at identity from different sides of the market — and as such could be the beginning of a beautiful identity friendship.
On a simple level, Okta delivers identity and access management (IAM) to companies who use the service to provide single-sign-on access for employees to a variety of cloud services — think Gmail, Salesforce, Slack and Workday.
Meanwhile, Auth0 is a developer tool providing coders with easy API access to single-sign-on functionality. With just a couple of lines of code, the developer can deliver IAM tooling without having to build it themselves. It’s a similar value proposition to what Twilio offers for communications or Stripe for payments.
The thing about IAM is that it’s not exciting, but it is essential. That could explain why such a large number of dollars are exchanging hands. As Auth0 co-founder and CEO Eugenio Pace told TechCrunch’s Zack Whittacker in 2019, “Nobody cares about authentication, but everybody needs it.”
Putting the two companies together generates a fairly comprehensive approach to IAM covering back end to front end. We’re going to look at why this deal matters from an identity market perspective, and if it was worth the substantial price Okta paid to get Auth0.
When you think about identity and access management, it’s about making sure you are who you say you are, and that you have the right to enter and access a set of applications. That’s why it’s a key part of any company’s security strategy.
Gartner found that IAM was a $12 billion business last year with projected growth to over $13.5 billion in 2021. To give you a sense of where Okta and Auth0 fit, Okta just closed FY2021 with over $800 million in revenue. Meanwhile Auth0 is projected to close this year with $200 million in annual recurring revenue.
Image Credits: Gartner
Among the top players in this market according to Gartner’s November 2020 Magic Quadrant market analysis are Ping Identity, Microsoft and Okta in that order. Meanwhile Gartner listed Auth0 as a key challenger in their market grid.
Michael Kelly, a Gartner analyst, told TechCrunch that Okta and Auth0 are both gaining something from the deal.
“For Okta, while they have a very good product, they have marketing muscle and adoption rates that are not available to smaller vendors like Auth0. When having [IAM] conversations with clients, Okta is almost always on the short list. Auth0 will immediately benefit from being associated with the larger Okta brand, and Okta will likewise now have credibility in the deals that involve a heavy developer focused buyer,” Kelly told me.
Okta co-founder and CEO Todd McKinnon said he was enthusiastic about the deal precisely because of the complementary nature of the two companies’ approaches to identity. “How a developer interacts with the service, and the flexibility they need is different from how the CIO wants to work with [identity]. So by giving customers this choice and support, it’s really compelling,” McKinnon explained.
Powered by WPeMatico
As Okta announced earnings today after the bell, it revealed that it’s buying cloud identity startup Auth0 for a hefty $6.5 billion. The company had a valuation of $1.92 billion when it raised $120 million led by Salesforce Ventures last July.
With Auth0, Okta gets a cloud identity company that helps developers embed identity management into applications, adding an entirely new dimension to its identity platform. Okta co-founder and CEO Todd McKinnon says the acquisition gives his company broad coverage in the identity space and the acquisition has the power to lift identity to a first-class cloud category along with infrastructure, enterprise software like collaboration and CRM and others.
“There are a few other [primary cloud categories], but one of those has to be identity. And for identity to rise to that status, it has to cover all the use cases. It’s got to be both workforce and customer. So workforce [has been] our [primary] business traditionally, and customer is newer,” McKinnon told me.
The customer piece involves having your customers use Okta/Auth0 on the back end to sign onto your platform, rather using it as just your corporate credentials. Having coverage across both areas is what has McKinnon so excited.
Eugenio Pace, co-founder and CEO Auth0 sees his company together with Okta as powerful combination in the identity management space, and he’s not just hyping the deal when he says that. “Together, we can offer our customers workforce and customer identity solutions with exceptional speed, simplicity, security, reliability and scalability. By joining forces, we will accelerate our customers’ innovation and ability to meet the needs and demands of consumers, businesses and employees everywhere,” Pace said in a statement.
Pace and co-founder Matias Woloski came from Microsoft where they worked until launching their startup in 2013. As McKinnon points out this is a substantial company with 800 employees. It is expected to reach $200 million in revenue this year.
“So they have this mindset of building a service that is flexible and API-driven and great tools for developers and all the extensibility or customizability, that developers would need. And you can’t, you can’t do that later, you have to start from the beginning
McKinnon says while they share some common customers, there will be net new ones as well and the nature of the two companies coverage areas means that they can sell Auth0 into traditional Okta customers and vice versa. The combined entities could fill in a soup-to-nuts kind of identity offering.
As Pace told TechCrunch’s Zack Whittaker in 2019, it has always been focused on developers:
“We’re not profitable because we’ve chosen to reinvest and continue to sustain the high scale of growth,” he said. “But we are more efficient every day — in the way we acquire customers, the way we service customers, in the way we ship new design capabilities.”
The question is how much this will change under the Okta, but Auth0 users can breathe a sigh of relief in that McKinnon says that the company will operate as an independent unit inside of Okta as they look for paths to integration in the coming months. What’s more, McKinnon says he has a relationship with the two founders going back years and it sounds like there is an element of trust there.
Okta had a pretty good quarter too while it was at it, announcing $234.7 million in revenue up 40% year over year, but Wall Street appears to be unhappy with the deal with the stock price down 6.9% in after hours trading.
Auth0 was founded in 2013 and raised over $300 million along the way. In addition to Salesforce Ventures, other investors included Sapphire Ventures, Bessemer Venture Partners and Meritech Capital Partners.
Powered by WPeMatico
BeyondID, a cloud identity consulting firm, announced a $9 million Series A today led by Tercera. It marked the first investment from Tercera, a firm that launched earlier this month with the goal of investing in service startups like Beyond.
The company focuses on helping clients manage security and identity in the cloud, taking aim specifically at Okta customers. In fact, the firm is a platinum partner for Okta. As they describe their goals, they help clients in a variety of areas, including identity and access management, secure app modernization, Zero Trust security, cloud migration and integration services.
CEO and co-founder Arun Shrestha has a deep background in technology, including working with Okta from its early days. Shrestha came on board in 2012 as the head of customer success. When he began, the startup was in early days, with just 50 customers. When he left five years later just before the IPO, it had more than 3,500.
Along the way, he gained a unique level of expertise in the Okta tool set, and he decided to put that to work to help Okta customers implement and maximize Okta usage, especially in companies with complex implementations. He launched BeyondID in 2018 with the intention of focusing on systems integrations and managing a company’s identity in the cloud.
“We believe we are becoming a managed identity service provider, so managing anything identity, anything related to cybersecurity. We’re helping these companies by being a one-stop shop for companies acquiring, deploying and managing identity services,” Shrestha explained.
It seems to be working. The last couple of years the company revenues grew at 300% and as it matures, and the growth rates settle a bit, it’s still expected to grow between 70 and 100% this year. The firm has 250 customers, including FedEx, Major League Baseball, Bain Capital and Biogen.
It currently has 75 employees serving those customers with plans to grow that number in the next year with the help from today’s investment. As Shrestha adds new employees, he sees building a diverse workforce as a crucial goal for his company.
“Diversity is absolutely critical to our long-term sustainable success, and it’s also the right thing to do,” he said. He says that building an organization that promotes women and people of color is a key goal of his as the leader of the company and something he is committed to.
Chris Barbin, who is managing partner and founder at lead investor Tercera, says that he chose BeyondID as the firm’s first investment because he believes identity is central to the notion of digital transformation. As more companies move to the cloud, they need help understanding how security and identity work differently in a cloud context, and he sees BeyondID playing a critical role in helping clients get there.
“BeyondID is in a rapidly growing space and has an impressive customer list that represents nearly every industry. Arun and the leadership team have a strong vision for the firm, deep ties into Okta and they’re incredibly passionate about what they do,” he said.
Powered by WPeMatico
Each year Okta processes millions of SaaS logons via its authentication system. It kindly aggregates that data to find the most popular apps and publishes an annual report. This year it found that the most popular tool by far was Microsoft Office 365.
It’s worth noting that while app usage popularity varied by region, Office 365 was number one with a bullet across the board, whether globally or when the report broke it down by geographic area. That wasn’t true of any other product in this report, so Office 365 has extensive usage across the world (at least among companies that use Okta).
But as with everything cloud, it’s not a simple matter to say that because lots of people signed onto Office 365, Microsoft is the clear winner in a broader sense. In reality, the cloud is a complex marketplace, and just because people use one tool doesn’t preclude them from using tools that compete directly with it.
As a case in point, consider that the report found that 36% of Microsoft 365 customers were also using Google Workspace (formerly known as G Suite), which offers a similar set of office productivity tools. Further, Okta found that 42% of Office 365 customers were using Zoom and 32% were using Slack.
This is pretty remarkable when you consider that Office 365 bundles Teams with similar functionality for free. What’s more, so does Google with Google Hangouts, so people use the tool they want when they want, and sometimes it seems they use competing versions of the same tool. The report also found that of those Office 365 users, 44% are using Salesforce, 41% AWS, 15% Smartsheet and 14% Tableau (which is owned by Salesforce). Microsoft has products in all those categories.
Microsoft is clearly a big company with a lot of products, but the report blows a hole in the idea that because people like Office 365, they are going to be big fans of other Microsoft products, or that they can count on any kind of brand loyalty across the range of products or even exclusivity within the same product category.
All of this, and much of the other data in this report makes tremendously interesting reading as far as it goes. It’s not a definitive window on the state of SaaS. It’s a definitive reading on the state of Okta customers’ use of SaaS, on the Okta Integration Network (OIN), a point the company readily acknowledges in the report’s methodology section.
“As you read this report, keep in mind that this data is representative of Okta’s customers, the applications and integrations we connect to through the OIN, and the ways in which users access these tools through our service,” the report stated.
But it is a way to look at the state of SaaS taking advantage of the 9400 Okta customers using the network and the 6,500 integrations to the world’s most popular SaaS tools. That gives the company a unique view into the world of SaaS. What you can conclude is that the cloud is complicated, and it’s not a zero-sum game by any means. In fact, being a winner in one area is not a guarantee of winning across the board.
Powered by WPeMatico
So much can change in a day.
This morning, news that a trial COVID-19 vaccine candidate had an effective rate of more than 90% shook the financial world. The Pfizer vaccine is reportedly so effective, the company “will have manufactured enough doses to immunize 15 to 20 million people” by the end of the year, according to the New York Times, appears to have given investors the green light to pile back into companies harmed by the pandemic.
The Exchange explores startups, markets and money. Read it every morning on Extra Crunch, or get The Exchange newsletter every Saturday.
The shift of money from shares that proved popular during the summer is massive and abrupt. Zoom and Peloton are down sharply this morning, while Uber and Lyft are soaring. Indeed, the Dow Jones Industrial Average and S&P 500 indices are up around 4.8% and 3.3% respectively, while SaaS and cloud share are off 3.5%.
Investors are taking money out of companies that were expected to do well thanks to the pandemic and moving that capital into firms that were weakened by the pandemic.
Our question for this morning: what do these changes mean for the economic forces that have broadly favored venture-backed startups? What happens to high-flying startups if the pandemic trade flips? What’s next for insurtech, edtech, fintech and SaaS? Let’s discuss.
Short-term market movements do not always predict the future accurately, so we should not treat today’s trading as gospel.
That said, it’s not hard to draw some basic conclusions from the trading activity. Here’s what I think we can deduce from today’s stock market activity:
Powered by WPeMatico
Stensul, a startup aiming to streamline the process of building marketing emails, has raised $16 million in Series B funding.
When the company raised its $7 million Series A two years ago, founder and CEO Noah Dinkin told me about how it spun out of his previous startup, FanBridge. And while there are many products focused on email delivery, he said Stensul is focused on the email creation process.
Dinkin made many similar points when we discussed the Series B last week. He said that for many teams, creating a marketing email can take weeks. With Stensul, that process can be reduced to just two hours, with marketers able to create the email on their own, without asking developers for help. Things like brand guidelines are already built in, and it’s easy to get feedback and approval from executives and other teams.
Dinkin also noted that while the big marketing clouds all include “some kind of email builder, it’s not their center of gravity.”
He added, “What we tell folks [is that] literally over half the company is engineers, and they are only working on email creation.”
Image Credits: Stensul
The team has recently grown to more than 100 employees, with new customers like Capital One, ASICS Digital, Greenhouse, Samsung, AppDynamics, Kroger and Clover Health. New features include an integration with work management platform Workfront.
Plus, with other marketing channels paused or diminished during the pandemic, Dinkin said that email has only become more important, with the old, time-intensive process becoming more and more of a burden.
“We need more emails — whether that’s more versions or more segments or more languages, the requests are through the roof,” he said. “The teams are the same size … and so that’s where especially the leaders of these organizations have looked inward a lot more. The ways that they have been doing it for years or decades just doesn’t work anymore and prevents them from being competitive in the marketplace.”
The new round was led by USVP, with participation from Capital One Ventures, Peak State Ventures, plus existing investors Javelin Venture Partners, Uncork Capital, First Round Capital and Lowercase Capital . Individual investors include Okta co-founder and COO Frederic Kerrest, Okta CMO Ryan Carlson, former Marketo/Adobe executive Aaron Bird, Avid Larizadeh Duggan, Gary Swart and Talend CMO Lauren Vaccarello.
Dinkin said the money will allow Stensul to expand its marketing, product, engineering and sales teams.
“We originally thought: Everybody who sends email should have an email creation platform,” he said. “And ‘everyone who sends email’ is synonymous with ‘every company in the world.’ We’ve just seen that accelerate in that last few years.”
Powered by WPeMatico
Kandji, a mobile device management (MDM) startup, launched last October. That means it was trying to build the early-stage company just as the pandemic hit earlier this year. But a company that helps manage devices remotely has been in demand in this environment, and today it announced a $21 million Series A.
Greycroft led the round, with participation from new investors Okta Ventures and B Capital Group, and existing investor First Round Capital. Today’s investment brings the total raised to $28.4 million, according to the company.
What Kandji is building is a sophisticated zero-touch device management solution to help larger companies manage their fleet of Apple devices, including keeping them in compliance with a particular set of rules. As CEO and co-founder Adam Pettit told TechCrunch at the time of his seed investment last year:
We’re the only product that has almost 200 of these one-click policy frameworks we call parameters. So an organization can go in and browse by compliance framework, or we have pre-built templates for companies that don’t necessarily have a specific compliance mandate in mind.
Monty Gray, SVP of corporate development at Okta, says Okta Ventures is investing because it sees this approach as a valuable extension of the company’s mission.
“Kandji’s device management streamlines the most common and complex tasks for Apple IT administrators and enables distributed workforces to get up and running quickly and securely,” he said in a statement.
It seems to be working. Since the company’s launch last year it reports it has gained hundreds of new paying customers and grown from 10 employees at launch to 40 today. Pettit says that he has plans to triple that number in the next 12 months. As he builds the company, he says finding and hiring a diverse pool of candidates is an important goal.
“There are ways to extend out into different candidate pools so that you’re not just looking at the same old candidates that you normally would. There are certain ways to reduce bias in the hiring process. So again, I think we look at this as absolutely critical, and we’re excited to build a really diverse company over the next several years,” he said.
Image Credits: Kandji
He notes that the investment will not only enable him to build the employee base, but also expand the product too, and in the past year, it has already taken it from basic MDM into compliance, and there are new features coming as they continue to grow the product.
“If someone saw our product a year ago, it’s a very different product today, and it’s allowed us to move up market into the enterprise, which has been very exciting for us,” he said.
Powered by WPeMatico