helpwave id is the identity layer underneath every helpwave product — and any third-party system you plug in. SSO, MFA, role-based access, audit trails, federated logins. Everything Keycloak does, with healthcare workflows on top.
Universitätsklinikum Aachen — Tenant ukaachen.helpwave.de
One identity across helpwave tasks, scaffold, assistant, netmanager and any SAML / OIDC system you bring with you. Federation with hospital AD, eHBA, and national health-IT directories.
TOTP, WebAuthn passkeys, smartcard / eHBA, push approval. Step-up authentication when access is sensitive — and silent when it isn't.
RBAC + ABAC, scoped to scaffold's organizational hierarchy. A nurse on ward 4N sees ward 4N — and only ward 4N. Rotating shifts? helpwave id rotates the access with them.
Tamper-evident audit log of every authentication and authorization event. Stream to your SIEM, export to BSI / ISO / DSGVO reports — without writing a line of code.
Provision new staff in seconds, deprovision in one click. SCIM bridges to your HR system so leavers never linger. Your IT team stops being a ticket queue.
Deploy in your data center next to the EHR, or let us run it in our German cloud. Same product, same APIs, same compliance posture.
Bring helpwave id in once and the rest of your stack falls in line — including the systems you didn't buy from us.