For library teams

Secure, reliable access to everything you license.

Portium connects your scholars to every publisher you subscribe to - on campus or off, modern platform or legacy - through a managed secure proxy and passwordless single sign-on. You see exactly what's used, and we carry the technical load end to end.

Apply for free trial

On this page

Beyond PaywallsOne-tap access to every licensed paper, on campus or off.
Modern Library WorkflowApprovals, usage stats and user management in one place.
AccessibilityPer-publisher guides your scholars reach in one click.
Our SupportWe carry the IT load and clear the bottlenecks.
Portium's IAMFull identity & access governance, automated.
More to knowExtra capabilities at a glance.

Connect via SSO and proxy

One tap to every licensed paper - on campus or off

Every paper your library pays for opens on the first try - modern publisher or legacy, wherever your scholars are working. A secure proxy means the paywall never even loads, and where a publisher supports it, passwordless SSO recognizes your institution in one tap. Nothing to install, no passwords to remember - and the “I can't access” queue goes quiet.

Portium’s secure proxy loads a licensed publisher article with the “$39.95 purchase” paywall removed — the “institutional access required” wall never even appears.

Passwordless single sign-on on a publisher page recognizes the scholar’s institution and unlocks the full text in one tap — no separate Portium password.

Good to know

Do scholars have to be on campus?

No. They reach licensed content from home, a ward, a train, or overseas exactly as they would on campus.

Does it work with every publisher we license?

What does the scholar actually do to get in?

Do scholars need a separate Portium password?

Is anything installed on the scholar's device?

A publisher changed their site and access broke - what happens?

We already pay for these journals - why do scholars still hit a wall?

Can scholars reach content while travelling abroad?

What about a publisher that doesn't support modern sign-in?

Will our scholars notice a difference from being on campus?

Does this change how scholars find articles?

How do we know access is actually reaching people?

Manage access and see usage - from one console

Run approvals, see exactly which resources are used, and reach every scholar from a single dashboard - with the usage evidence that turns renewals into decisions, and without adding to your team.

Users, approvals, live usage and notices in one dashboard your whole team shares - nothing scattered across tools or inboxes.

Everything in one console

Good to know

Where does my team manage all of this?

From one calm dashboard - users, approvals, live usage and scholar notices in the same place.

Can scholars register themselves, or must we approve everyone?

Which details do we collect at registration?

What do the usage statistics actually show?

Can the data guide what we subscribe to?

How do scholars get the notices we post?

Can I manage access from my phone?

Can we register many users at once?

Can we restrict access for certain people or groups?

Does setting this up need an IT project?

Will I finally see the value of our subscriptions for budget talks?

Can two staff members work in the dashboard together?

Accessibility

A guide for every site, written by your library

Your team publishes help for each publisher's site, and scholars open it in one click from the Portium toolbar - your guidance, in your words, right where they're reading. Fewer repeat questions, and faster scholars.

A scholar reads the library-written guide for this exact publisher — step-by-step access instructions and curated links — from the Portium navbar.

A library manager edits the website-specific help guide in place — formatting text and adding links — then saves it for this publisher.

The whole technical load - managed end to end

Setup and security reviews, publisher connections, onboarding, the features you request, and every scholar's access problem - all run as a managed cloud service, under your institution's policies. Even a library without a dedicated IT team runs full institutional access from day one.

Four stakeholders — security, library, a publisher and a scholar — raise support tickets to the Portium guide at the centre, who resolves each one — end-to-end support that carries the library’s IT load and clears the bottlenecks.

Good to know

What does end-to-end support actually cover?

Everything technical between scholars and publishers - setup, security reviews, publisher connections, onboarding, and the features you ask for - run as a managed cloud service.

When a scholar can't reach something, who handles it?

Do we need our own IT project or staff?

What if we need something the product doesn't do yet?

Will you join our procurement and security review?

Are our institution's policies respected?

How fast do publisher connections get added or fixed?

Is there training for our staff and scholars?

Who do we contact when we need help?

Does support end after setup?

What happens during onboarding?

Will this add to our workload?

One platform to govern every identity - automated, managed, compliant

AutomatedJoiners, movers and leavers flow from your HR/SIS - access is never late, never orphaned.
ManagedWe tailor the connectors and role model to your institution, then run it for you.
CompliantISO 27001, SOC 2 Type II and HIPAA; GDPR-aligned and encrypted end to end.

Identity and access is the kind of system that should never be improvised - and it's what Portium already runs for your institution every day. The full lifecycle of every identity is automated: people are onboarded, moved and offboarded straight from your authoritative systems, provisioned into your directories, and signed in through standards-based single sign-on and MFA - so access is never late and never lingers. Roles and attributes hold everyone at least-privilege, certification campaigns prove access stays appropriate, and every action is written to a revision-safe audit trail. It's ready for the regulators (ISO, SOC and local regulations in EU, US and Japan, encrypted end to end - and it's built to your principles: Portium answers to your institution, with no backdoors and your data kept where your policy and region require. And it's easy, because it's managed: we tailor the deployment, the connectors and the role model to your institution in the onboarding agreement, then run it for you. Everything an institution's identity and access platform must do, in one place:

Portium's identity lifecycle, automated: a new hire in HR fans out to Active Directory, Entra ID, Google Workspace and Portium; a transfer updates roles; and on the last day every account is revoked at once — zero orphaned accounts. — How it works, end to end

Identity lifecycle

Authoritative HR / SIS sourcesYour HR and Student Information System become the source of truth - Banner, SAP HCM / SuccessFactors and the like drive every change.
Identity lifecycle - Joiner, Mover, LeaverOnboarding, role changes and offboarding are automated from events in your authoritative systems - so accounts are never late and never orphaned.
Automated provisioning & de-provisioningAccounts and entitlements are created, updated and revoked downstream automatically - delta-based, with retry and self-healing when a system is briefly unavailable.
Directory & cloud integrationNative, event-driven provisioning into Active Directory, LDAP, Microsoft Entra ID / Azure and Google Workspace, kept in sync.
Login-name & email generationDeterministic usernames and email addresses per your naming conventions, with collision handling, as accounts are provisioned.

Access & authentication

SSO, MFA & federationStandards-based single sign-on (SAML 2.0, OIDC), multi-factor authentication, and federation - Shibboleth, SURFconext, Entra, Okta, Duo. Portium acts as both identity and service provider.
RBAC & ABAC access modelsGrant access by role and by attribute, layered business → IT → meta roles, for consistent least-privilege across the institution.
Access requests, approvals & SoDSelf-service access requests routed through approval workflows, with Segregation-of-Duties rules that block toxic combinations of entitlements.
Access certification (attestation)Periodic recertification campaigns where managers re-confirm who has access to what - and revoke what's no longer justified.
Role management & role miningDesign, maintain and discover roles from real access patterns, so role-based access stays maintainable at tens of thousands of identities.
Privileged Access ManagementExtra governance for admin accounts - vaulting, just-in-time elevation and session oversight for the highest-value targets.

People & self-service

External & guest identitiesGovern partners, guest researchers, contractors and visitors who have no HR record - sponsored, time-bounded, with automatic expiry.
Self-service & delegated adminPassword reset, profile and access-request portals, plus delegated administration so local teams manage their own scope - and the help desk sheds load.

Audit & monitoring

Revision-safe audit & reportingTamper-evident logs of every identity and access event, retained per policy, with reporting and usage statistics - GDPR-compliant.
SIEM integration & monitoringStream security events to your SIEM, such as Microsoft Sentinel, with health-checks and monitoring endpoints for operations.

Platform & operations

Open APIs & protocolsREST and SCIM for provisioning, SOAP / SPML where legacy systems require it, plus graph and directory APIs - so it connects to your whole stack.
Deploy your wayCloud, on-premises or hybrid, with EEA or on-prem data-residency, multi-zone topology, redundancy and self-healing.
Enterprise security, certifiedEncryption in transit and at rest, WAF and DDoS protection, regular penetration testing - ISO 27001, SOC 2 Type II and HIPAA.
Proven at scaleTens of thousands of identities across distributed sites, without degradation.
Long-term support & SLAsMaintenance, bug-fixing and security patching under defined SLAs - for the life of the system, not just go-live.

Good to know

What is Portium's IAM, exactly?

A complete Identity & Access Management (IAM) and Identity Governance & Administration (IGA) platform. Beyond connecting your users to research resources, it governs identity for the whole institution - lifecycle, provisioning, SSO and MFA, role- and attribute-based access, certification and audit - in one managed system.

Why is Portium the right system to run our identity and access?

Who controls the data, and are there any backdoors?

Is it hard to implement?

On-premises, hybrid or cloud - what do you recommend?

We run Portium as a managed cloud service, and for most institutions that's the right call. Just as RA21 moved access beyond self-hosted IP authentication, the field has moved toward managed services that are kept current, patched and watched for you - rather than an unmanaged system your own team has to nurse. Your policies still govern everything: we put them in writing in the onboarding agreement, keep full transparency over what's shared, and back it with full compliance such as ISO, HIPAA and SOC 2 Type II audited by KPMG. Where data-residency or regulation calls for it, we also offer on-premises or hybrid, with EEA or on-prem data-residency, multi-zone topology and redundancy - chosen with you.

Which identity sources and directories does it connect to?

Show all questions

Talk to us about IAM

And more

Ready-made training materials

Polished, ready-to-use guides and walkthroughs so your team and your scholars get full value from the system from day one - no need to write your own onboarding.

Choose registration fields

Capture exactly the fields you need for cleaner statistics and procurement.

Manage users from anywhere

Including from your phone.

Download reports

Export usage statistics and reports in a click.

Bulk-register users

Onboard many users at once.

Limit access

Restrict access for specific scholars or groups.

Full multilingual support

Including RTL, LTR and Japanese.

Explore Portium for every team

See exactly what your scholars reach - and what each subscription is worth

Apply for free trial