User Management
List, create, edit, and delete users. View sessions, linked identities, and metadata. Reset passwords and verify emails in one click.
AUMS is an open-source admin dashboard that sits on top of your existing CIAM provider. It gives you a unified interface to manage users, organizations, roles, and audit logs — without building one yourself.
User Management
List, create, edit, and delete users. View sessions, linked identities, and metadata. Reset passwords and verify emails in one click.
Organization Management
Create organizations, invite members, assign roles (member / admin / owner), and manage org-level settings. Available on Team and Business plans.
Multi-Provider
Connects to Auth0, Firebase, AWS Cognito, Keycloak, or Azure Entra ID. Point AUMS at your existing provider — no migration needed.
Audit Logs
View a full activity log with filtering by user, event type, and date range. Availability depends on provider.
White-label Branding
Customize logo, colors, and domain. Override branding per organization. Available on the Business plan.
SSO / OIDC Login
Protect the dashboard behind your own OIDC provider. Works with any compliant identity provider.
| Feature | Lite | Team | Business |
|---|---|---|---|
| User management | ✅ | ✅ | ✅ |
| Max users | — | 20 | 50 |
| Organizations | ❌ | ✅ (1) | ✅ (unlimited) |
| Onboarding wizard | ❌ | ✅ | ✅ |
| Teams | ❌ | ❌ | ✅ |
| White-label branding | ❌ | ❌ | ✅ |
| Audit logs | provider-dependent | provider-dependent | provider-dependent |
| Feature | Auth0 | Firebase | Cognito | Keycloak | Entra ID | SuperTokens | Ory |
|---|---|---|---|---|---|---|---|
| User management | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
| Organizations | ✅ Native | ❌ | ❌ | ✅ Native | ⚠️ Groups or Attr | ✅ Multi-tenancy | ⚠️ Network only |
| Audit logs | ✅ Full | ⚠️ Basic | ❌ | ⚠️ Basic | ⚠️ Basic | ❌ | ❌ |
AUMS supports five CIAM providers. Choose the one you are already using:
See the Providers section for setup instructions for each provider.
Set PLAN_TIER to lite, team, or business. See the plan comparison for feature differences.
Configure environment variables
At minimum, set:
BASE_URL=https://admin.example.comPLAN_TIER=liteBETTER_AUTH_SECRET=$(npm run auth:secret --silent)DATABASE_URL=postgresql://user:pass@host:5432/aums
EMAIL_FROM="AUMS <noreply@example.com>"EMAIL_SERVER=smtps://user:pass@smtp.example.com
# ... provider-specific varsFull reference: Configuration.
Run AUMS
docker run -d \ --env-file .env \ -p 3000:3000 \ aums:auth0-lite-latestAccess the dashboard
Open BASE_URL in your browser. If SSO is not configured, you will be prompted to sign in with email/password. Create the first admin account on first run.