Skip to content

Getting Started

AUMS is an open-source admin dashboard that sits on top of your existing CIAM provider. It gives you a unified interface to manage users, organizations, roles, and audit logs — without building one yourself.

User Management

List, create, edit, and delete users. View sessions, linked identities, and metadata. Reset passwords and verify emails in one click.

Organization Management

Create organizations, invite members, assign roles (member / admin / owner), and manage org-level settings. Available on Team and Business plans.

Multi-Provider

Connects to Auth0, Firebase, AWS Cognito, Keycloak, or Azure Entra ID. Point AUMS at your existing provider — no migration needed.

Audit Logs

View a full activity log with filtering by user, event type, and date range. Availability depends on provider.

White-label Branding

Customize logo, colors, and domain. Override branding per organization. Available on the Business plan.

SSO / OIDC Login

Protect the dashboard behind your own OIDC provider. Works with any compliant identity provider.

FeatureLiteTeamBusiness
User management
Max users2050
Organizations✅ (1)✅ (unlimited)
Onboarding wizard
Teams
White-label branding
Audit logsprovider-dependentprovider-dependentprovider-dependent
FeatureAuth0FirebaseCognitoKeycloakEntra IDSuperTokensOry
User management
Organizations✅ Native✅ Native⚠️ Groups or Attr✅ Multi-tenancy⚠️ Network only
Audit logs✅ Full⚠️ Basic⚠️ Basic⚠️ Basic
  1. Choose a provider

AUMS supports five CIAM providers. Choose the one you are already using:

  • Auth0
  • Firebase
  • AWS Cognito
  • Keycloak
  • Azure Entra ID
  • Ory (Kratos / Ory Network)

See the Providers section for setup instructions for each provider.

  1. Choose a plan tier

Set PLAN_TIER to lite, team, or business. See the plan comparison for feature differences.

  1. Configure environment variables

    At minimum, set:

    Terminal window
    BASE_URL=https://admin.example.com
    PLAN_TIER=lite
    BETTER_AUTH_SECRET=$(npm run auth:secret --silent)
    DATABASE_URL=postgresql://user:pass@host:5432/aums
    EMAIL_FROM="AUMS <noreply@example.com>"
    EMAIL_SERVER=smtps://user:pass@smtp.example.com
    # ... provider-specific vars

    Full reference: Configuration.

  2. Run AUMS

Terminal window
docker run -d \
--env-file .env \
-p 3000:3000 \
aums:auth0-lite-latest
  1. Access the dashboard

    Open BASE_URL in your browser. If SSO is not configured, you will be prompted to sign in with email/password. Create the first admin account on first run.