Borderless identity: How CyberArk and Criipto simplify EU eID integration

As companies expand operations across Europe, they encounter a labyrinth of national eID schemes: Danish MitID, Swedish and Norwegian BankID, Freja eID, Finland’s Trust Network, Belgian eID, German Personalausweis, Dutch iDIN, and more. Each solution is governed by local regulations, built on differing protocols, and demands bespoke integration and ongoing maintenance. For security architects and developers alike, this complexity translates into long lead times, high technical debt, and compliance risk.

CyberArk’s new Criipto integration is a game changer for European identity security. By federating access with Criipto’s Verify service, organizations can unlock frictionless, eIDAS‑compliant employee logins powered by national eIDs for day-to-day authentication flows. Whether it’s BankID in Norway and Sweden, or MitID in Denmark, OIDC flows like Authorization Code, PKCE, and CIBA deliver a fast, secure experience that meets both eIDAS and local regulations. And because CyberArk is decoupled from each eID’s unique quirks, you’ll slash maintenance efforts, cut operational overhead, and stay one step ahead of tomorrow’s digital‑ID standards.

Addressing the complexity of eID adoption

• Diverse protocols. Each European eID uses unique exchanges and message formats. Building and maintaining individual connectors is time‑consuming and error-prone.
• Regulatory risk. Non‑compliance with eIDAS or local data‑protection rules can expose organizations to fines and reputational damage.
• Dev & ops burden. Constant updates, new certificates, protocol tweaks, and security patches can overwhelm internal teams.

CyberArk’s integration with Criipto absorbs this complexity. The Criipto Verify service abstracts every eID into a unified, developer‑friendly API, handling protocol details and future updates behind the scenes.

One integration for all European eIDs

Criipto’s “all‑in‑one” model means a single OpenID Connect setup unlocks every eID you need today, and whatever you add tomorrow. No more rebuilding connectors for each country or coordinating lengthy application processes with national authorities. From MitID and BankID to iDIN and eIDAS Personalausweis, the full spectrum of electronic identities is at your fingertips.

Business benefits & customer value

1. Regulatory confidence. By leveraging nationally accredited eIDs, every authentication is backed by government‑grade identity proofing and eIDAS‑level assurance.
2. Faster user onboarding. End users in Europe recognize and trust their national eID schemes; login friction drops and customer acquisition accelerates.
3. Reduced TCO. One integration, one support channel, zero ongoing protocol maintenance internally. That’s a leaner, more optimized identity stack.
4. Improved security posture. Strong cryptographic guarantees and real‑time revocation handling help thwart phishing and credential fraud.
5. Global scale. As you enter new European markets, simply enable the relevant eID in your Criipto dashboard; no new build required.

How it works: High‑level configuration

1. Set up Criipto Verify. Register your CyberArk domain in Criipto’s portal, select the desired eIDs, and obtain your Client ID, Client Secret, and OIDC metadata URL.
2. Configure CyberArk. In Settings → Users → External Identity Providers, click Add, choose OIDC, and enter the Criipto credentials and endpoints.
3. Map Claims & Roles. Define how Criipto’s ID token attributes (e.g. sub, given_name, family_name, acr) map to CyberArk’s identity schema and role assignments.
4. Test & Go Live. Use Criipto’s free test environment to validate flows and branding, then swap in production credentials when ready.

Within a single afternoon, you can offer government‑backed login across all your European customer touchpoints.

Looking ahead

As European identity regulation evolves with eIDAS 2.0 rollout, wallet‑based credentials, cross‑border interoperability, CyberArk customers are already positioned to adapt. Criipto continuously adds new markets and feature enhancements, all without additional integration work on your side.

With CyberArk and Criipto, organizations gain:

• Strategic agility to expand into new EU markets overnight.
• Operational resilience from a fully managed, accredited identity layer.
• User trust through familiar, secure national eIDs.

Ready to simplify European eID adoption and supercharge user onboarding?

Explore the integration overview in our marketplace and integration details in our docs, and start testing in minutes. Embrace the future of digital identity in Europe with one seamless, standards‑based integration.

By integrating national eIDs via our Criipto partnership, you extend government‑backed identity verification across every stage of the workforce user’s journey. From the moment an employee or contractor logs in with their trusted European eID, through credential issuance, to real‑time session monitoring and analytics, you get unified, end‑to‑end identity security.

CyberArk and Criipto help organizations provide secure passwordless access to any resource — on any device and in any location — while dramatically reducing operational overhead and compliance risk.

Yev Koup is a senior product marketing manager at CyberArk.