Sands Consulting is a consulting service based in Lillehammer, Norway, provided by enterprise architect Andrew Sands. The cybersecurity capabilities presented on the website mainly focus on enterprise identity and access management: identity federation, single sign-on, authentication protocol migration, and integration with existing enterprise systems. It is not a standardized SaaS security platform, but is closer to expert-led consulting delivery.
In terms of protection scope, Sands Consulting focuses on Federated Security and Single Sign On. It can help existing systems integrate with protocols such as WS-Federation, OAuth 2.0, and OpenID Connect, and supports identity providers including IdPorten, Feide, Google, and Facebook. Public information also mentions migration from WIF to OWIN, WS-Trust, ADFS, and machine-to-machine authentication, suggesting experience with Microsoft enterprise authentication systems and traditional enterprise identity architectures. Deployment methods are not clearly described, but references to “existing system integration” and “enterprise applications” suggest a project-based integration model that may be customized to the customer’s environment. Capabilities such as management and alerting, audit reporting, and policy orchestration are not disclosed.
The website does not provide a pricing model, plans, billing methods, or payment information, nor does it disclose ISO, SOC, GDPR-related processes, or other compliance certifications. Before procurement, buyers should separately confirm pricing, delivery scope, ownership of source code or configurations, support response times, and data processing responsibilities.
Its strengths are a clear positioning and a specific focus on the protocol stack around identity federation and SSO, making it suitable for modernizing authentication in legacy enterprise applications. Its enterprise architecture background may also help with cross-system integration issues. The drawbacks are that very little public information is available: there are no customer case studies, SLA details, product console, alerting mechanisms, or security certification descriptions. Its capability scope is also not equivalent to a full cybersecurity platform, and it cannot replace EDR, SIEM, WAF, or cloud security products.
It is suitable for enterprise project teams that already have applications and need to connect them to a unified identity provider or migrate from an old authentication framework, especially scenarios dependent on the ADFS, WS-Trust, and OWIN/WIF ecosystems. Access from China cannot be determined from the available content and is marked as unknown; payment methods are likewise undisclosed. For deployment in China, key factors to evaluate include cross-border communication, time zones, contracts, and local compliance. Alternatives include Okta, Microsoft Entra ID, Auth0, and Ping Identity; in China, Alibaba Cloud IDaaS, Tencent Cloud identity-related services, or BambooCloud IAM may be worth considering.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on sands.as official site.
sands.as is an Norway Cybersecurity provider. TG4G tracks its product information, an overall rating of 5.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach sands.as directly.