We performed a comparison between Cisco ISE (Identity Services Engine) and ForgeRock based on real PeerSpot user reviews.
Find out what your peers are saying about Cisco, HPE Aruba Networking, Fortinet and others in Network Access Control (NAC)."Not having to trust devices and being able to set those levels of trust and more finely control our network is a benefit."
"The way we can trust this solution is the most valuable. We have no issue with this product. It is a competitive product. You need to have a very good and deep knowledge of the product to take the full benefits of all the features, but it is a good product."
"It offers automatic profiling of phones and computers, enabling administrators to identify and categorize devices seamlessly."
"For customers, it's great. It has a GUI, so the customers themselves can edit ACLs or even modify the policies. It's also an all-in-one solution with RADIUS and TACACS."
"I found the CMDB Direct Connect in Cisco ISE 3.2 the most promising feature for my use case."
"At the moment, ISE seems to integrate very well with a number of other technologies."
"I like the automation of the collection of information."
"The solution enables us to authenticate with AD."
"Even though we have very small business interests with them today, they see that we plan on growing drastically over the next two years. Therefore, we have excellent support and we are now at a point where we are not calling tech support. We pick up a phone and call the Account Manager and they'll get everything resolved for us. We don't have to queue along with everybody else and go through a long process."
"I like the way it is handling authentication and authorization."
"We used it to implement multi-factor authentication and to improve our security posture as well as reducing the potential for attacks."
"We create and define the permissions and configurations for the users."
"Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users."
"The most valuable features of ForgeRock are social login and data protection."
"The product is easy to set up."
"The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it."
"There should be a single button that can be pressed to dismiss all of the alarms at once."
"I believe that Cisco can improve the way its policies are built because it's a little complex."
"Automation [is an area for improvement]. It seems like everywhere I look, automation is super important. Automation and integrations. That's the area it could be improved..."
"The learning curve is steep and the initial setup is complex."
"If you have someone taking care of it, it can be quite easy to manage the solution. Otherwise, if you don't look after it and take care of it day-to-day, then it will become more complex to run."
"The interface could be more user-friendly and the ability to apply rules to MAC addresses, for example, if I wanted to allow a certain MAC address access at a particular time I cannot make this adjustment."
"The user interface could be improved to make it more user-friendly."
"There is room for improvement in its ability to allow end users to self-enroll their devices. Instead, you should be able to assign that permission by AD group, which is currently not available."
"It should be a little bit easier to implement. It is user-friendly, but there is always scope for improvement."
"We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced."
"They should improve the solution by include reporting."
"In an upcoming release, the solution could improve by limiting the need to do customizations."
"Lacks simplified documentation within the tool that requires use of a separate portal."
"Automatic Deployment needs improvement. it could be made easier."
"ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant."
"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."
More Cisco ISE (Identity Services Engine) Pricing and Cost Advice →
Cisco ISE (Identity Services Engine) is ranked 1st in Network Access Control (NAC) with 138 reviews while ForgeRock is ranked 5th in Access Management with 27 reviews. Cisco ISE (Identity Services Engine) is rated 8.2, while ForgeRock is rated 8.0. The top reviewer of Cisco ISE (Identity Services Engine) writes "Gives us that extra ability to assist the end user and make sure that we are making them happy". On the other hand, the top reviewer of ForgeRock writes "Governance and access management solution used for multi-factor authentication that is outdated with an unresponsive UI". Cisco ISE (Identity Services Engine) is most compared with Aruba ClearPass, Fortinet FortiNAC, Forescout Platform, CyberArk Privileged Access Manager and Fortinet FortiAuthenticator, whereas ForgeRock is most compared with SailPoint Identity Security Cloud, Ping Identity Platform, Microsoft Entra ID, Auth0 and Symantec Siteminder.
We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.