Oracle Identity Governance Review

Classic Enterprise Provisioning/Reconciliation

What is most valuable?

Rich authorization engine for delegated admin
Robust workflow capability with BPML engine
Extensive connector support
Diagnostics are pretty good

How has it helped my organization?

Used it for external user registration, password & profile management

Attempted to model a hierarchical role model but the OIM Access Policies, which map roles to entitlements, don't provision entitlements from inherited roles. This is a flawed design, IMO, limiting you to a flat role model.

What needs improvement?

A lot of Dependencies - Oracle database, WebLogic, SOA
A lot of things still have to be done in Design Console, which still has a 90's UI.
No REST interface for Identity as a Service that I'm aware of
Doesn't hide its complexity

Weak support team
Built on, and relies on ADF for extensibility

For how long have I used the solution?

3+ years

How is customer service and technical support?

Customer Service:


Technical Support:

Hit and miss

What's my experience with pricing, setup cost, and licensing?

If you're anticipating a lot of growth, you may be able to keep costs more predictable with CPU-based licensing.

What other advice do I have?

Classic enterprise provisioning system provides self-service, resource attestation, password synch, delegated admin. My use is for external user registration system into OID for target system.

Which version of this solution are you currently using?
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More Oracle Identity Governance reviews from users
...who work at a Manufacturing Company
...who compared it with SailPoint IdentityIQ
Find out what your peers are saying about Oracle, SailPoint, ForgeRock and others in Identity Management (IM). Updated: February 2021.
464,369 professionals have used our research since 2012.
Add a Comment