Anonymous UserIT Senior Consultant and trainer at a tech vendor
Becky PharesSr Business Analyst at George Washington University
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"This solution serves as the basis to understand the MS SSO and MFA capabilities."
"The ability to grant access to other organizations is helpful."
"The interface is well laid out and it is easy to navigate."
"The most valuable feature is that it is very easy to implement, you don't need a lot of effort to set up the solution. This is the most advantageous point, that you can do anything on Azure without taking too much time."
"The single sign-on is very convenient for us."
"The most valuable feature is the ease of scalability."
"The single sign-on of the solution is the most valuable aspect."
"The most valuable feature is the ability to set up conditional access, where you can enforce users to connect using multifactor authentication."
"Having a tool to manage all changes to AD from a single pane of glass is awesome."
"The biggest thing for us is Active Roles saves a lot of man-hours in keeping groups up-to-date manually or trying to write some sort of script that you have to run, so we don't have to reinvent the wheel. Instead of when every time somebody joins a department, then somebody has to remember to put in a request to add "meet user Joe" to this group, the solution does it automatically for us. Therefore, it saves our business and IT staff time because they do not have to process requests since Active Role can do it for them."
"Because of Active Roles, we're able to synchronize on an even more regular basis. It enables us to provide even more information to the Active Directory, which helped us to group our users in a more consistent manner."
"Another good feature is the change history. It's centralized in a single place and allows us to manage people's Active Directory domains from a central location. We can also drill down into individual objects in a troubleshooting or even an auditing situation. We can show evidence to auditors by drilling down into the individual history. It gives you all the history of what happened around an individual object. That is something that would be almost impossible to do in Active Directory, or extremely complicated."
"With the use of the sync service we were able to import information from multiple external systems and populate them within our space and leverage them for downstream systems."
"The SSO MyApps interface is very basic and needs better customization capabilities."
"Microsoft needs to add a single setup, so whenever resources join the company or are leaving the company, all of the changes can be made with a single click."
"My only pain point in this solution is creating group membership for devices."
"I would rate it an eight out of ten. The price plays a factor in the rating."
"It would be ideal if the solution moved to a passwordless type of environment. It's the future of authentification. It's also more secure and convenient."
"I think the documentation and configuration are both areas that need improvement."
"We would like to have more granularity in the Azure conditional access in order to be able to manage more groups for devices and for applications."
"Technical support could be faster."
"The ability to send logs to a SIEM would be very beneficial."
"When doing a workflow, we would like a bit better feedback on the screen, as we're trying to get it to work. For example, there is a "Find" function that you need set up in a workflow to do some of the automation. It is not the easiest to get a result from those finds when you're trying to do that. In the MMC, they have a couple different types of workflows. In this particular case, we use their workflow functionality to find all of X within the environment, then if you find it, do X, Y, and Z. You can have multiple steps. When you do that search function within that workflow, it's really hard to find out, "Is my search working?" It would be nice if there was some feedback on the screen so you could see if your search is working properly within the workflow."
"In terms of improvement, it could be made even more user-friendly for administrators when they need to create new workflows and rule sets."
"The third area for improvement, which is the weakest portion of ARS, is the workflow engine, which was introduced a few years ago. It's slow and not very intuitive to use, so I would like to see improvement there."
"There are some features that we think should be included in their next release. We think these things would take them to the next level: the ability to completely force or limit any dynamic group processing to specific servers, change-tracking reporting of virtual attributes, and the ability to use files as inputs to automation workloads. These things have also been talked about. Knowing them, they're probably working on them."
"Licensing fees are paid on a monthly basis and the cost depends on the number of users."
"This product is sold as part of the enterprise package and our licensing fees are paid on a yearly basis."
"MFA and P2 licenses for two Azures for fully-enabled scenarios and features cost a lot of money. This is where Okta is trying to get the prices down."
"We are a non-profit organization, so we get good prices from Microsoft for their products. It is working well, but it could be cheaper. For the type of organization we are, it would be good if they could give a little bit more and be more generous like Google, which has completely free services. Microsoft has free versions or web services called Office 365 E1, which is free for use, but we want to have it with more qualified clients."
"We pay about $35 per user."
"I think we're on the E3 — I think it was about 35 dollars per user."
"We got a good deal. If you get rid of all the products providing features that Azure Suite can provide, then it makes sense cost-wise."
"Microsoft has a free version of Azure AD. So, if you don't do a lot of advanced features, then you can use the free version, which is no cost at all because it is underpinning Office 365. Because Microsoft gives it to you as a SaaS, so there are no infrastructure costs whatsoever that you need to incur. If you use the free version, then it is free. If you use the advanced features (that we use), it is a license fee per user."
The Azure Active Directory (Azure AD) enterprise identity service provides single sign-on and multi-factor authentication to help protect your users from 99.9 percent of cybersecurity attacks. With Azure Active Directory, you get:
- Single sign-on enabling access to your apps from anywhere
- Conditional Access and multi-factor authentication to help protect and govern access
- A single identity platform to engage with internal and external users more securely
- Developer tools to easily integrate identity into your apps and services
To learn more about our solution, ask questions, and share feedback, join our Azure Active Directory Community.
Active Roles is a single, unified and rich tool to automate the most troublesome user and group management tasks. With One Identity Active Roles, you can streamline user and group administration, solve security issues – and meet those never-ending compliance requirements by managing and securing on-prem, and cloud AD resources simply and efficiently with a single, intuitive solution.
Azure Active Directory is ranked 1st in Single Sign-On (SSO) with 23 reviews while One Identity Active Roles is ranked 3rd in User Provisioning Software with 5 reviews. Azure Active Directory is rated 8.2, while One Identity Active Roles is rated 8.8. The top reviewer of Azure Active Directory writes "Users don't have to remember multiple accounts and passwords since it is all single sign-on". On the other hand, the top reviewer of One Identity Active Roles writes "ARS has been instrumental in ensuring accounts get cleaned up when they get deprovisioned". Azure Active Directory is most compared with Okta Workforce Identity, CyberArk Privileged Access Manager, Google Cloud Identity, AWS Directory Service and OneLogin Workforce Identity, whereas One Identity Active Roles is most compared with SailPoint IdentityIQ, One Identity Manager, Okta Workforce Identity, Softerra Adaxes and Saviynt. See our Azure Active Directory vs. One Identity Active Roles report.
See our list of .
We monitor all Single Sign-On (SSO) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.