We performed a comparison between ForgeRock and One Identity Active Roles based on real PeerSpot user reviews.
Find out in this report how the two Access Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."ForgeRock products are customizable, and the out-of-the-box features are solid, too. I primarily use the OIDC compliance features. It's just a configuration. it's easy to set up and customize trees. We can add our own features if necessary. Banks and corporations have different standards and specific validations."
"I like the intelligent authentication feature."
"ForgeRock has CIAM, which other products didn't have, and they have DevOps ready."
"Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users."
"The solution is very scalable. We have a lot of users that have been increasing over the years that we have been using it. We have approximately 20,000 users."
"We used it to implement multi-factor authentication and to improve our security posture as well as reducing the potential for attacks."
"Easy to customize and adaptable to any environment."
"The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it."
"The most valuable features include auditing, dynamic grouping, and creating dynamic groups based on AD attributes."
"Having a tool to manage all changes to AD from a single pane of glass is awesome."
"The solution is stable."
"It gives us attribute-level control and the AD management features work very well."
"It's valuable to us in that it resembles the native tools that most people have grown accustomed to... Active Roles resembles traditional tools, such as from Microsoft. That is really good because it eases the way people interact with the tool."
"The AD and AAD management features of this solution are really good... They offer added value by showing more fields such as password age and the statuses of some things that we normally wouldn't see."
"Secure access is the most valuable feature."
"It provides automatic provisioning/update/deprovisioning workflows from a source system to a target system."
"We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced."
"In an upcoming release, the solution could improve by limiting the need to do customizations."
"The solution's deployment should be made easier."
"The solution's documentation is not very good, and they do not give more details."
"As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively."
"The product's support services in the French language are not free."
"ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant."
"The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI."
"There are some features that we think should be included in their next release. We think these things would take them to the next level: the ability to completely force or limit any dynamic group processing to specific servers, change-tracking reporting of virtual attributes, and the ability to use files as inputs to automation workloads. These things have also been talked about. Knowing them, they're probably working on them."
"The initial setup was quite easy, but it was time-consuming. It took about three months."
"For ActiveRoles, it would be good if the product supports multi-scripting language. You can use only VBScript."
"The solution needs an attestation process that includes certification and recertification attestation."
"The way you can search groups could be better."
"The user and group management in Azure AD could be better. Our focus these days is dynamic sharing with several on-prem Microsoft applications like SharePoint."
"The ability to send logs to a SIEM would be very beneficial."
"In terms of improvement, it could be made even more user-friendly for administrators when they need to create new workflows and rule sets."
ForgeRock is ranked 4th in Access Management with 27 reviews while One Identity Active Roles is ranked 5th in User Provisioning Software with 17 reviews. ForgeRock is rated 8.0, while One Identity Active Roles is rated 8.6. The top reviewer of ForgeRock writes "Governance and access management solution used for multi-factor authentication that is outdated with an unresponsive UI". On the other hand, the top reviewer of One Identity Active Roles writes "Single interface and workflows simplify AD and Azure AD management efficiency and security". ForgeRock is most compared with SailPoint IdentityIQ, PingID, Microsoft Entra ID, Auth0 and Symantec Siteminder, whereas One Identity Active Roles is most compared with Microsoft Entra ID, ManageEngine ADManager Plus, One Identity Manager, SailPoint IdentityIQ and Softerra Adaxes. See our ForgeRock vs. One Identity Active Roles report.
We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.