Microsoft Entra ID, previously known as Azure AD (Active Directory), is Microsoft's cloud-based identity and access management (IAM) solution. Designed to help organizations of all sizes manage user identities and create an intelligent security perimeter around their cloud and on-premise resources. Microsoft Entra ID or Azure AD is integral to the Microsoft 365 and Azure ecosystems. It provides a robust set of capabilities to manage users and groups and secure access to applications in a centralized, streamlined manner.
Microsoft Entra ID (Azure AD) is a login system, morphing into a sophisticated identity and access management (IAM) solution for the modern, hybrid workplace. Imagine a single vault for all your digital keys – that's the essence of Entra ID's identity management. It acts as a central repository for user identities, encompassing usernames, passwords, and even additional attributes like department or employee role.
These capabilities enabled simplified administration using a unified platform for adding, modifying, and deleting user accounts. Users no longer need to remember login credentials for a plethora of applications. Entra ID streamlines access by using the same identity across various cloud services and on-premises resources (if integrated). Centralized identity management allows for stricter enforcement of security policies and password complexity requirements across the organization.
Authentication sits at the heart of the solution, ensuring only authorized users gain access to sensitive resources. It employs a multi-pronged approach:
For organizations with on-premises infrastructure, Microsoft Entra ID (Azure AD) offers hybrid identity options. This allows for a smooth integration between on-premises Active Directory and Entra ID, providing a consistent identity for users across both environments. It enables organizations to leverage their existing investments in on-premises infrastructure while taking advantage of cloud scalability and flexibility.
In conclusion, Microsoft Entra ID (Azure AD) is a comprehensive IAM solution that addresses the complex challenges of managing and securing identities in a cloud-centric world. Its blend of ease of use, security, and integration capabilities makes it an essential component of modern IT infrastructure, supporting both operational efficiency and strategic business objectives.
The licensing cost is a bit prohibitive.
Licensing is easy.
The licensing cost is a bit prohibitive.
Licensing is easy.
Cisco ISE is an all-in-one solution that streamlines security policy management and reduces operating costs. Cisco ISE delivers visibility and access control over users and devices across wired, wireless, and VPN connections.
There are three levels of pricing: basic, plus, and apex. Basic satisfied our needs.
If you go directly with Cisco for the implementation it's very, very expensive.
There are three levels of pricing: basic, plus, and apex. Basic satisfied our needs.
If you go directly with Cisco for the implementation it's very, very expensive.
CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.
Pricing and licensing depend on the environment.
It is not a cheap solution. It is expensive as compared with other solutions. However, it is one of the best solutions in their domain.
Pricing and licensing depend on the environment.
It is not a cheap solution. It is expensive as compared with other solutions. However, it is one of the best solutions in their domain.
SailPoint is the leader in identity security for the cloud enterprise. We’re committed to protecting businesses from the inherent risk that comes with providing technology access across today’s diverse and remote workforce. Our identity security solutions secure and enable thousands of companies worldwide, giving our customers unmatched visibility into the entirety of their digital workforce, and ensuring that each worker has the right access to do their job, no more, no less. With SailPoint at the foundation of their business, our customers can provision access with confidence, protect business assets at scale and ensure compliance with certainty.
SailPoint IIQ is the best of best. That is reflected in the pricing of the solution. The pricing is based on the number of identities.
They are expensive.
SailPoint IIQ is the best of best. That is reflected in the pricing of the solution. The pricing is based on the number of identities.
They are expensive.
Okta Workforce Identity is a powerful solution that provides single sign-on capabilities and centralized access control for multiple applications. Its most valuable features include workflows, multiple SSO protocols, and Active Directory integrations. It helps organizations by simplifying access management, improving security with multi-factor authentication, and streamlining user provisioning. It is particularly beneficial for large employers, retail chains, and organizations with a significant number of employees. Okta Workforce Identity is easy to use, scalable, and reliable, making it an essential tool for identity and access management.
License is around US$20,000 annually.
It is costly for large companies.
License is around US$20,000 annually.
It is costly for large companies.
Auth0 is a user-friendly platform that securely authenticates and authorizes users across multiple platforms. It offers easy integration, robust security measures, and customizable options for authentication. Users praise its scalability, comprehensive documentation, and responsive customer support.
Auth0 significantly improves organization operations, increasing efficiency, collaboration, and problem-solving capabilities. It streamlines processes, reduces errors, and facilitates seamless integration.
There are different price levels: B2B, B2C, and enterprise. The basic plan is about $1,500 per month.
It is a relatively inexpensive product in the industry.
There are different price levels: B2B, B2C, and enterprise. The basic plan is about $1,500 per month.
It is a relatively inexpensive product in the industry.
Fortinet's FortiNAC is a network access control solution that provides visibility, control, and automated response for everything that connects to the network, enhancing the security fabric. FortiNAC protects against Internet of Things (IoT) threats, extends control to third-party devices, and orchestrates automated responses to a variety of networking events.
It's a subscription-based license, which is based on the usage and number of concurrent users.
The licensing fees are a little bit high.
It's a subscription-based license, which is based on the usage and number of concurrent users.
The licensing fees are a little bit high.
Cisco Duo is a cloud-based access management platform that secures access to all applications, for any user and device, from anywhere. It’s designed to be both easy to use and deploy, while providing complete endpoint visibility and control.
During testing we are allowed a certain number of licenses for free.
Its price is reasonable. It is not highly expensive.
During testing we are allowed a certain number of licenses for free.
Its price is reasonable. It is not highly expensive.
Saviynt is an intelligent, cloud-first identity governance & access management solution. The solution is designed to help organizations quickly scale cloud initiatives and solve security and compliance challenges. Saviynt offers identity governance, granular application access, cloud security, and privileged access to secure your company’s ecosystem and provide a seamless user experience.
If you need to make any changes then there are additional fees.
The price of the license for this product is quite expensive.
If you need to make any changes then there are additional fees.
The price of the license for this product is quite expensive.
We paid 100 bucks for one Yubikey.
We paid 100 bucks for one Yubikey.
As we've seen, passwords alone don't keep unwanted guests out of your network. Password-only authentication has led to security breaches, malware infections, and policy violations. With two-factor authentication, a password is used along with a security token and authentication server to provide far better security. Authorized employees can remotely access company resources safely using a variety of devices, ranging from lpatops to mobile phones.
It is included as part of our firewall license.
I would rate the pricing as an eight out of ten. We purchased the solution at a reasonable price in 2019.
It is included as part of our firewall license.
I would rate the pricing as an eight out of ten. We purchased the solution at a reasonable price in 2019.
ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.
It's a bit pricey and could be more competitive.
Its price is comparable to other products in the market.
It's a bit pricey and could be more competitive.
Its price is comparable to other products in the market.
One Identity Manager is a value-added and trusted active directory management and user provisioning software solution. One Identity Manager administers and protects an organization’s data and users, minimizes threats, and ensures that compliance regulations are consistently satisfied.
Users will have access to the data and applications they need when they need them. One Identity can be used on premises, in the cloud, and also with hybrid options. One Identity Manager is able to easily combine strict governance compliance regulations and rigorous security protocols to keep business enterprises secure and functional today and into the future. One Identity Manager is also a robust, scalable identity governance and administration (IGA) solution. The solution is designed to meet the changing needs of a growing dynamic business enterprise, and not be limited or left vulnerable by IT department constricts.
It is a very good product but it's not the cheapest or cost-efficient.
There are old processes that are really great for some people and look like pieces of artwork. However, the maintenance of them is really expensive.
It is a very good product but it's not the cheapest or cost-efficient.
There are old processes that are really great for some people and look like pieces of artwork. However, the maintenance of them is really expensive.
The RSA SecurID Suite combines the separate disciplines of access management and authentication with identity governance and user lifecycle management into one comprehensive suite. It goes way beyond the capabilities of traditional identity and access management systems by using risk analytics to provide identity and access assurance. This helps organizations solve two fundamental challenges:
I think the price of this solution is reasonable compared to YubiKey and Duo given that it offers the same similar features.
RSA SecurID Access is expensive.
I think the price of this solution is reasonable compared to YubiKey and Duo given that it offers the same similar features.
RSA SecurID Access is expensive.
CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.
licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record.
I think that it was in the range of $200,000 that had to get approved.
licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record.
I think that it was in the range of $200,000 that had to get approved.
BeyondTrust Endpoint Privilege Management enables organizations to mitigate attacks by removing excess privileges on Windows, Mac, Unix/Linux and networked devices. Remove excessive end user privileges and control applications on Windows, Mac, Unix, Linux, and networked devices without hindering end-user productivity.
I'm sure everyone should have the cluster environment, which means more expensive, anyway, cheaper than the other solutions.
PowerBroker for a Mac client is three times the price of the Windows version.
I'm sure everyone should have the cluster environment, which means more expensive, anyway, cheaper than the other solutions.
PowerBroker for a Mac client is three times the price of the Windows version.
Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantly reduce cyber theft. As the leading password manager and digital vault, Keeper helps millions of people and thousands of businesses substantially mitigate the risk of a data breach. Keeper is SOC 2 Certified and utilizes best-in-class encryption to safeguard its customers. Keeper protects industry-leading companies including Sony, Chipotle, and The University of Alabama at Birmingham. Keeper partners with global OEMs and mobile operators to preload Keeper on smartphones and tablets. Learn more at https://keepersecurity.com.
Free works unless the paid is absolutely necessary.
The more users, the better the price. Always opt for the live support.
Free works unless the paid is absolutely necessary.
The more users, the better the price. Always opt for the live support.
PingID pricing is a ten out of ten because it's a little bit cheaper than other tools, such as Okta and ForgeRock, and supports multiple tools.
PingID's pricing is pretty competitive.
PingID pricing is a ten out of ten because it's a little bit cheaper than other tools, such as Okta and ForgeRock, and supports multiple tools.
PingID's pricing is pretty competitive.
Auto-pilot for all your passwords
If you import from sources like XML, keepass, CSV files be sure to clean the import files, this reduces the adjustments in the slow tool itself.
You do not have to purchase licenses for your entire organization. You can scale as adoption grows.
If you import from sources like XML, keepass, CSV files be sure to clean the import files, this reduces the adjustments in the slow tool itself.
You do not have to purchase licenses for your entire organization. You can scale as adoption grows.
PingFederate is an enterprise federation server that enables user authentication and single sign-on. It serves as a global authentication authority that allows employees, customers and partners to securely access all the applications they need from any device. PingFederate easily integrates with applications across the enterprise, third-party authentication sources, diverse user directories and existing IAM systems, all while supporting current and past versions of identity standards like OAuth, OpenID Connect, SAML and WS-Federation. And it can be deployed on-premises or in the cloud, so you can support today’s needs and future-proof your business for tomorrow’s requirements.
Ping offers flexible pricing that's not standardized.
Ping offers flexible pricing that's not standardized.
One Identity Safeguard is an integrated system that combines a secure, toughened password safe and a session management and monitoring solution with threat detection and analytics into one integrated solution. It stores, manages, records, and analyzes privileged access in a secure manner.
Setup cost, pricing and licensing are all very expensive.
The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible.
Setup cost, pricing and licensing are all very expensive.
The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible.
Symantec VIP Access Manager is the next generation control platform that integrates Single Sign-On (SSO) with strong authentication, access control, and user management. It offers users and administrators control, convenience, and compliance for public and private cloud- based applications. Symantec VIP Access Manager solves cloud security problems using identity and/or context-based access control across multiple cloud applications. In the cloud, where a traditional enterprise perimeter doesn't exist, this solution fills the gap. Through Symantec VIP Access Manager, administrators can define policies that utilize the built-in user directory or existing identity management infrastructure to enforce security and compliance for applications without getting in the way of productivity. Symantec VIP Access Manager can also protect and consolidate access management for on-premise web applications. It also simplifies compliance auditing for cloud applications by consolidating logs across all applications it protects.
Licensing and pricing seems very fair.
There is a one-time setup fee plus the licenses are provided as per the number of users. For SMS and voice calls, the costs are separate.
Licensing and pricing seems very fair.
There is a one-time setup fee plus the licenses are provided as per the number of users. For SMS and voice calls, the costs are separate.
Oracle Identity Governance (OIG) is a very versatile and robust enterprise identity management solution that offers functional and business performance competence by supplying centralized administration and total automation of identity and client provisioning events throughout the organization and user applications. Oracle Identity Governance monitors the complete identity and role process to satisfy rapidly changing business and complex compliance regulations and quickly delivers critical reporting and compliance capabilities.
Oracle licenses are expensive. I suggest making pricing and licensing decisions that align with architectural requirements and the project's budget.
The cost of support and upgrading to the next release are both expensive.
Oracle licenses are expensive. I suggest making pricing and licensing decisions that align with architectural requirements and the project's budget.
The cost of support and upgrading to the next release are both expensive.
CyberArk Identity is a versatile identity management solution suitable for a wide range of enterprises. CyberArk Identity users have expressed satisfaction with various aspects, highlighting its quality, functionality, and value for money. They appreciate its user-friendly interface and the convenience it offers. Overall, the user reviews indicate a positive experience with the product or service.
We find that the pricing and licensing of this solution is adequate, as compared to the other competitors in the market.
There is an initial license and then there is a subscription needed.
We find that the pricing and licensing of this solution is adequate, as compared to the other competitors in the market.
There is an initial license and then there is a subscription needed.
Reduce risk and centrally manage user access across your enterprise – with SAP Identity Management. The software integrates with your business processes to provide robust data and application security. Keep your operations running smoothly – and boost productivity by providing role-based user access, self-service password reset, approval workflows, and more.
The licensing cost varies depending on the specific requirements and deployment size.
I rate the solution's pricing a four out of ten.
The licensing cost varies depending on the specific requirements and deployment size.
I rate the solution's pricing a four out of ten.
Password Manager Pro is a secure vault for storing and managing shared sensitive information such as passwords, documents and digital identities of enterprises.
On a scale of one to five, with one being expensive and five being competitive, I would rate the pricing of this solution as a five.
On a scale of one to five, with one being expensive and five being competitive, I would rate the pricing of this solution as a five.
OneLogin by One Identity is a cloud-based access management solution for the modern enterprise. It delivers secure access for every user, every app and every device to meet an organization’s Workforce and Customer and Identity and Access Management (CIAM) needs.
Surprisingly expensive given the price of on-premise solutions.
The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.
Surprisingly expensive given the price of on-premise solutions.
The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.
The Utimaco SecurityServer is a general purpose HSM that ensures the security of cryptographic key material for servers and applications. It includes integration software that supports the industry standard PKCS#11, Microsoft CSP/CNG/SQLEKM and JCE interfaces. It can therefore be used for the most common business applications, such as public key infrastructures (PKIs) or database encryption.
Offering the broadest range of authentication methods and form factors, Thales allows customers to address numerous use cases, assurance levels, and threat vectors with unified, centrally managed policies—managed from one authentication back end delivered in the cloud or on premise.
There is an annual licensing fee.
There is an annual licensing fee.
Licensing fees are paid on a monthly basis.
Licensing fees are paid on a monthly basis.
Two Factor Authentication & Access Management for Windows Active Directory.
You will be hard-pressed to find better pricing.
You will be hard-pressed to find better pricing.
Utimaco's Atalla Hardware Security Modules have helped customers protect their most sensitive financial data for over 38 years. Customers have recognized Atalla as having the highest 'Net Promoter Score' of any HSM appliance provider.
The customer using the solution needs to have a license and it is expensive. However, it might have changed, since I used it three years ago.
The customer using the solution needs to have a license and it is expensive. However, it might have changed, since I used it three years ago.
Red Hat is the world’s leading provider of enterprise open source solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies.
It is a low cost product. This product can be used by non-profit organizations or universities, when they don't want to invest a lot of money.
The license is around $8000 USD.
It is a low cost product. This product can be used by non-profit organizations or universities, when they don't want to invest a lot of money.
The license is around $8000 USD.
Identity Enterprise is an integrated IAM platform that supports a full suite of workforce, consumer, and citizen use cases. Ideally suited for high-assurance applications that require a Zero Trust approach for thousands or millions of users, Identity Enterprise can be deployed on-premises.
I would rate the product's pricing a five out of ten.
The subscription could be yearly or monthly, depending upon your choice.
I would rate the product's pricing a five out of ten.
The subscription could be yearly or monthly, depending upon your choice.
Thales SafeNet Trusted Access is a comprehensive access management solution that provides secure and seamless access to cloud and web applications. It offers a range of features, including multi-factor authentication, single sign-on, and adaptive authentication. With SafeNet, organizations can easily manage user access, enforce security policies, and monitor user activity to prevent cyber threats.
The smartest solution for simplifying user identity management for existing network access, directory services and business applications. DigiCert PKI Platform is the industry-leading solution that allows you to secure and manage all of your PKI applications from one place — no matter what solutions you have in place. Take control of and automate the certificate lifecycle for: Email, WiFi access points, Secure VPN, Mobile device management, Document Signing, Smart card login, Internet of things.
This solution won't cost much, as this would be free with the licensing from Microsoft.
I would rate it seven for the price.
This solution won't cost much, as this would be free with the licensing from Microsoft.
I would rate it seven for the price.
Imprivata OneSign delivers fast, secure no-click-access to the applications and information that care providers need, whenever and wherever they need it.
The price is reasonable, it's an affordable solution.
At the moment, I believe the price is reasonable.
The price is reasonable, it's an affordable solution.
At the moment, I believe the price is reasonable.
Active Directory stores information about objects on the network and makes this information easy for administrators and users to find and use. Active Directory uses a structured data store as the basis for a logical, hierarchical organization of directory information.
The solution is based on a licensing model.
The license is perpetual and the cost is minimal. If you purchase Microsoft Windows then Microsoft Active Directory comes with the package.
The solution is based on a licensing model.
The license is perpetual and the cost is minimal. If you purchase Microsoft Windows then Microsoft Active Directory comes with the package.
The modern enterprise consists of both on-premise and cloud-based solutions often being utilized by users who are often geographically distributed. These users may also be a mix of employees, contractors, customers, vendors and so forth. OpenIAM Identity Governance (IGA) simplifies the way in which organizations manage identities across this complex landscape.
Keep the proxy service layer on premises. That consumes SaaS security services on the back-end.
The pricing is $50 per head, yearly.
Keep the proxy service layer on premises. That consumes SaaS security services on the back-end.
The pricing is $50 per head, yearly.
Sign&go is a modular global SSO solution from llex International which addresses the security and traceability issues. It offers Strong authentication, Web Access Management, Mobile Access Management, Identity Federation functionalities through common architecture and administration.
DirX Directory is a standards-compliant, high-performance, highly available, reliable and secure Lightweight Directory Access Protocol (LDAP) and X.500 directory server. It offers unlimited scalability with outstanding read and write performance.
The price could be better.
The price could be better.
AWS IAM Identity Center is the recommended service for managing your workforce's access to AWS applications or your multiple AWS accounts (or both). It is a flexible solution that can be used to connect your existing identity source or help you create users in AWS. IAM Identity Center can be used alongside your existing AWS account access configurations.
The product is cheap since it is available on the cloud.
The product is cheap since it is available on the cloud.
Evidian Enterprise SSO replaces user passwords with a single authentication such as a password, biometrics, a smartcard or a radio badge. Access is immediate, whether the applications are internal or external to the company. The result for users is simplified access to their applications – they automatically comply with the security policy. And by removing tiresome administration tasks, Evidian Enterprise SSO simplifies information system management.
Cloud-ready Zero Trust Privilege is designed to handle requesters that are not only human but also machines, services and APIs. There will still be shared accounts, but for increased assurance, best practices now recommend individual identities, not shared accounts, where least privilege can be applied. Delinea Authentication Service allows properly verifying who requests privileged access. This can be achieved by leveraging enterprise directory identities, eliminating local accounts and decreasing the overall number of accounts and passwords, therefore reducing the attack surface.
The PINsafe from Swivel Secure takes a user’s fixed personal identification number and randomly generates a one-time login code that is sent to the user to enter as part of a second factor for authentication.
