Microsoft Entra ID, previously known as Azure AD (Active Directory), is Microsoft's cloud-based identity and access management (IAM) solution. Designed to help organizations of all sizes manage user identities and create an intelligent security perimeter around their cloud and on-premise resources. Microsoft Entra ID or Azure AD is integral to the Microsoft 365 and Azure ecosystems. It provides a robust set of capabilities to manage users and groups and secure access to applications in a centralized, streamlined manner.
Microsoft Entra ID (Azure AD) is a login system, morphing into a sophisticated identity and access management (IAM) solution for the modern, hybrid workplace. Imagine a single vault for all your digital keys – that's the essence of Entra ID's identity management. It acts as a central repository for user identities, encompassing usernames, passwords, and even additional attributes like department or employee role.
These capabilities enabled simplified administration using a unified platform for adding, modifying, and deleting user accounts. Users no longer need to remember login credentials for a plethora of applications. Entra ID streamlines access by using the same identity across various cloud services and on-premises resources (if integrated). Centralized identity management allows for stricter enforcement of security policies and password complexity requirements across the organization.
Authentication sits at the heart of the solution, ensuring only authorized users gain access to sensitive resources. It employs a multi-pronged approach:
For organizations with on-premises infrastructure, Microsoft Entra ID (Azure AD) offers hybrid identity options. This allows for a smooth integration between on-premises Active Directory and Entra ID, providing a consistent identity for users across both environments. It enables organizations to leverage their existing investments in on-premises infrastructure while taking advantage of cloud scalability and flexibility.
In conclusion, Microsoft Entra ID (Azure AD) is a comprehensive IAM solution that addresses the complex challenges of managing and securing identities in a cloud-centric world. Its blend of ease of use, security, and integration capabilities makes it an essential component of modern IT infrastructure, supporting both operational efficiency and strategic business objectives.
The licensing cost is a bit prohibitive.
Licensing is easy.
The licensing cost is a bit prohibitive.
Licensing is easy.
Cisco ISE is an all-in-one solution that streamlines security policy management and reduces operating costs. Cisco ISE delivers visibility and access control over users and devices across wired, wireless, and VPN connections.
There are three levels of pricing: basic, plus, and apex. Basic satisfied our needs.
If you go directly with Cisco for the implementation it's very, very expensive.
There are three levels of pricing: basic, plus, and apex. Basic satisfied our needs.
If you go directly with Cisco for the implementation it's very, very expensive.
CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.
Pricing and licensing depend on the environment.
It is not a cheap solution. It is expensive as compared with other solutions. However, it is one of the best solutions in their domain.
Pricing and licensing depend on the environment.
It is not a cheap solution. It is expensive as compared with other solutions. However, it is one of the best solutions in their domain.
Okta Workforce Identity is a powerful solution that provides single sign-on capabilities and centralized access control for multiple applications. Its most valuable features include workflows, multiple SSO protocols, and Active Directory integrations. It helps organizations by simplifying access management, improving security with multi-factor authentication, and streamlining user provisioning. It is particularly beneficial for large employers, retail chains, and organizations with a significant number of employees. Okta Workforce Identity is easy to use, scalable, and reliable, making it an essential tool for identity and access management.
License is around US$20,000 annually.
It is costly for large companies.
License is around US$20,000 annually.
It is costly for large companies.
Omada Identity delivers an end-to-end identity and access management solution with essential identity governance functionality for secure, compliant, and efficient administration of all users' access rights across on-premises or cloud-based systems. The solution provides configurable best practice processes that covers all identity and access related scenarios from providing an access risk overview, management of identities lifecycle, to automated enforcement of policies.
The pricing is too high for SMBs.
Omada continues to be very competitive on pricing, especially on the Omada cloud product.
The pricing is too high for SMBs.
Omada continues to be very competitive on pricing, especially on the Omada cloud product.
Fortinet FortiAuthenticator is the primary secure point of approved access into the Fortinet network, authorizing users, reviewing access permissions, and relaying the information to all Fortigate devices for comparison with identity-based protocols. Fortinet FortiAuthenticator is a top-ranked authorization and SSO solution.
Appropriate secure access is fundamental to every role in an enterprise ecosystem. It is an integral function of every organization to ensure that every access and privilege is secure and to mitigate any possible risk to an organization. Approved users should only have access to the necessary information when they need it, from the appropriate location(s) to safeguard an organization's security at all times.
I would start off with a VM including the base license and scale according to the number of users you need to authenticate.
You can pay as you go with them. You purchase a base license and add to it as needed.
I would start off with a VM including the base license and scale according to the number of users you need to authenticate.
You can pay as you go with them. You purchase a base license and add to it as needed.
Cloud Identity is an Identity as a Service (IDaaS) and enterprise mobility management (EMM) product. It offers the identity services and endpoint administration that are available in G Suite as a stand-alone product. As an administrator, you can use Cloud Identity to manage your users, apps, and devices from a central location - the Google Admin console.
We probably spend about $50,000 a year on licensing.
Licensing fees are on a yearly basis.
We probably spend about $50,000 a year on licensing.
Licensing fees are on a yearly basis.
SailPoint IdentityIQ is preferred over Saviynt due to its seamless integration with various systems and applications, along with its user-friendly interface and robust reporting functionalities. Users highly regard its comprehensive access controls and strong identity management capabilities. The positive feedback on the customer service and support of SailPoint IdentityIQ sets it apart from Saviynt, with users praising the helpfulness, responsiveness, and expertise demonstrated by the team.
If you need to make any changes then there are additional fees.
The price of the license for this product is quite expensive.
If you need to make any changes then there are additional fees.
The price of the license for this product is quite expensive.
ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.
It's a bit pricey and could be more competitive.
Its price is comparable to other products in the market.
It's a bit pricey and could be more competitive.
Its price is comparable to other products in the market.
One Identity Manager is a value-added and trusted active directory management and user provisioning software solution. One Identity Manager administers and protects an organization’s data and users, minimizes threats, and ensures that compliance regulations are consistently satisfied.
Users will have access to the data and applications they need when they need them. One Identity can be used on premises, in the cloud, and also with hybrid options. One Identity Manager is able to easily combine strict governance compliance regulations and rigorous security protocols to keep business enterprises secure and functional today and into the future. One Identity Manager is also a robust, scalable identity governance and administration (IGA) solution. The solution is designed to meet the changing needs of a growing dynamic business enterprise, and not be limited or left vulnerable by IT department constricts.
It is a very good product but it's not the cheapest or cost-efficient.
There are old processes that are really great for some people and look like pieces of artwork. However, the maintenance of them is really expensive.
It is a very good product but it's not the cheapest or cost-efficient.
There are old processes that are really great for some people and look like pieces of artwork. However, the maintenance of them is really expensive.
The RSA SecurID Suite combines the separate disciplines of access management and authentication with identity governance and user lifecycle management into one comprehensive suite. It goes way beyond the capabilities of traditional identity and access management systems by using risk analytics to provide identity and access assurance. This helps organizations solve two fundamental challenges:
I think the price of this solution is reasonable compared to YubiKey and Duo given that it offers the same similar features.
RSA SecurID Access is expensive.
I think the price of this solution is reasonable compared to YubiKey and Duo given that it offers the same similar features.
RSA SecurID Access is expensive.
CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.
licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record.
I think that it was in the range of $200,000 that had to get approved.
licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record.
I think that it was in the range of $200,000 that had to get approved.
Microsoft Identity Manager (MIM) builds on the identity and access management capabilities of Forefront Identity Manager. MIM helps you manage the users, credentials, policies, and access within your organization. Additionally, MIM adds a hybrid experience, privileged access management capabilities, and support for new platforms.
MIM is free with a Microsoft Azure license.
The solution is included in the Microsoft E3 license and premium subscriptions of Azure AD.
MIM is free with a Microsoft Azure license.
The solution is included in the Microsoft E3 license and premium subscriptions of Azure AD.
BeyondTrust Endpoint Privilege Management enables organizations to mitigate attacks by removing excess privileges on Windows, Mac, Unix/Linux and networked devices. Remove excessive end user privileges and control applications on Windows, Mac, Unix, Linux, and networked devices without hindering end-user productivity.
I'm sure everyone should have the cluster environment, which means more expensive, anyway, cheaper than the other solutions.
PowerBroker for a Mac client is three times the price of the Windows version.
I'm sure everyone should have the cluster environment, which means more expensive, anyway, cheaper than the other solutions.
PowerBroker for a Mac client is three times the price of the Windows version.
Varonis Platform is a comprehensive data security and analytics solution that helps organizations protect their critical data from insider threats and cyberattacks. Its primary use case is to provide visibility and control over data access, usage, and permissions across multiple platforms and environments.
Securonix Security Analytics SNYPR is a next-generation security analytics platform that transforms big data into actionable security intelligence, enabling you to take care of so much more than simply your SIEM (security information and event management) needs. In addition, it contains all of the tools that you may need to enable your organization to successfully handle both log management as well as UEBA (user and entity behavior analytics)-related tasks. The SNYPR management platform gives users the ability to combine security orchestration, automation, and response, security information and event management, network traffic analysis, and user and entity behavior analytics. This single technical environment does away with your need for multiple security, management, and analytics solutions.
We have a license from our 5.0, so that license just continued. We paid them the extra cloud-hosting costs for a year which were about $300,000.
We have an annual license. We pay $200,000 for the base licensing and we pay another $50,000 for the software as a service.
We have a license from our 5.0, so that license just continued. We paid them the extra cloud-hosting costs for a year which were about $300,000.
We have an annual license. We pay $200,000 for the base licensing and we pay another $50,000 for the software as a service.
Keeper Security is transforming the way businesses and individuals protect their passwords and sensitive digital assets to significantly reduce cyber theft. As the leading password manager and digital vault, Keeper helps millions of people and thousands of businesses substantially mitigate the risk of a data breach. Keeper is SOC 2 Certified and utilizes best-in-class encryption to safeguard its customers. Keeper protects industry-leading companies including Sony, Chipotle, and The University of Alabama at Birmingham. Keeper partners with global OEMs and mobile operators to preload Keeper on smartphones and tablets. Learn more at https://keepersecurity.com.
Free works unless the paid is absolutely necessary.
The more users, the better the price. Always opt for the live support.
Free works unless the paid is absolutely necessary.
The more users, the better the price. Always opt for the live support.
PingID pricing is a ten out of ten because it's a little bit cheaper than other tools, such as Okta and ForgeRock, and supports multiple tools.
PingID's pricing is pretty competitive.
PingID pricing is a ten out of ten because it's a little bit cheaper than other tools, such as Okta and ForgeRock, and supports multiple tools.
PingID's pricing is pretty competitive.
One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.
The licensing model is a simple user-based model, not that much complicated.
The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants.
The licensing model is a simple user-based model, not that much complicated.
The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants.
One Identity Safeguard is an integrated system that combines a secure, toughened password safe and a session management and monitoring solution with threat detection and analytics into one integrated solution. It stores, manages, records, and analyzes privileged access in a secure manner.
Setup cost, pricing and licensing are all very expensive.
The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible.
Setup cost, pricing and licensing are all very expensive.
The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible.
Oracle Identity Governance (OIG) is a very versatile and robust enterprise identity management solution that offers functional and business performance competence by supplying centralized administration and total automation of identity and client provisioning events throughout the organization and user applications. Oracle Identity Governance monitors the complete identity and role process to satisfy rapidly changing business and complex compliance regulations and quickly delivers critical reporting and compliance capabilities.
Oracle licenses are expensive. I suggest making pricing and licensing decisions that align with architectural requirements and the project's budget.
The cost of support and upgrading to the next release are both expensive.
Oracle licenses are expensive. I suggest making pricing and licensing decisions that align with architectural requirements and the project's budget.
The cost of support and upgrading to the next release are both expensive.
Reduce risk and centrally manage user access across your enterprise – with SAP Identity Management. The software integrates with your business processes to provide robust data and application security. Keep your operations running smoothly – and boost productivity by providing role-based user access, self-service password reset, approval workflows, and more.
The licensing cost varies depending on the specific requirements and deployment size.
I rate the solution's pricing a four out of ten.
The licensing cost varies depending on the specific requirements and deployment size.
I rate the solution's pricing a four out of ten.
CyberArk Identity is a versatile identity management solution suitable for a wide range of enterprises. CyberArk Identity users have expressed satisfaction with various aspects, highlighting its quality, functionality, and value for money. They appreciate its user-friendly interface and the convenience it offers. Overall, the user reviews indicate a positive experience with the product or service.
We find that the pricing and licensing of this solution is adequate, as compared to the other competitors in the market.
There is an initial license and then there is a subscription needed.
We find that the pricing and licensing of this solution is adequate, as compared to the other competitors in the market.
There is an initial license and then there is a subscription needed.
Microsoft Entra ID Protection uses advanced machine learning to identify sign-in risks and unusual user behavior to block, challenge, limit, or allow access.
The pricing is competitive in the SMA segment and runs $5-$6 per user.
The price of Azure AD is not expensive.
The pricing is competitive in the SMA segment and runs $5-$6 per user.
The price of Azure AD is not expensive.
OneLogin by One Identity is a cloud-based access management solution for the modern enterprise. It delivers secure access for every user, every app and every device to meet an organization’s Workforce and Customer and Identity and Access Management (CIAM) needs.
Surprisingly expensive given the price of on-premise solutions.
The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.
Surprisingly expensive given the price of on-premise solutions.
The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.
Microsoft Entra Permissions Management is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities – users and workloads – actions, and resources across cloud infrastructures. It detects, right-sizes, and monitors unused and excessive permissions and enables Zero Trust security through least privilege access in Microsoft Azure, AWS, and GCP.
We are a Fortune 500 company, so we always negotiate with Microsoft.
We are a Fortune 500 company, so we always negotiate with Microsoft.
JumpCloud is a comprehensive cloud-based directory platform that provides secure and centralized user management for organizations. It offers a wide range of features including user authentication, single sign-on, device management, and multi-factor authentication.
Licensing cost can be anywhere between $2 and $18 a month depending on what you want to do.
The cost was around $5 per user per month.
Licensing cost can be anywhere between $2 and $18 a month depending on what you want to do.
The cost was around $5 per user per month.
You just need to be aware that the more systems you connect, the more license fees you have to pay.
The price of the solution is a bit high and could be reduced.
You just need to be aware that the more systems you connect, the more license fees you have to pay.
The price of the solution is a bit high and could be reduced.
Microsoft Enterprise Mobility + Security (EMS) is the only comprehensive solution designed to help manage and protect users, devices, apps, and data in a mobile-first, cloud-first world.
I would rate pricing at eight out of ten. It is a bit higher because of the security features that Microsoft provides.
The solution is cost-effective.
I would rate pricing at eight out of ten. It is a bit higher because of the security features that Microsoft provides.
The solution is cost-effective.
Delinea Privilege Service provides all of your IT administration teams with secure, granular access to infrastructure regardless of location, and without the hassles of a VPN.
Secure browser-based access Authorized IT users launch management sessions for resources directly from the Privilege Service portal. Sessions use SSH and RDP protocols, and are always protected end-to-end.
It is sad that people with a limited budget won't be able to afford it.
The price model is based on the number of devices and opposed to the number of users, and it is not very flexible.
It is sad that people with a limited budget won't be able to afford it.
The price model is based on the number of devices and opposed to the number of users, and it is not very flexible.
ADManager Plus is an identity governance and administration (IGA) solution that simplifies identity management, ensures security, and improves compliance. With ADManager Plus, manage the user life cycle from provisioning to deprovisioning, run access certification campaigns, orchestrate identity management across enterprise applications, and protect data on your enterprise platforms with regular backups. Use over 200 reports to gain valuable insights into identities and their access rights. Improve the efficiency of your IGA operations with workflows, automations, and role-based access control policies. ADManager Plus' Android and iOS applications help with on-the-go AD and Azure AD management. For more information about ADManager Plus, visit manageengine.com/products/ad-manager/.
I downloaded the trial version, only.
The cost of this product is a little higher than I would expect for a tool like this.
I downloaded the trial version, only.
The cost of this product is a little higher than I would expect for a tool like this.
Licensing fees are paid on a monthly basis.
Licensing fees are paid on a monthly basis.
AWS Directory Service lets you run Microsoft Active Directory (AD) as a managed service. AWS Directory Service for Microsoft Active Directory, also referred to as AWS Managed Microsoft AD, is powered by Windows Server 2012 R2. When you select and launch this directory type, it is created as a highly available pair of domain controllers connected to your virtual private cloud (VPC). The domain controllers run in different Availability Zones in a region of your choice. Host monitoring and recovery, data replication, snapshots, and software updates are automatically configured and managed for you.
The pricing is reasonable.
AWS' pricing is fair, and costs can be cut if you look carefully at when you're using it.
The pricing is reasonable.
AWS' pricing is fair, and costs can be cut if you look carefully at when you're using it.
WSO2 Identity Server can be used to simplify identity and access management (IAM) related activities in the enterprise. The product is based on open standards and open source principles. WSO2 Identity Server comes with seamless, easy to use integration capabilities that help connect applications, user stores, directories and identity management systems.
We have to take their support, but that is a minimal charge if I'm comparing it to other identity managers.
I have found the solutions license is priced competitively compared to others.
We have to take their support, but that is a minimal charge if I'm comparing it to other identity managers.
I have found the solutions license is priced competitively compared to others.
Salesforce Identity provides a single, trusted identity for employees, partners, and customers, so that you can manage apps, users, and data sharing with simplicity and transparency.
On a scale of one to ten, where one is a very low price and ten is a very high price, I rate Salesforce Identity's pricing a six out of ten.
On a scale of one to ten, where one is a very low price and ten is a very high price, I rate Salesforce Identity's pricing a six out of ten.
The biggest security problem today is people. Insiders are responsible for 90% of security incidents, per the 2015 Verizon DBIR Report. Organizations need to manage security risk from vendors, privileged users and high-risk users. ObserveIT captures video playback of policy violations and comprehensive metadata related to what people are doing, with this information, you can easily search and see what happened without translating logs or investigating across multiple systems.
Thales SafeNet Trusted Access is a comprehensive access management solution that provides secure and seamless access to cloud and web applications. It offers a range of features, including multi-factor authentication, single sign-on, and adaptive authentication. With SafeNet, organizations can easily manage user access, enforce security policies, and monitor user activity to prevent cyber threats.
In a highly competitive environment the quality, precision and innovation are the key factors for organizations to stay ahead instead of falling behind. Choosing strong, reliable solution providers today will influence your tomorrow. At Evolveum we understand such needs and as an answer we created midPoint, a unique open source solution seamlessly combining identity management and identity governance.
We're EVOLVEUM partners, and I tried it without a license.
Licensing is defined by the number of users.
We're EVOLVEUM partners, and I tried it without a license.
Licensing is defined by the number of users.
Silverfort is a unified identity protection platform that helps organizations protect their networks and cloud environments from identity-based attacks. The platform uses agentless and proxyless technology to continuously monitor all access of users and service accounts across both cloud and on-premise environments, analyze risk in real time using an AI-based engine, and enforce adaptive authentication and access policies.
Pricing varies based on user count/number of modules you need.
I rate the product's price a five on a scale of one to ten, where one is cheap, and ten is expensive.
Pricing varies based on user count/number of modules you need.
I rate the product's price a five on a scale of one to ten, where one is cheap, and ten is expensive.
The Symantec Identity Governance and Administration (formerly CA Identity Suite) provides comprehensive identity management and governance capabilities with a simple, intuitive user experience. This user experience can dramatically simplify processes such as user access requests and access certifications, resulting in improved productivity and user satisfaction. In addition, the Symantec Identity Governance and Administration performs risk analysis and certification and enables remediation actions in real-time during the access provisioning steps, thereby improving audit performance and risk posture with preventive policy enforcement.
Pricing and licensing models are adequate and reasonable.
Compared to other options, CA products are not that expensive.
Pricing and licensing models are adequate and reasonable.
Compared to other options, CA products are not that expensive.
A full 80% of all breaches use compromised identities. CrowdStrike Falcon® Identity Protection stops breaches faster by protecting workforce identities everywhere leveraging advanced AI in the world’s largest unified, threat-centric data fabric.
SAP's Customer Data Cloud helps grow your audience and build trusted, personalized customer relationships based on transparency and personal data control.
The modern enterprise consists of both on-premise and cloud-based solutions often being utilized by users who are often geographically distributed. These users may also be a mix of employees, contractors, customers, vendors and so forth. OpenIAM Identity Governance (IGA) simplifies the way in which organizations manage identities across this complex landscape.
IBM Security Identity Governance and Intelligence (IGI) delivers a business-centric approach to Identity Management and Governance. It empowers business and IT to work together to meet regulatory compliance and security goals across enterprise applications and data. IGI covers enterprise user lifecycle management, access risk assessment and mitigation, certification, password management as well as powerful analytics and reporting to enable business to make the right decisions on enterprise access.
I would rate the price eight out of 10, with 10 as the best value for money.
I would rate the price eight out of 10, with 10 as the best value for money.
Compact Identity is a solution developed by ILANTUS that solves the identity and access related issues of SMBs (up to 3000 users). It is a complete solution with Access Management, ULM and AG. It includes access governance for audits and compliance and everything from single sign-on to password management and birth-right to access request based account provisioning.
Oracle Identity Cloud Service enables organizations to automate security, compliance, and IDM activities regardless of where they are on their journey to the cloud.
Our licensing costs are on a yearly basis.
Our licensing costs are on a yearly basis.
Axiad Cloud delivers on the promise of organization-wide passwordless orchestration by supporting the widest range of credentials in the market, including FIDO, Windows Hello for Business, YubiKeys, smart cards, mobile MFA, TPM and biometrics, and more. It also can be applied in heterogeneous IT environments – e.g., organizations operating Windows, Mac and Linux operating systems or with multiple existing IAM systems in place – allowing organizations to remove gaps and inconsistencies in how they authenticate across complex ecosystems, and ultimately to become more systematic in their overall cybersecurity practices.
Axiad's pricing was what we were expecting. It was at the right spot. They were competitive.
Axiad's pricing was what we were expecting. It was at the right spot. They were competitive.
Microsoft Entra External ID, part of Microsoft Entra, provides highly secure digital experiences for partners, customers, citizens, patients, or any users outside your organization with customization controls. Combine external identities and user directories in one portal to seamlessly manage access across the organization.