I also want to try Identity Now to compare the environment, the solution, and the features.

I'm looking at SailPoint and Saviynt and Oracle. Currently, we do Sailpoint IBM solutions. However, we are just finalizing the PoC. We aren't really using anything just yet.

Broadcom was previously utilized for similar purposes, but it lacked certain capabilities, particularly in terms of traceability and governance functionalities like attestation, recertification, and periodic certifications. Additionally, Broadcom faced support issues and relied on outdated technologies which presented challenges. SailPoint, on the other hand, was sought as a more contemporary and comprehensive solution to address these limitations, offering numerous advantages over Broadcom.

I used Oracle for a three-year-long project. I encountered constant challenges with incompatibility, or bugs and glitches using it.

As a company we implement identity solutions for customers. We’ve implemented a variety of product replacements and migrations, including:

Oracle Identity Analytics (OIA) replacement (formally Sun Role Manager and Vaau RBAC), OIA lacked the flexibility and functionality to meet the customers’ SOD (Segregation of Duty) Policy requirements as well as entitlement and role modeling requirements. Lack of industry resources with implementation product knowledge was also a factor in retiring OIA solutions; lack of supported application connectors (and/or complexity, eg. requiring fully functional implementation of Oracle IdM for OIA to function) was another factor.

BMC IDM / Control-SA, we’ve implemented both Control SA replacement, and more recently we worked on Control SA end-of-life migration projects. SailPoint offers a clear migration strategy to replace existing Control SA/ESS deployments. SailPoint acquired the BMCs IDM/Control-SA Connector stack people/technology to make migration much simpler exercise; replacing Control SA/ESS can be as simple as configuring the application connectors in IdentityIQ and pointing them to the existing Control SA Agents or Service Manager. Since acquiring the BMC ESS Connector stack, SailPoint has started rewriting the connectors into agentless Java connectors which are simpler to use. Some legacy connections still require agents i.e. RACF, ACF2, NIS.

Prior to compliance and governance solutions coming to the forefront of identity management, we found our customers were starting to think about and “roll their own” solutions to complement the gaps in their IdM stacks; this often involved attempting to ‘bolt on’ access reviews and SOD functionality into existing provisioning systems.We’ve worked with customers to replace several in-house developed solutions, including customer-developed Access Request, User Access Review and even a custom developed Provisioning system! In each case the customer chose to migrate off their home-rolled solution to take advantage of the savings offered from an out-of-the-box solution as well as take advance of the deep compliance and provisioning functionality that IdentityIQ offers.

I've tried Saviynt but compared to SailPoint IdentityIQ, Saviynt isn't stable. It also has fewer features compared to what you get from SailPoint IdentityIQ. For me, SailPoint IdentityIQ is better because of its stability, and it offers many features. However, cost-wise, Saviynt is cheaper.

Previously, we picked a product that got moved between so many companies and got bought and merged, so the support was really horrible. We had bad support back then.

Ten of our administrators used Append to control executive activities prior to using SailPoint IdentityIQ, but in general, we found SailPoint IdentityIQ to be more useful in maintaining information, access roles, and permissions. The solution does exactly what we needed it to do.

We had some experience with Microsoft and IBM in the past, but these solutions are not so good. They're very expensive, and Microsoft and IBM are not flexible in pricing. 

We decided to go with SailPoint because, as a company, they are flexible. Their partner discounts are also good. SailPoint is a really good company. It is a new generation company like some of the other competitors and vendors.

We had legacy systems. That's why we moved to SailPoint.

The initial setup is very straight forward and it takes around 30 minutes end to end. It is a Java app on a web server; you can do it locally very quickly.

I have previously used Saviynt and Okta Workforce Identity.

We previously worked with IBM IM products like ISIM and Oracle IM, and we switched to SailPoint IdentityIQ because it is an enhancing product. SailPoint IdentityIQ is the best in feature enhancement.

We didn’t have a solution for Certification, but we had a homegrown solution for all other IAM processes. For various reasons, we switched to IIQ.

No.

Most of the clients kept the solution after using SailPoint IIQ. The only one that considered not using it anymore wanted to keep his historical supplier and to have the same solution for Identity Governance and Administration and for Authentication (which is not something SailPoint provides).

Yes. In several customers we have switched to SailPoint IdentityIQ due to the unified architecture and intuitive centralized governance across datacenter.

This is a new implementation at this client they previously had no Identity governance in place

I have experience with NetIQ, and I prefer it to this solution.

Yes we did. We switched because the solution no longer offered support as it was sold to Sailpoint.

Of course. In addition to SailPoint IdentityIQ I have experience in implementing MS FIM 2010, OIM 11gR2, and Oracle Waveset (Sun IDM) 8.

In my opinion this is the best product and I agree with Gartner which described it as the best product in the "Identity Governance and Administration Magic Quadrant" in 2013-2014.

Yes, we used Aveksa's access governance which seemed to have a lot of issues with regards to aggregation and certificate generation which prompted the switch to Sailpoint.

The client made the decision.

Not applicable.

Yes, we used Sun Identity Management and we switched because Sun IDM is coming to the end of its life.