Try our new research platform with insights from 80,000+ expert users

F5 BIG-IP Access Policy Manager (APM) vs ForgeRock comparison

F5 and Ping Identity are both solutions in the Access Management category. F5 is ranked #9 with an average rating of 8.3, while Ping Identity is ranked #14 with an average rating of 7.5. F5 holds a 2.0% mindshare in AM, compared to Ping Identity’s 6.0% mindshare. Additionally, 88% of F5 users are willing to recommend the solution, compared to 92% of Ping Identity users who would recommend it.
F5 BIG-IP Access Policy Man...
Read 18 F5 BIG-IP Access Policy Manager (APM) reviews
  • 2,814 Views
  • 619 Comparison Views
88% willing to recommend
ForgeRock
Read 30 ForgeRock reviews
  • 3,793 Views
  • 1,972 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Aug 11, 2024

ForgeRock and F5 BIG-IP Access Policy Manager (APM) are both solutions in the identity and access management domain. ForgeRock holds an edge in user-friendliness and integration, while F5 BIG-IP APM is known for its security features and reliability.

Features: ForgeRock offers comprehensive identity management features, seamless integration capabilities, and effective handling of complex environments. F5 BIG-IP APM provides robust security policies, advanced application access control, and granular options to protect resources.

Room for Improvement: ForgeRock could benefit from better technical support, more detailed documentation, and simplifying the implementation of complex features. F5 BIG-IP APM needs to enhance its reporting capabilities, simplify the initial setup process, and improve ease of use.

Ease of Deployment and Customer Service: ForgeRock users report quicker deployment times but slower customer support. F5 BIG-IP APM users experience more time-consuming deployment due to a steeper learning curve but have responsive and helpful customer service.

Pricing and ROI: ForgeRock is considered cost-effective with good ROI due to its features and capabilities. F5 BIG-IP APM has higher pricing but is seen as justifying the cost with its extensive security features and long-term reliability.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed F5 BIG-IP Access Policy Manager (APM) vs. ForgeRock Report (Updated: December 2025).
Buyer's Guide
F5 BIG-IP Access Policy Manager (APM) vs. ForgeRock
December 2025
Download the complete report
Helped 879,927 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

F5 BIG-IP Access Policy Man...
Ranking in Access Management
9th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
18
Ranking in other categories
Secure Web Gateways (SWG) (15th), Network Access Control (NAC) (7th), SSL VPN (5th), Remote Access (10th)
ForgeRock
Ranking in Access Management
14th
Average Rating
8.0
Reviews Sentiment
6.5
Number of Reviews
30
Ranking in other categories
Identity Management (IM) (15th), Customer Identity and Access Management (CIAM) (7th)
 

Mindshare comparison

As of January 2026, in the Access Management category, the mindshare of F5 BIG-IP Access Policy Manager (APM) is 2.0%, up from 1.9% compared to the previous year. The mindshare of ForgeRock is 6.0%, up from 5.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Access Management Market Share Distribution
ProductMarket Share (%)
F5 BIG-IP Access Policy Manager (APM)2.0%
ForgeRock6.0%
Other92.0%
Access Management
 

Featured Reviews

SalihUcpinar
Senior Cyber Security Consultant at KoçSistem
Has provided reliable policy controls and secure web access for large enterprises
I consider Cloudflare when evaluating centralized access control features; Cloudflare utilizes multi-factor authentication and full API support, while F5 BIG-IP Access Policy Manager (APM) needs to enhance its API support. I recommend F5 BIG-IP Access Policy Manager (APM) for large companies such as Tüpraş and Ford. Tüpraş is one of the biggest companies in Turkey, along with other customers such as Tofaş, Euroko, Koç Holding, and more. For on-premises deployment, I would rate it a 10. For cloud deployment, I would rate it a seven. I primarily use it on-premises. I rate F5 BIG-IP Access Policy Manager (APM) eight out of ten.
Read full review
Ahmet Murat Ülker - PeerSpot reviewer
Ahmet Murat Ülker
Devops Engineer and Trainer at a tech vendor with 1-10 employees
Easy to use, but customizations can be complicated to handle
I would suggest others use the product after asking them to consider their use cases. SSO may be a use case for some, and using the product as an IDM tool may be a use case. At the moment, my company is not deploying all the components of ForgeRock itself. My company uses ForgeRock for OAuth 2.0. For example, my company is not deploying the IDM and identity gateway components. You should consider your use case and select the required components for that use case. My company does not use the SSO features of the tool. My company uses SSO to access ForgeRock's AM Console for individual users. My company does not use single sign on features of the product and instead, we use Auth0. I rate the tool a seven or eight out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"F5 BIG-IP Access Policy Manager (APM) provides excellent WAF and bot defense solutions."
"The tool is reliable and easy to configure."
"F5 BIG-IP APM is relatively easy to use."
"A lot of features are useful to me, including mostly the authentication, SAML, or SSO, with no sign-on."
"The load balancing features are valuable."
"On a scale from one to ten for stability, I would rate F5 BIG-IP Access Policy Manager (APM) a ten."
"Our organization is small - a college with about 3,500 students. We use F5 BIG-IP Access Policy Manager to protect our site, especially from the Iranian attacks we faced last year. We restrict access to only inside the country."
"In my opinion, the GUI is perfect with the configuration options provided. F5 BIG-IP has given customization options and policy configuration tools in the GUI. It's good and good enough to work."
More F5 BIG-IP Access Policy Manager (APM) pros
"We have found the identity and access management tools in the solution to be particularly useful for our organization."
"Easy to navigate, handle and manage the applications."
"Installation and configuration are pretty easy for ForgeRock OpenIDM."
"Easy to customize and adaptable to any environment."
"The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it."
"The product is easy to set up."
"It works very well, especially in Identity and Access Management. It helps detect anomalies in user behavior patterns."
"The most valuable features of ForgeRock are social login and data protection."
More ForgeRock pros
 

Cons

"The price of this product can be improved."
"F5 BIG-IP Access Policy Manager (APM) is not user-friendly and operates slowly."
"Regarding price, I'm not directly involved in purchasing, but our CIO thinks the product is very expensive. He's considering moving from the tool to Citrix NetScaler WAF because it's cheaper, and we already have Citrix for VDI. We got NetScaler almost free as part of our VDI deal. Three years ago, I convinced him to use the solution because it's better, but now, with budget constraints, he may want to switch."
"F5 BIG-IP APM disconnects when you leave it for long enough, but that is natural for IT solutions to do. That's a little bit frustrating."
"If I could copy and paste objects instead of picking and configuring them from scratch each time, it would be great."
"F5 BIG-IP Access Policy Manager has room for improvement in integration with other products."
"The technical support’s response time must be improved."
"The operational deployment is not great."
More F5 BIG-IP Access Policy Manager (APM) cons
"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."
"They should improve the solution by include reporting."
"The product's customization is a bit complicated."
"The solution's documentation is not very good, and they do not give more details."
"In an upcoming release, the solution could improve by limiting the need to do customizations."
"Automatic Deployment needs improvement. it could be made easier."
"As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively."
"The product's support services in the French language are not free."
More ForgeRock cons
 

Pricing and Cost Advice

"I rate the tool's pricing an eight out of ten."
"The product is very expensive."
"Recently, they have simplified the licensing"
"The tool is a little bit expensive."
"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."
"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."
"ForgeRock is an expensive solution."
"The pricing of the solution is fair but I do not have the full details."
"ForgeRock's pricing is more competitive than other products."
"The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end."
"Its price is comparable to other products in the market."
"It's a bit pricey and could be more competitive."
report
See which vendors are best for you
Use our free recommendation engine to learn which Access Management solutions are best for your needs.
See recommendations
879,927 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Manufacturing Company
12%
Government
9%
Computer Software Company
9%
Financial Services Firm
22%
Computer Software Company
9%
Manufacturing Company
8%
Insurance Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise1
Large Enterprise9
By reviewers
Company SizeCount
Small Business13
Midsize Enterprise4
Large Enterprise13
 

Questions from the Community

What do you like most about F5 BIG-IP Access Policy Manager (APM)?
In my opinion, the GUI is perfect with the configuration options provided. F5 BIG-IP has given customization options and policy configuration tools in the GUI. It's good and good enough to work.
See all answers
What is your experience regarding pricing and costs for F5 BIG-IP Access Policy Manager (APM)?
F5 products are more expensive than other solutions but are valued for their quality and reliability, akin to purchasing a Bentley as opposed to an Audi.
See all answers
What needs improvement with F5 BIG-IP Access Policy Manager (APM)?
F5 BIG-IP Access Policy Manager (APM) is not user-friendly and operates slowly. Additional features for architecture such as Anycast would be beneficial. The ability to run the Anycast feature woul...
See all answers
What do you like most about ForgeRock?
The most valuable features of ForgeRock are social login and data protection.
See all answers
What is your experience regarding pricing and costs for ForgeRock?
Our company was considering switching back to Keycloak from ForgeRock, so as to not pay any license fees. ForgeRock also supports M-PIN and biometric features that Keycloak does not provide. My com...
See all answers
What needs improvement with ForgeRock?
In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't think ForgeRock directly supports integrations with Slack, making it an area wher...
See all answers
 

Comparisons

Ivanti Connect Secure vs F5 BIG-IP Access Policy Manager (APM) Logo
Ivanti Connect Secure vs F5 BIG-IP Access Policy Manager (APM)
Compared 6% of the time
Fortinet FortiGate vs F5 BIG-IP Access Policy Manager (APM) Logo
Fortinet FortiGate vs F5 BIG-IP Access Policy Manager (APM)
Compared 5% of the time
CyberArk Privileged Access Manager vs F5 BIG-IP Access Policy Manager (APM) Logo
CyberArk Privileged Access Manager vs F5 BIG-IP Access Policy Manager (APM)
Compared 4% of the time
Citrix Gateway vs F5 BIG-IP Access Policy Manager (APM) Logo
Citrix Gateway vs F5 BIG-IP Access Policy Manager (APM)
Compared 4% of the time
Cisco Identity Services Engine (ISE) vs F5 BIG-IP Access Policy Manager (APM) Logo
Cisco Identity Services Engine (ISE) vs F5 BIG-IP Access Policy Manager (APM)
Compared 4% of the time
More F5 BIG-IP Access Policy Manager (APM) Competitors
Microsoft Entra ID vs ForgeRock Logo
Microsoft Entra ID vs ForgeRock
Compared 18% of the time
Ping Identity Platform vs ForgeRock Logo
Ping Identity Platform vs ForgeRock
Compared 9% of the time
SailPoint Identity Security Cloud vs ForgeRock Logo
SailPoint Identity Security Cloud vs ForgeRock
Compared 8% of the time
Auth0 Platform vs ForgeRock Logo
Auth0 Platform vs ForgeRock
Compared 7% of the time
Amazon Cognito vs ForgeRock Logo
Amazon Cognito vs ForgeRock
Compared 2% of the time
More ForgeRock Competitors
 

Product Reports

Buyer's Guide
F5 BIG-IP Access Policy Manager (APM)
January 2026
F5 BIG-IP Access Policy Manager (APM) reportDownload F5 BIG-IP Access Policy Manager (APM) product report
Buyer's Guide
ForgeRock
January 2026
ForgeRock reportDownload ForgeRock product report
 

Also Known As

F5 Access Policy Manager
ForgeRock Identity Platform, ForgeRock OpenIDM
 

Overview

F5 BIG-IP Access Policy Manager (APM) is an access management proxy solution for managing global access to the enterprise networks, cloud providers, applications, and application programming interfaces (APIs). Through a single management interface, BIG-IP APM consolidates remote, mobile, network, virtual, and web access. 

BIG-IP APM can also serve as a bridge between modern and classic authentication and authorization protocols and methods. For applications which are unable to support modern authentication and authorization protocols, like SAML and OAuth with OIDC, but which do support classic authentication methods, BIG-IP APM converts user credentials to the appropriate authentication standard supported by the application.

BIG-IP APM Benefits:

  • Ease of use
  • Flexibility
  • Ability to integrate with other systems
  • Security features
  • Granular access control
  • Responsive and helpful support team

BIG-IP APM Features:

  • Support for Identity Aware Proxy (IAP) enabling Zero Trust application access
  • Context-based authorization with dynamic L4/L7 ACLs
  • Integration with third-party MFA solutions
  • DTLS 2.0 mode for delivering and securing applications
  • SAML 2.0 identity federation support
  • Support for OAuth 2.0 authorization protocol
  • SSO support for classic authentication (Kerberos, header- based, etc.), credential caching, OAuth 2.0, SAML 2.0, and FIDO2 (U2F)
  • AAA server authentication and high-availability
  • Integration with leading IAM vendor products (Microsoft, Okta, Ping Identity)
  • BIG IP Edge Client and F5 Access integrate with VMware Horizon ONE (AirWatch), Microsoft Intune and IBM MaaS360
  • Risk-based access leveraging third-party UEBA and risk engines (HTTP Connector)

Reviews from Real Users

Below are some reviews and helpful feedback written by BIG-IP APM users.

Mahmmoud Rabie, Senior Site Reliability Engineer, writes that BIG-IP APM is "A highly stable solution for load balancing, but the initial setup is complex."

Clyde LivingstonSenior Process Specialist at Telstra, says that BIG-IP APM is "Easy to use, useful access remotely, but lacking stability."

Chris LamSenior Solution Consultant at Macroview Telecom Limited, states that BIG-IP APM is "Useful for remote access VPN and VPI integration with VMware.

F5

ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.

With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy to use, and graphical dashboard. ForgeRock Access Management allows you to build safe authentication using options like passwordless and usernameless logins, single sign-on, biometrics, contextual analytics, and behavioral authentication. When threats appear, you can swiftly change how your users access your most sensitive applications and provide users with secure access to the applications, systems, and resources they need on demand.

ForgeRock Benefits and Key Features

  • Elevate your security and efficiency: Consolidating your legacy systems under one single platform provides reliable, unified control over all your user identities and access-related policies. ForgeRock Access Management also supports scaling existing policies for application onto new setups.

  • Passwordless authentication: Implementing passwordless authentication is simple with ForgeRock Access Management. You can easily replace user-selected passwords with other options, such as easy multi-factor authentication, biometrics, and SSO.

  • Identity governance: ForgeRock Identity Governance is a modern, AI-driven identity governance solution. By leveraging ForgeRock generated analysis reports, you can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low-risk accounts, and review high-risk and inappropriate user access privileges. In addition, you can grant and enforce access to systems, applications, and infrastructure according to established policies.

Reviews from Real Users

ForgeRock stands out among its competitors for a number of reasons. Two major ones are its robust identity and access tools and its being easy to manage and scale with one central dashboard.

PeerSpot users note the effectiveness of these features. A technology solutions leader at an outsourcing company writes, “We need it for multiple clients, multiple implementations. Not all of them are necessarily a multi-tenant solution. We need a very versatile solution that can do a lot of work, but from a single instance that we can centralize authentications and we don't duplicate the efforts and that's where ForgeRock seems to do better.”

Mohamed B., a cyber security consultant at a tech company, writes, "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users. ForgeRock secured our system so that it is accessed only by authorized people, and it implemented the SSO."

Ping Identity
 

Sample Customers

City Bank, Ricacorp Properties, Miele, American Systems, Bangladesh Post Office
Geico, Thomson Reuters, Salesforce, McKesson, Trinet, SKY, BNP Paribas, Deloitte, Capgemini, North Western University
Buyer's Guide
F5 BIG-IP Access Policy Manager (APM) vs. ForgeRock
December 2025
Free Report: F5 BIG-IP Access Policy Manager (APM) vs. ForgeRock
Find out what your peers are saying about F5 BIG-IP Access Policy Manager (APM) vs. ForgeRock and other solutions. Updated: December 2025.
DOWNLOAD NOW
879,927 professionals have used our research since 2012.
See our F5 BIG-IP Access Policy Manager (APM) vs. ForgeRock report.
See our list of best Access Management vendors.

We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.