ForgeRock vs Microsoft Entra ID comparison

Ping Identity and Microsoft are both solutions in the Identity Management (IM) category. Ping Identity is ranked #12 with an average rating of 8.0, while Microsoft is ranked #1 with an average rating of 8.7. Ping Identity holds a 4.8% mindshare in IAM, compared to Microsoft’s 12.5% mindshare. Additionally, 92% of Ping Identity users are willing to recommend the solution, compared to 95% of Microsoft users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 11, 2024

ForgeRock and Microsoft Entra ID are leading identity management solutions. Microsoft Entra ID seems to have the upper hand due to its scalability, ease of use, and cost-effectiveness based on user reviews.

Features: ForgeRock is praised for extensive customization options, seamless integration with various systems, and strong support. Microsoft Entra ID is recognized for comprehensive scalability, advanced security features, and a robust feature set favored by larger enterprises.

Room for Improvement: ForgeRock could improve its setup documentation, user training materials, and user interface complexity. Microsoft Entra ID needs more intuitive navigation, clearer error messaging, and additional user training resources.

Ease of Deployment and Customer Service: ForgeRock requires significant time and technical expertise to deploy, but users appreciate the support during this process. Microsoft Entra ID has a quicker deployment process with users finding its customer service responsive and effective.

Pricing and ROI: ForgeRock has higher initial setup costs but provides a good long-term return on investment due to its flexibility. Microsoft Entra ID is more cost-effective initially, and users report a significant ROI due to its feature set and scalability.

To learn more, read our detailed ForgeRock vs. Microsoft Entra ID Report (Updated: April 2025).

Buyer's Guide

ForgeRock vs. Microsoft Entra ID

April 2025

Download the complete report

Helped 850,760 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Omada Identity

Mindshare comparison

As of May 2025, in the Identity Management (IM) category, the mindshare of Omada Identity is 3.5%, down from 3.6% compared to the previous year. The mindshare of ForgeRock is 4.8%, down from 5.5% compared to the previous year. The mindshare of Microsoft Entra ID is 12.5%, down from 13.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Identity Management (IM)

Featured Reviews

Pernilla Hulth

IAM Project Manager (Independent) at a retailer with 10,001+ employees

The interface is easy to use and gives you a solid overview

The cloud-based deployment was straightforward, but the on-prem deployment was in a highly complex ecosystem. Omada has matured since then. I wouldn't say that it isn't straightforward, but it depends on the customer. A standard deployment is relatively easy, but it can be more painful if you need a lot of customization. We deployed the cloud solution in around four months, nearly meeting the 12-week benchmark. The on-prem deployment took three years. It was a highly complex ecosystem that was dependent on other systems. Depending on the size of your environment, you need a product owner and some specialists for maintenance. My last customer was a university with a complex environment. They had around 12 people involved in maintenance at that organization. Typically, it's between 2-5 people.

Read full review

Trisha Bhola

Senior Associate at Cognizant

It's easier to customize and maintain our code

I worked on two different projects based on ForgeRock, and both are automated deployments. One is a UI-based deployment. It's an automated process using some scripts. The deployments are done through Octopus, so it's also automated. We first deploy the essential components of AM and then implement additional configurations like Amster Imports. After that, we import all the SAML Federation data and add some certificates. We have two teams of five and three team members working on the different deployment processes. One is working on the dev side, another is looking at the higher environment, and one is managing the data. In another project, I'm the only developer. We also deploy on the dev environments so that anyone can test new features, configurations, and client requirements. They can test it on the dev environment, but a team of four people manages higher environments. The Access Management component involves the most customization, which takes around 15 to 20 minutes because of the need to import the Amster configuration. If another deployment is simultaneously happening, it may be a little slower and take around 30 minutes. The other components, like the user data stores, take about five to seven minutes. It's another five to 10 minutes for Identity Management. After deployment, the maintenance is mostly checking for security vulnerabilities. If ForgeRock shares security vulnerabilities or advisories, we check to see if there is something inside we need to maintain. Other than that, we just install updates when they add features each month.

Read full review

Bahram Piri

Chief Executive Officer & Founder at IDmelon Technologies

Security focus and seamless implementation increase platform productivity

Microsoft Entra ID can be improved in many ways, and there's a big wish list.If we're focusing on security, something that I definitely expect is improvement in the UI and UX for frontline workers. This is important, especially for non-tech savvy individuals. It is something Microsoft Entra ID could do to improve for a wider audience. It's important to focus on the frontline workers since they are non-tech savvy individuals. They are not like those back-office engineering C-level employees who are constantly dealing with computers, and we need to build a specific user experience and user interface for them to handle this stuff. That's something I expect Microsoft to focus on more for Microsoft Entra ID.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The best feature in Omada Identity is that it enables us to implement standardized employee life cycle processes so that we don't have to create them ourselves. We can then use the standard workflows. The breadth and scope of the solution’s IGA features also fulfill our requirements."

"The most valuable feature in Omada is the governance. We work with other products and other product vendors, but the sweet spot in the market for Omada is where things are heavy on governance."

"When we started with identity and access management, we cleaned up and skipped 500 accounts. Therefore, there are a lot of people who are still in our system. Using this tool, we have cleaned up a lot of accounts for ourselves as well as our partners and suppliers. So, we can manage everything now."

"The most valuable feature is the automatic provisioning and reconciliation of things like the Active Directory groups and memberships."

"Omada offers a technical solution that addresses both our needs."

"It has a very user-friendly interface compared to what we are used to, and it is highly configurable. In the old solution, when we needed to do something, we had to have a programmer sitting next to us, whereas, in Omada Identity, everything is configurable."

"I appreciate all the support we receive from Omada."

"It scales in terms of numbers and types of identities. It can govern the on-premise applications as well as the cloud applications. So, it can manage hybrid environments with all types of identities and various load amounts."

More Omada Identity pros

"We used it to implement multi-factor authentication and to improve our security posture as well as reducing the potential for attacks."

"The solution is very scalable. We have a lot of users that have been increasing over the years that we have been using it. We have approximately 20,000 users."

"I like the intelligent authentication feature."

"Easy to navigate, handle and manage the applications."

"It works very well, especially in Identity and Access Management. It helps detect anomalies in user behavior patterns."

"ForgeRock products are customizable, and the out-of-the-box features are solid, too. I primarily use the OIDC compliance features. It's just a configuration. it's easy to set up and customize trees. We can add our own features if necessary. Banks and corporations have different standards and specific validations."

"Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users."

"This is a stable solution. When you do experience any issues, you will see it in your DB logs or audit logs so you can easily reach a conclusion of might be causing it."

More ForgeRock pros

"The most valuable features of this solution are security, the conditional access feature, and multifactor authentication."

"The most valuable feature is its ability to act as an identity provider for other cloud-based, SaaS applications. In our bank, this is the main identity provider for such features."

"It enhances security, especially for unregistered devices. It 1000% has security features that help to improve our security posture. It could be irritating at times, but improving the security posture is exactly what the Authenticator app does."

"The tool's most valuable feature is auto logs. It helps with user activity and monitoring. It also assists us with GLBA policies and procedures. Microsoft Entra ID gives a 360 view of what the user has access to, what applications are available to them, when they are logging in and out, etc. It makes knowing what is happening to our tenants incredibly powerful."

"The ability to offer employees access to any platform, including private PCs and tablets, has been a game-changer."

"The central authentication server is most valuable. GPOs are useful for user and computer policies."

"The implementation of Microsoft Entra ID has impacted my secure access to apps or resources in my environment because it made it easier."

"Microsoft Authenticator is highly secure."

More Microsoft Entra ID pros

Cons

"I would like more training. As someone who is new to this world, I don't feel that the courses Omada provides are good enough. They should also improve the documentation. It is difficult to learn how to use the solution by yourself"

"I would like to search on date fields, which is not possible now."

"The biggest issue, which is the reason why we are transitioning from their product to SailPoint, is the overall user experience. From a technical perspective, it is a very good product, but from an end-user experience perspective, it significantly lacks."

"The reporting on the warehouse data and the import process both have room for improvement."

"The Omada support response time has room for improvement."

"Omada's reporting functionality is limited and could benefit from greater customization."

"Its flexibility is both a good thing and a bad thing. Because it is very flexible, it also becomes too complex. This is common for most of the products we evaluated. Its scalability should be better. It had a few scalability issues."

"The current reporting tools in Omada are limited, but we expect significant improvements in the new version."

More Omada Identity cons

"They should improve the solution by include reporting."

"We raised tickets asking for improvements, but sometimes we don't get the proper solution. They are responding, but the ticket is open for weeks and weeks. For some issues, we don't get a satisfactory solution or the solution doesn't work."

"The solution could improve by adding more advertising and marketing."

"Automatic Deployment needs improvement. it could be made easier."

"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."

"ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant."

"The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI."

"I find that it's quite expensive for just an open-source system. Support is quite expensive."

More ForgeRock cons

"The technical support can be confusing - if you're looking for something very specific, it can be hard to get the right answer or a solution."

"Azure AD could be more robust and adopt a saturated model, where they can offer unlimited support for a multi-cloud environment."

"We would like to have more granularity in the Azure conditional access in order to be able to manage more groups for devices and for applications."

"The cost of licensing always has room for improvement."

"The technical support could improve by having a faster response time."

"If any service is down, it can affect a whole region. We would need to wait on a ticket and get word from Microsoft to understand the issues. If it takes longer to resolve the issue on Microsoft's side, all we can do is wait for them to fix it."

"To improve Microsoft Entra ID, it should be made simpler because there is a lot of stuff to do in the platform, which could be reduced to fewer buttons."

"I want better integration between Azure AD and the on-prem environment because there are currently limitations that can hamper employee experience. We use a feature called password writeback, that can be challenging to implement in a hybrid environment. Employees can change their passwords using a self-service password reset (SSPR) feature, which reflects from the cloud to the on-prem identity, but not the other way around. Currently, there is no way to reflect passwords from on-prem identities to the cloud."

More Microsoft Entra ID cons

Pricing and Cost Advice

"It is expensive. Fortunately, I had a very good procurement manager on my side, but they are expensive. The closest competitors are also very expensive. You get a full-fledged solution that can do everything you dream of, but you pay for everything."

"There were a lot of administrator, partner, and supplier accounts for people who were no longer working for us but still in the system. So, we reduced the number of users no longer with the company, which saved us some money on licensing."

"Omada isn't cheap or expensive. The licensing model is flexible. I've only had limited interactions with the Omada sales team, but they were positive. They don't sell the customers more licenses than they need. It's important to accurately forecast future usage. For example, we have many licenses that we don't use because we don't have the identities yet. We pay extra, which isn't good."

"It is licensed per managed user per year."

"It's a fair price for the on-premises system. Compared with what we had before, it's much cheaper and we get all the modules in one. We tried to go with the cloud, but it was far too expensive."

"The initial total cost of ownership to implement Omada Identity is not small. The TCO for the implementation is as high as any other solution. However, the cost of maintaining the solution is at par or lower than competitors, including adding more features or maintaining the system after the initial deployment or installation to make sure that they are available for users to use or extending the functionalities of those activities. Those maintenance costs are lower than other vendors, but the initial cost of getting the system installed is still high."

"The pricing is okay."

"Omada Identity is very reasonably and competitively priced."

More Omada Identity pricing and cost advice

"ForgeRock is an expensive solution."

"Its price is comparable to other products in the market."

"ForgeRock's pricing is more competitive than other products."

"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."

"The pricing of the solution is fair but I do not have the full details."

"The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end."

"It's a bit pricey and could be more competitive."

"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."

"Microsoft Authenticator is included in the package when we purchase a license from Microsoft."

"I am not involved in the pricing or licensing, so I can't speak to that."

"Microsoft Entra ID's pricing is reasonable."

"Our customers are looking for advanced features and processes for it to be cost-effective for their organizations. They see it as an overpriced product. They are enjoying using Azure Active Directory, but they are looking for better prices."

"It is in line. Because we are so early, we have not had to come back on a cycle where we are having to negotiate again."

"The subscription should be categorized by business size. For example, small companies should have a discounted price, this would help small companies and the organization to be automated."

"Pricing could always be better. You pay the premium for Microsoft. Sometimes, it is worth it, and at other times, you wish to have more licensing options, especially for smaller companies."

"Active Directory is bundled with a package of Microsoft services, so it doesn't cost much. I don't know about the individual license of Active Directory."

More Microsoft Entra ID pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Identity Management (IM) solutions are best for your needs.

See recommendations

850,760 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

16%

Computer Software Company

13%

Manufacturing Company

Government

Financial Services Firm

24%

Computer Software Company

12%

Insurance Company

Manufacturing Company

Educational Organization

29%

Computer Software Company

11%

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Omada Identity Cloud?

As an administrator, we benefit from a lot of functionality that is available out of the box, but it is also configur...

See all answers

What is your experience regarding pricing and costs for Omada Identity Cloud?

They are positioned at a good price point. They are lower than some of their competitors.

See all answers

What needs improvement with Omada Identity Cloud?

The biggest issue, which is the reason why we are transitioning from their product to SailPoint, is the overall user ...

See all answers

What do you like most about ForgeRock?

The most valuable features of ForgeRock are social login and data protection.

See all answers

What is your experience regarding pricing and costs for ForgeRock?

Our company was considering switching back to Keycloak from ForgeRock, so as to not pay any license fees. ForgeRock a...

See all answers

What needs improvement with ForgeRock?

In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't t...

See all answers

How does Duo Security compare with Microsoft Authenticator?

We switched to Duo Security for identity verification. We’d been using a competitor but got the chance to evaluate Du...

See all answers

What do you like most about Azure Active Directory?

It is very simple. The Active Directory functions are very easy for us. Its integration with anything is very easy. W...

See all answers

What is your experience regarding pricing and costs for Azure Active Directory?

Regarding pricing, for the services we receive, it seems within the market range and about average.

See all answers

Comparisons

SailPoint Identity Security Cloud vs Omada Identity

Compared 31% of the time

Saviynt vs Omada Identity

Compared 17% of the time

One Identity Manager vs Omada Identity

Compared 7% of the time

SAP Identity Management vs Omada Identity

Compared 5% of the time

Ping Identity Platform vs Omada Identity

Compared 5% of the time

More Omada Identity Competitors

SailPoint Identity Security Cloud vs ForgeRock

Compared 12% of the time

Ping Identity Platform vs ForgeRock

Compared 9% of the time

Symantec Siteminder vs ForgeRock

Compared 8% of the time

Auth0 vs ForgeRock

Compared 8% of the time

Veza vs ForgeRock

Compared 5% of the time

More ForgeRock Competitors

Google Cloud Identity vs Microsoft Entra ID

Compared 11% of the time

Microsoft Intune vs Microsoft Entra ID

Compared 10% of the time

Okta Workforce Identity vs Microsoft Entra ID

Compared 8% of the time

Auth0 vs Microsoft Entra ID

Compared 6% of the time

More Microsoft Entra ID Competitors

Product Reports

Buyer's Guide

Omada Identity

April 2025

Download Omada Identity product report

Buyer's Guide

ForgeRock

May 2025

Download ForgeRock product report

Buyer's Guide

Microsoft Entra ID

April 2025

Download Microsoft Entra ID product report

Also Known As

Omada Identity Suite, Omada Identity Cloud

ForgeRock Identity Platform, ForgeRock OpenIDM

Azure AD, Azure Active Directory, Azure Active Directory, Microsoft Authenticator

Interactive Demo

Demo not available

Omada

Demo not available

Ping Identity

Microsoft

Overview

Omada Identity is an identity governance and administration (IGA) solution designed to help organizations manage and secure digital identities and access across their IT environments. It focuses on enhancing security, compliance, and efficiency by automating identity management processes.

Omada Identity offers a robust set of features that streamline identity lifecycle management, access governance, and compliance reporting. It integrates with a wide range of IT systems, applications, and data sources, providing a centralized platform for managing user identities and access rights. The solution enables organizations to enforce security policies, ensure regulatory compliance, and reduce the risk of unauthorized access.

What are the critical features of Omada Identity?

Identity Lifecycle Management: Automates the process of creating, updating, and deactivating user identities throughout their lifecycle.
Access Governance: Ensures that users have appropriate access rights, enabling continuous monitoring and recertification of access.
Compliance Reporting: Provides comprehensive reporting capabilities to demonstrate compliance with regulatory requirements.
Role-Based Access Control (RBAC): Simplifies the assignment and management of access rights based on user roles within the organization.
Self-Service Access Requests: Empowers users to request access to resources through a user-friendly portal, reducing administrative burden.
Integration Capabilities: Seamlessly integrates with various systems, applications, and data sources for unified identity and access management.

What benefits or ROI items should users look for in the reviews when evaluating Omada Identity?

Improved Security: By ensuring that only authorized users have access to sensitive information, Omada Identity enhances overall security posture.
Regulatory Compliance: Helps organizations meet compliance requirements by providing detailed audit trails and reporting features.
Operational Efficiency: Automates routine identity management tasks, reducing manual effort and freeing up IT resources for strategic initiatives.
User Productivity: Streamlines access management processes, enabling users to quickly obtain the resources they need to perform their jobs.
Reduced Risk: Minimizes the risk of data breaches and insider threats by enforcing strict access controls and continuous monitoring.

Omada Identity is widely adopted across various industries, including healthcare, finance, and manufacturing. In healthcare, it helps protect patient data and comply with regulations like HIPAA. In finance, it ensures compliance with SOX and other financial regulations. In manufacturing, it secures access to sensitive production data and intellectual property.

Pricing and licensing for Omada Identity are typically based on the number of users and the specific features required. Customer support is available through various channels, including online resources, support tickets, and professional services for implementation and customization.

In summary, Omada Identity is a comprehensive IGA solution that enhances security, compliance, and efficiency in managing digital identities and access.

Omada

ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.

With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy to use, and graphical dashboard. ForgeRock Access Management allows you to build safe authentication using options like passwordless and usernameless logins, single sign-on, biometrics, contextual analytics, and behavioral authentication. When threats appear, you can swiftly change how your users access your most sensitive applications and provide users with secure access to the applications, systems, and resources they need on demand.

ForgeRock Benefits and Key Features

Elevate your security and efficiency: Consolidating your legacy systems under one single platform provides reliable, unified control over all your user identities and access-related policies. ForgeRock Access Management also supports scaling existing policies for application onto new setups.
Passwordless authentication: Implementing passwordless authentication is simple with ForgeRock Access Management. You can easily replace user-selected passwords with other options, such as easy multi-factor authentication, biometrics, and SSO.
Identity governance: ForgeRock Identity Governance is a modern, AI-driven identity governance solution. By leveraging ForgeRock generated analysis reports, you can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low-risk accounts, and review high-risk and inappropriate user access privileges. In addition, you can grant and enforce access to systems, applications, and infrastructure according to established policies.

Reviews from Real Users

ForgeRock stands out among its competitors for a number of reasons. Two major ones are its robust identity and access tools and its being easy to manage and scale with one central dashboard.

PeerSpot users note the effectiveness of these features. A technology solutions leader at an outsourcing company writes, “We need it for multiple clients, multiple implementations. Not all of them are necessarily a multi-tenant solution. We need a very versatile solution that can do a lot of work, but from a single instance that we can centralize authentications and we don't duplicate the efforts and that's where ForgeRock seems to do better.”

Mohamed B., a cyber security consultant at a tech company, writes, "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users. ForgeRock secured our system so that it is accessed only by authorized people, and it implemented the SSO."

Ping Identity

Microsoft Entra ID is used for extending on-premises Active Directory to the cloud, managing application access, enabling multi-factor authentication, and single sign-on. It facilitates policy enforcement and secure access, ensuring centralized identity management across cloud and on-premises resources.

Organizations utilize Microsoft Entra ID for robust user and group management, identity synchronization, and conditional access. Its seamless integration with third-party apps, scalability, and support for remote work make it a preferred choice. The admin center streamlines identity and access tasks, enhancing efficiency and security with features like privileged identity management and audit logs.

What are the key features of Microsoft Entra ID?

Single Sign-On: Simplifies user access to multiple applications with one login.
Multifactor Authentication: Enhances security by requiring additional verification.
Conditional Access: Establishes policies that determine how users' access cloud apps.
Integration: Easily integrates with various third-party applications.
User Identity Protection: Safeguards user identities from threats.
Privileged Identity Management: Manages elevated access to sensitive resources.
Audit Logs: Provides thorough activity logs for oversight and compliance.

What benefits should users look for in Microsoft Entra ID reviews?

Enhanced Security: Offers strong multifactor authentication and identity protection.
Administrative Efficiency: Simplifies identity and access management tasks.
Scalability: Supports growing user bases and remote work environments.
Integration Capabilities: Compatible with numerous third-party applications.
User-Friendly Interface: Makes managing user identities straightforward.

Microsoft Entra ID implementation varies across industries. Tech firms leverage it for secure, scalable access management, while healthcare organizations utilize its identity protection features to safeguard patient data. Educational institutions adopt Entra ID for streamlined user management and policy enforcement, ensuring secure access for students and staff across on-premises and cloud resources.

Microsoft

Sample Customers

Bayer, ECCO Shoes, Vattenfall, NuStar Energy, Unicredit, Schiphol Group, BMW Group, Deutsche Leasing

Geico, Thomson Reuters, Salesforce, McKesson, Trinet, SKY, BNP Paribas, Deloitte, Capgemini, North Western University

Microsoft Entre ID is trusted by companies of all sizes and industries including Walmart, Zscaler, Uniper, Amtrak, monday.com, and more.

Buyer's Guide

ForgeRock vs. Microsoft Entra ID

April 2025

Free Report: ForgeRock vs. Microsoft Entra ID

Find out what your peers are saying about ForgeRock vs. Microsoft Entra ID and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,760 professionals have used our research since 2012.

See our ForgeRock vs. Microsoft Entra ID report.

See our list of best Identity Management (IM) vendors and best Access Management vendors.

We monitor all Identity Management (IM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.