No more typing reviews! Try our Samantha, our new voice AI agent.

IBM Tivoli Access Manager [EOL] vs One Identity Active Roles comparison

IBM and One Identity are both solutions in the User Provisioning Software category. Additionally, 93% of IBM users are willing to recommend the solution, compared to 100% of One Identity users who would recommend it.
One Identity Active Roles
Read 60 One Identity Active Roles reviews
  • 6,946 Views
  • 2,501 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between IBM Tivoli Access Manager [EOL] and One Identity Active Roles based on real PeerSpot user reviews.

Find out what your peers are saying about One Identity, SailPoint, Omada and others in User Provisioning Software.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed User Provisioning Software Report (Updated: April 2026).
Buyer's Guide
User Provisioning Software
April 2026
Download the complete report
Helped 893,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

IBM Tivoli Access Manager [...
Average Rating
8.0
Reviews Sentiment
3.8
Number of Reviews
29
Ranking in other categories
No ranking in other categories
One Identity Active Roles
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
60
Ranking in other categories
User Provisioning Software (3rd), Active Directory Management (1st), Non-Human Identity Management (NHIM) (2nd)
 

Featured Reviews

it_user711612 - PeerSpot reviewer
it_user711612
Senior Consultant at a insurance company with 1,001-5,000 employees
Reverse proxy provides central control over authentication and authorization.
It is a single product that caters for all the business needs throughout the organization. It provides a seamless integration that in turn encourages most of the applications to use the SSO features Reverse proxy is the most valuable feature as it provides central control over authentication and…
Read full review
Mahesh Malve - PeerSpot reviewer
Mahesh Malve
Senior Business Development Executive at DigitalTrack Solutions Ind Pvt Ltd
Automation has transformed user lifecycle tasks and now enforces consistent secure access
While One Identity Active Roles is a strong platform, a few improvements would make it even better. Many users feel the user interface is not very modern or intuitive, and it can take time to get used to navigating the console and workflows. Another improvement area is the learning curve and setup complexity. One Identity Active Roles is very powerful, but initial configuration, especially for policies, workflows, and delegation, can be complex and require experienced resources. From an integration perspective, although it supports multiple systems, organizations would benefit from more out-of-the-box connectors and smoother cloud integrations such as Azure Active Directory and software-as-a-service applications, as some setups currently require customization. In terms of reporting, while auditing is strong, generating business-friendly reports can be challenging. Users have mentioned the need for better dashboards and easier report generation. There are also some performance considerations, especially in large environments, such as slower PowerShell execution or delays in dynamic group processing in certain cases. Overall, improvements in user interface, ease of use, integration, reporting, and performance optimization would significantly enhance the product experience.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It is a simple-to-deploy solution, with many features that are supported out-of-the-box without complicated setup."
"The combination of TAM with IDM in IBM Tivoli Identity Manager helped us to realize robust and secure authentication infrastructure in accordance with industry regulations and laws."
"SAML 2.0."
"Single Sign-On functionality is valuable because the core purpose of the product is to allow universal (or bespoke) SSO for application suites."
"It is a good solution for anyone to take to their enterprise and get a buy in."
"TAM component integration and their SSO capabilities and transparency are the most valuable features I have found."
"This product is highly recommended to meet access management and web single sign-on requirements."
"The SSO, URL-based access control, OAuth 2 and OIDC are the most valuable features."
More IBM Tivoli Access Manager [EOL] pros
"One Identity Active Roles has had a very positive impact on our organization, mainly by improving efficiency and security at the same time."
"Active Roles provided us to do all these operations automatically and reduced our workload very significantly."
"Secure access is the most valuable feature."
"We have eased the burden on the support desk and reduced the risk of them doing something they shouldn't."
"Overall, it improves operational efficiency, strengthens our security posture, and simplifies identity and access management across the organization."
"The best part of this Active Roles is the workflow engine. It features an industry-leading workflow automation feature. It's a visual PowerShell that allows task interruption."
"One Identity Active Roles has made things more organized and secure across the company, and it has also reduced the need to contact IT administrators directly, saving time for both me and the IT staff."
"I highly recommend all organizations to consider this as one of the best solutions."
More One Identity Active Roles pros
 

Cons

"The product has not been updated with emerging technologies over the years specifically around AJAX, REST and Mobile app integration."
"The self-service portal needs improvement."
"Sometimes, there are long running support tickets (for 6-8 months) and that is unacceptable from the customer's point of view."
"Older TAM versions are not compatible for connecting to a DB."
"Yes, because there are so many moving parts it can often be difficult getting it right first time."
"Web Portal Manager does not implement the full set of functions found in the command line"
"There were endless issues with stability in version 8.0.1."
"There is Java process that hangs in WebSphere almost every month."
More IBM Tivoli Access Manager [EOL] cons
"It's a fairly stable product but not perfectly reliable."
"Customer support is rated six. Sometimes having a fix for a bug takes too much time. While in production, issues tend to take a while to resolve."
"The user interface needs to be more modern and scalable. There are certain screen resolutions where the product is unusable."
"I've had a difficult time getting it to cooperate with Azure in the cloud and, while the support staff are very good and very knowledgeable, what they assist with just on a call doesn't go deep enough to help with a number of issues."
"Overall, One Identity Active Roles is a very powerful tool, but there are definitely areas where it can be improved."
"One Identity Active Roles is very useful, though there are a few areas where it could be improved, such as the user interface, policy creation, and reporting; it requires good knowledge of Active Directory."
"Scripting options in different languages."
"I want One Identity Active Roles to improve in the area of user interface, modernizing it to feel more like a SaaS tool and to have user-friendly navigation."
More One Identity Active Roles cons
 

Pricing and Cost Advice

"The IBM prices are, as ever, extortionate, even with a business partnership, and high levels of discounts."
"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"The pricing is on the higher end."
"The licensing model is a simple user-based model, not that much complicated."
"It's fairly priced."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"It's expensive."
"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
893,311 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
15%
Marketing Services Firm
14%
Outsourcing Company
11%
Financial Services Firm
9%
Outsourcing Company
19%
Financial Services Firm
8%
Computer Software Company
7%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise2
Large Enterprise18
By reviewers
Company SizeCount
Small Business55
Midsize Enterprise12
Large Enterprise32
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for One Identity Active Roles?
I had a great experience with the setup cost, pricing, and licensing costs because the sales team of the vendor is really helpful during the entire procurement of the solution, and we are grateful ...
See all answers
What needs improvement with One Identity Active Roles?
I do not see anything that needs to be changed as of now concerning the organization's needs because it is working very well and it is providing great features with great processes. The initial set...
See all answers
What is your primary use case for One Identity Active Roles?
When a new user is created, predefined rules automatically apply naming standards and assigned groups. This reduces manual tasks while ensuring consistency across all operations. It prevents and av...
See all answers
 

Comparisons

Symantec Siteminder vs IBM Tivoli Access Manager [EOL] Logo
Symantec Siteminder vs IBM Tivoli Access Manager [EOL]
Compared 16% of the time
CyberArk Privileged Access Manager vs IBM Tivoli Access Manager [EOL] Logo
CyberArk Privileged Access Manager vs IBM Tivoli Access Manager [EOL]
Compared 9% of the time
Okta Platform vs IBM Tivoli Access Manager [EOL] Logo
Okta Platform vs IBM Tivoli Access Manager [EOL]
Compared 8% of the time
SailPoint Identity Security Cloud vs IBM Tivoli Access Manager [EOL] Logo
SailPoint Identity Security Cloud vs IBM Tivoli Access Manager [EOL]
Compared 8% of the time
Ping Identity Platform vs IBM Tivoli Access Manager [EOL] Logo
Ping Identity Platform vs IBM Tivoli Access Manager [EOL]
Compared 3% of the time
More IBM Tivoli Access Manager [EOL] Competitors
ManageEngine ADManager Plus vs One Identity Active Roles Logo
ManageEngine ADManager Plus vs One Identity Active Roles
Compared 13% of the time
Netwrix Auditor vs One Identity Active Roles Logo
Netwrix Auditor vs One Identity Active Roles
Compared 9% of the time
Active Administrator vs One Identity Active Roles Logo
Active Administrator vs One Identity Active Roles
Compared 8% of the time
One Identity Manager vs One Identity Active Roles Logo
One Identity Manager vs One Identity Active Roles
Compared 7% of the time
SailPoint Identity Security Cloud vs One Identity Active Roles Logo
SailPoint Identity Security Cloud vs One Identity Active Roles
Compared 6% of the time
More One Identity Active Roles Competitors
 

Product Reports

Buyer's Guide
IBM Tivoli Access Manager [EOL]
May 2026
IBM Tivoli Access Manager [EOL] reportDownload IBM Tivoli Access Manager [EOL] product report
Buyer's Guide
One Identity Active Roles
April 2026
One Identity Active Roles reportDownload One Identity Active Roles product report
 

Also Known As

Tivoli Access Manager, IBM Security Access Manager
Quest Active Roles
 

Overview

IBM Tivoli Access Manager is a robust and secure centralized policy management solution for e-business and distributed applications. IBM Tivoli Access Manager WebSEAL is a high performance, multi-threaded Web server that applies fine-grained security policy to the Tivoli Access Manager protected Web object space. WebSEAL can provide single sign-on solutions and incorporate back-end Web application server resources into its security policy.
IBM

One Identity Active Roles enhances Active Directory management by automating essential tasks and improving security through efficient delegation and role-based access control.

One Identity Active Roles offers advanced features for managing Active Directory environments, aiding in automating user provisioning, group management, and de-provisioning. It integrates seamlessly with Microsoft environments and provides centralized management for both on-premises and cloud identities. By improving operational efficiency and reducing manual errors, it enforces robust governance across organizations. Active Roles includes auditing and reporting tools that strengthen compliance and security monitoring. Companies find the setup could be simplified with better documentation, more customization options in reporting, and expanded cloud integration, particularly with Azure. Improved workflows and deeper native connectors are needed for seamless automation. Price adjustments and user-friendly analytics with intuitive dashboards are recommended for better usability.

What are the key features of One Identity Active Roles?
  • Automation of Active Directory tasks: Streamlines processes such as user provisioning and de-provisioning.
  • Role-based access control: Ensures secure delegation of administration tasks.
  • Auditing and reporting: Enhances compliance with security monitoring capabilities.
  • Integration with Microsoft: Seamlessly manages on-premises and cloud identities.
What benefits and ROI should users evaluate?
  • Operational Efficiency: Reduces manual errors and streamlines active directory tasks.
  • Security and Governance: Enforces policy-based controls for secure user management.
  • Compliance: Strengthens monitoring and compliance through advanced auditing.
  • Usability: Suggests enhancements in workflow and analytics for better management.

Many industries deploy One Identity Active Roles for automating user lifecycle management, especially in Active Directory environments. It significantly eases operations by automating onboarding for new hires, managing role changes, and modifying access. The platform efficiently handles tasks like password resets and compliance audits while empowering teams to securely manage user access without requiring full administrative rights.

One Identity
 

Sample Customers

Essex Technology Group Inc.
City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
Buyer's Guide
User Provisioning Software
April 2026
Download Free Report
Find out what your peers are saying about One Identity, SailPoint, Omada and others in User Provisioning Software. Updated: April 2026.
DOWNLOAD NOW
893,311 professionals have used our research since 2012.
See our list of best User Provisioning Software vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.