We performed a comparison between Microsoft Active Directory and One Identity Active Roles based on real PeerSpot user reviews.
Find out in this report how the two Active Directory Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Technical support is helpful."
"It is very user-friendly."
"I think the main reason we are using Active Directory for SSO Office for single time and for intake integrity capability to other services."
"The most valuable feature is the configured appliance system in Hypervisor."
"The ability for a single sign-on for applications."
"I can use Active Directory to block a user's internet access and monitor how an employee is using the internet."
"It's quite easy to integrate into other directories."
"One noteworthy aspect we discovered is the ability to exercise tight control over systems, specifically Windows PCs. This pertains to the management of policies, usage patterns, and user access on these devices, particularly within the framework of Active Directory which is extremely well thought. This actually works better with on-premises solutions. However, as the global trend shifts towards cloud and hybrid environments, Active Directory and its use is diminishing. Yet, it hasn't entirely lost its relevance and remains a presence that cannot be entirely disregarded."
"Secure access is the most valuable feature."
"The most valuable features include auditing, dynamic grouping, and creating dynamic groups based on AD attributes."
"The provisioning and deprovisioning saves a lot of time and skips a lot of errors."
"With the use of the sync service we were able to import information from multiple external systems and populate them within our space and leverage them for downstream systems."
"Having a tool to manage all changes to AD from a single pane of glass is awesome."
"The solution is stable."
"Instead of deleting accounts, we like the deprovision option so that we can reverse any accidental deletions. It also gives a higher level of quality control in terms of enforcing any number of variables, such as making sure that an account has a description entered before the account can be created. We can backtrack and know the history of it that way."
"The AD and AAD management features of this solution are really good... They offer added value by showing more fields such as password age and the statuses of some things that we normally wouldn't see."
"Microsoft Active Directory fails to provide MFA. MFA, which is also known as multi-factor authentication on top of the password and username, is what I would like to see in the product's future releases."
"Could use more structure in the cloud version."
"The solution's price could be better."
"There is room for improvement in the support."
"Microsoft Active Directory restricts most of the features our company's employees want to use since they are involved in research and development activities."
"The cloud service of Microsoft Active Directory is an area with certain shortcomings that need improvement."
"If you are using the Active Directory, the main concern is that the policy is restricted to the specific local area network."
"The DNS services could improve in Microsoft Active Directory."
"I've had a difficult time getting it to cooperate with Azure in the cloud and, while the support staff are very good and very knowledgeable, what they assist with just on a call doesn't go deep enough to help with a number of issues. The answer that comes back is that we'd have to start an engagement with Professional Services, which is fine but that takes time to schedule and it takes budget."
"For the AAD management feature, it needs to improve the objects that we can manage and the security."
"For ActiveRoles, it would be good if the product supports multi-scripting language. You can use only VBScript."
"When doing a workflow, we would like a bit better feedback on the screen, as we're trying to get it to work. For example, there is a "Find" function that you need set up in a workflow to do some of the automation. It is not the easiest to get a result from those finds when you're trying to do that. In the MMC, they have a couple different types of workflows. In this particular case, we use their workflow functionality to find all of X within the environment, then if you find it, do X, Y, and Z. You can have multiple steps. When you do that search function within that workflow, it's really hard to find out, "Is my search working?" It would be nice if there was some feedback on the screen so you could see if your search is working properly within the workflow."
"The solution needs an attestation process that includes certification and recertification attestation."
"The third area for improvement, which is the weakest portion of ARS, is the workflow engine, which was introduced a few years ago. It's slow and not very intuitive to use, so I would like to see improvement there."
"The initial setup was quite easy, but it was time-consuming. It took about three months."
"The user and group management in Azure AD could be better. Our focus these days is dynamic sharing with several on-prem Microsoft applications like SharePoint."
Microsoft Active Directory is ranked 5th in Active Directory Management with 36 reviews while One Identity Active Roles is ranked 3rd in Active Directory Management with 17 reviews. Microsoft Active Directory is rated 8.6, while One Identity Active Roles is rated 8.6. The top reviewer of Microsoft Active Directory writes "A solution that easily merges with cloud-based ADs and provides superior data security". On the other hand, the top reviewer of One Identity Active Roles writes "Single interface and workflows simplify AD and Azure AD management efficiency and security". Microsoft Active Directory is most compared with PingFederate, Fortinet FortiAuthenticator, Microsoft Entra ID, ManageEngine ADManager Plus and Auth0, whereas One Identity Active Roles is most compared with Microsoft Entra ID, ManageEngine ADManager Plus, SailPoint IdentityIQ, One Identity Manager and Softerra Adaxes. See our Microsoft Active Directory vs. One Identity Active Roles report.
See our list of best Active Directory Management vendors.
We monitor all Active Directory Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.