No more typing reviews! Try our Samantha, our new voice AI agent.

Microsoft Bhold Forefront Identity Manager [EOL] vs OneLogin comparison

Microsoft and One Identity are both solutions in the User Provisioning Software category. Additionally, 75% of Microsoft users are willing to recommend the solution, compared to 99% of One Identity users who would recommend it.
OneLogin
Read 95 OneLogin reviews
  • 9,442 Views
  • 1,416 Comparison Views
99% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Mar 15, 2026

Microsoft Bhold Forefront Identity Manager and OneLogin are products competing in the identity and access management category. OneLogin seems to have the upper hand due to its advanced features and ease of use, despite some users finding Microsoft's pricing and support appealing.

Features: Microsoft Bhold Forefront Identity Manager provides identity lifecycle management, sophisticated policy control, and comprehensive reporting. OneLogin offers single sign-on, multifactor authentication, and integration with a wide range of apps and services, emphasizing a seamless user experience.

Room for Improvement: Microsoft can benefit from simplifying its resource-heavy deployment process and enhancing scalability. It could also refine the user interface to be more intuitive. OneLogin could improve by expanding its API capabilities, enhancing adaptive access controls, and increasing customization options in its interface.

Ease of Deployment and Customer Service: Microsoft offers a comprehensive but complex deployment process that can be resource-heavy. OneLogin provides a more straightforward deployment process, supported by efficient customer service, which contributes to faster overall implementation.

Pricing and ROI: Microsoft Bhold Forefront Identity Manager typically involves higher initial costs with a longer ROI timeline due to its infrastructure requirements. In contrast, OneLogin's cloud-based model offers predictable pricing and quicker ROI with lower upfront costs, making it more cost-effective for modern business needs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed User Provisioning Software Report (Updated: May 2026).
Buyer's Guide
User Provisioning Software
May 2026
Download the complete report
Helped 899,917 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Bhold Forefront I...
Average Rating
7.4
Number of Reviews
8
Ranking in other categories
No ranking in other categories
OneLogin
Average Rating
8.6
Reviews Sentiment
6.9
Number of Reviews
95
Ranking in other categories
Single Sign-On (SSO) (4th), User Provisioning Software (4th), Identity Management (IM) (4th), Identity and Access Management as a Service (IDaaS) (IAMaaS) (3rd), Access Management (4th)
 

Featured Reviews

it_user185919 - PeerSpot reviewer
it_user185919
Microsoft Practice Lead at Unify Solutions
The SharePoint-hosted web UI lacks the features one would normally expect but it does have a PowerShell-aware web API.
The biggest limiting factor is that the sync engine cannot be configured for load balancing or redundancy, followed closely by the through-put limitations that apply to the FIM Service connector (management agent) when dealing with high volumes of objects under synchronization. Nonetheless, FIM has been successfully deployed to manage the entire identity life-cycle for very large sites, such as well over one million staff/student identities under management for the Queensland Education Department in Australia. Also, when the "declarative" sync rules requiring "expected rule entries" (EREs) are employed, the sync overhead is further exacerbated. As such this type of sync approach should be avoided in lieu of a code-based rules extension or the "scoped" sync rule capability released with R2.
Read full review
Amit Rathod - PeerSpot reviewer
Amit Rathod
Senior Analyst - IDAM at Toll Holdings Limited
Unified sign-in has simplified access control and has supported end-to-end identity lifecycle
The authentication process is good, but sometimes the responsiveness to requests for enhancement is very slow. I sometimes face issues with platform stability, flexibility in configuration, and limited API availability. I experience downtimes two to three times per year. OneLogin's support team is sometimes very slow to respond. There is a feature limitation with mapping, as OneLogin does not provide one-to-all mapping. For client deployment, we need to create separate mappings for each request, and we cannot use the same mapping for multiple requests. Other areas that have room for improvement are related to API limitations. If a client requires more APIs, such as 5,000 or 6,000, OneLogin charges more. The API rate limits by default or the standard limit should provide more than 5,000. Additionally, OneLogin could provide more flexibility in configuration. These are the main limitations I have identified with OneLogin.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Using FIM 2010 other features are available like DL management through the portal, End User FIM Portal, and also FIM SSPR, which provide a good improvement in functions to our organization."
"For me the most valuable feature is being able to create a single source of truth between the ICT Department and Human Resources."
"The sync engine is key, and the ability to have it up and running in full in a very short time."
"By far FIM has been the easiest to deploy and support."
"It will improve productivity, reduce the administrative cost and help-desk by automating the identity management tasks (provisioning, de-provisioning, access management) for an organization."
"It enabled managing the content of multiple Active Directory, keeping content consistently in-sync with each other and with external HR and card management solutions."
"The product is helping the organization to use this as a request based service through which access also gets placed after approval from the portal itself, without human intervention being required."
"Extensible and reliable identity provisioning and synchronisation Extensible workflow and policy engine Extensible delegated access management platform with web UI PowerShell-aware web API"
"OneLogin has positively impacted our organization by improving security and user experience by simplifying access to business applications through single sign-on while also reducing password reset tickets and manual account management for the IT team."
"OneLogin has been a reliable and user-friendly IAM platform that can simplify access with SSO and strengthen MFA adoption without creating too much complexity for users or administrators."
"Overall, it not only strengthens security but also simplifies the access management process, making daily operations more efficient and manageable."
"The directory integration and SCIM provisioning are probably the best features compared to competitors."
"OneLogin is an excellent solution for security and compliance, as it secures all business applications in a cost-effective way, is very easy to use for new users with its intuitive and user-friendly interface, and is highly recommended because of its security and compliance capabilities."
"Overall, OneLogin has been a reliable and user-friendly IAM platform that helps simplify SSO and strengthen MFA adoption without creating too much complexity for users or administration."
"OneLogin is user-friendly, and any administrator can handle it easily."
"OneLogin is incredible and easy to use and provides robust security features that simplify our login processes."
More OneLogin pros
 

Cons

"The BHOLD suite, which is an optional extension for RBAC modelling, should not be implemented without substantial budget being set aside for investment in additional training and understanding, and ensuring access to specialist resources is available when required."
"Customisation of the Portal interface (limited customisation available)."
"If you have nothing else, great, but if you have other stuff already, it's going to be painful."
"It needs improvement on its reporting. Default reporting is not meeting client requirements."
"SQL Deadlock issues for performances and internal application bugs."
"I was not so impressed by the SharePoint based portal/workflow/policy server part, especially with the way it was integrated with the synchronization server, I'd rate this function 6/10."
"Our current FIM infrastructure suffers from stability issues."
"The admin interface can be improved, and configuring advanced settings feels complex, which costs extra time or technical support to troubleshoot."
"To offboard, you have to manually click on this checklist, each of the checkmarks. It would actually be really nice if, for offboarding someone, you just click "offboard" and it automatically runs a script to do that."
"OneLogin could be improved by offering a more intuitive admin interface and simpler configuration for advanced features and integrations."
"The mobile app is not best and it could be improved."
"In terms of OneLogin, integrations or the integration list could be improved."
"One area that could be improved in OneLogin is the user interface and administrative dashboard experience."
"I would like better reporting from SmartFactor Authentication when a user is not able to sign in due to a new location, new IP, new device, et cetera."
"The tool must be made more robust."
More OneLogin cons
 

Pricing and Cost Advice

Information not available
"We were happy with the price we got when we signed up, but I don't know what will happen when the time comes to renew because it is a different company now. We haven't seen any pricing models or had that discussion yet. My renewal is a year and a half away. It's worth what we're paying for it. There's no way we could provide the level of service for cheaper or try to do the same in-house."
"The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it."
"The pricing and licensing are reasonable. It is much cheaper than other products."
"OneLogin's pricing, from the perspective of the education sector, seems quite reasonable for the value it delivers."
"The price of the licensing is fine."
"While I wish OneLogin's pricing was more affordable, their licensing model, which is based on per user, is acceptable."
"It was cheap in the beginning, and then it became very expensive. We were initially charged $2 per user per month, which was fine, but by the second year, they increased it to $5 per user. That became very expensive for us because we had about 1,500 users. At $2 per user, it comes out to be $3,000 a month, which is $36,000 a year. If we move to $5 per user, it comes out to be $7,500 a month. That made its cost so high. That is why we removed the product because the cost was high."
"Surprisingly expensive given the price of on-premise solutions."
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
899,917 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Outsourcing Company
19%
Computer Software Company
9%
Manufacturing Company
8%
University
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise3
By reviewers
Company SizeCount
Small Business128
Midsize Enterprise27
Large Enterprise65
 

Questions from the Community

Ask a question
Earn 20 points
What needs improvement with OneLogin by One Identity?
During implementation, there were not many features that I remember not using in practice. Mostly, there were certain APIs that we were experimenting with earlier but did not use, so we created cus...
See all answers
What is your primary use case for OneLogin by One Identity?
My main use case for OneLogin is to enforce workforce identity, and we implemented this in Malaysia's biggest retail client, so all of their employees' applications can be securely accessed through...
See all answers
What advice do you have for others considering OneLogin by One Identity?
When I am working in OneLogin on a normal day or week, the first thing I typically do in the platform is handling SSO configurations, so I add applications and interact with application stakeholder...
See all answers
 

Comparisons

No data available
Okta Platform vs OneLogin Logo
Okta Platform vs OneLogin
Compared 8% of the time
Auth0 Platform vs OneLogin Logo
Auth0 Platform vs OneLogin
Compared 7% of the time
Microsoft Entra ID vs OneLogin Logo
Microsoft Entra ID vs OneLogin
Compared 5% of the time
LastPass Business vs OneLogin Logo
LastPass Business vs OneLogin
Compared 5% of the time
SailPoint Identity Security Cloud vs OneLogin Logo
SailPoint Identity Security Cloud vs OneLogin
Compared 4% of the time
More OneLogin Competitors
 

Product Reports

Buyer's Guide
Microsoft Bhold Forefront Identity Manager [EOL]
May 2026
Microsoft Bhold Forefront Identity Manager [EOL] reportDownload Microsoft Bhold Forefront Identity Manager [EOL] product report
Buyer's Guide
OneLogin
May 2026
OneLogin reportDownload OneLogin product report
 

Also Known As

Bhold Forefront Identity Manager, MS Bhold Forefront Identity Manager [EOL]
OneLogin Workforce Identity
 

Overview

Microsoft Forefront Identity Manager (FIM 2010) enables organizations to manage the entire lifecycle of user identities and their associated credentials. It can be configured to synchronize identities, centrally manage certificates and passwords, and provision users across heterogeneous systems. With FIM IT organizations can define and automate the processes used to manage identities from creation to retirement.
Microsoft

OneLogin offers organizations a user-friendly platform for single sign-on, multifactor authentication, and seamless access management. It enhances security and streamlines processes, making it vital for application management.

Designed for ease of integration, OneLogin helps organizations efficiently manage access and improve cybersecurity through centralized application management. It simplifies onboarding and offboarding, enhancing remote work capabilities and offering robust user mapping. Users appreciate seamless integration and reliable logs. However, it could improve with enhanced technical support, more out-of-box connectors, and better customization options. Challenges with device management and system integrations have been noted, with legacy application support and infrastructure stability needing attention.

What are the key features of OneLogin?
  • Single Sign-On: Provides centralized access to applications.
  • Multifactor Authentication: Enhances security with multiple verification steps.
  • Self-Service Password Resets: Empowers users to manage their passwords.
  • Ease of Integration: Connects seamlessly with cloud and on-premises systems.
What benefits can users expect?
  • Improved Time Management: Streamlines user access processes.
  • Reduced Security Incidents: Strengthens authentication measures.
  • Efficient Interface: Facilitates smooth user navigation.
  • Enhanced Remote Work: Supports flexible workforce needs.

Organizations employ OneLogin for single sign-on and identity management, connecting users to applications like CRM and Slack. It supports role-based access control and seamless cloud transition, integrating with Active Directory to enhance user management in industries demanding strong security and efficiency.

One Identity
 

Sample Customers

Ministry of Health (MoH) in Saudi Arabia, Vocational Training Council, PKP S.A., Arysta LifeScience, Wiltshire Council, Sats Elixia, MANN+HUMMEL Group, ViveICA, Kotak Group, Sun International, Anel
OneLogin has thousands of customers across multiple industries and from around the globe such as Uber, Airbnb, Noom, Petco, Sony, Lucky Brand, Tesco, Airbus, Japan Airlines, Aetna, Compass, Kaplan, Susan G. Komen, AAA and PennyMac.
Buyer's Guide
User Provisioning Software
May 2026
Download Free Report
Find out what your peers are saying about One Identity, SailPoint, Omada and others in User Provisioning Software. Updated: May 2026.
DOWNLOAD NOW
899,917 professionals have used our research since 2012.
See our list of best User Provisioning Software vendors and best Identity Management (IM) vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.