Find out in this report how the two Single Sign-On (SSO) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
We leverage existing licensing, like Windows Server or SQL, and hybrid benefits, and our sales and marketing teams benefit from co-selling and partnership advantages.
We get a return from not needing to pay other vendors to do what we already had from Microsoft, which was better than the competition.
By eliminating the need for multiple VPN channels and enabling direct work from Azure servers, we have achieved approximately 30% efficiency savings.
One Identity Active Roles provides excellent reporting and auditing functionality, allowing administrators to track permissions, actions, and responsibilities effectively.
It has saved 90% of the time compared to before.
The actual support when you get to that level is a ten out of ten.
There are immediate answers to any issues that arise with great knowledge and a deep understanding of the product and business needs.
They usually try to deflect, buy time, and often do not address the problem immediately.
One Identity's support is great.
I rate customer service and support as a seven because, although they are helpful when needed, there can be delays in responding to tickets and finding necessary fixes.
Sometimes having a fix for a bug takes too much time.
We experienced no scalability issues with Microsoft Entra ID.
Its scalability is impressive, aided by Microsoft's efforts to expand its data centers.
When dealing with tens of thousands of objects, it requires proper management and best practices to retrieve only necessary data.
It is very beneficial for large and complex environments.
If you are a major enterprise customer, it is a matter of scaling out on resources with more memory, disk, and CPU power.
The solution is highly scalable, with a scalability rating of nine.
It's a critical solution that we can't do without.
The stability of the solution is very high at 99.999%.
We rarely had significant problems or crashes.
There were no major problems with One Identity Active Roles.
We haven't had any glitches.
I would rate the stability as a seven because there are sometimes performance issues, which require restarting the services.
A recent incident we dealt with took four months to resolve with a seven-day deadline, which was quite frustrating.
Synchronization issues occasionally occur, making it challenging to analyze logs and pinpoint the exact problem.
There is a need for better transformation support from on-premises Active Directory policies to the cloud, as Entra ID doesn't cover this sufficiently yet.
A way to connect to various directories and integrate with cloud directories would be beneficial.
Enhancements to the console are also necessary because it is more confusing than the web interface.
The user interface needs to be more modern and scalable.
We are getting our money's worth.
Microsoft sets pricing based on customer demand, adjusting to find the optimal balance between sales volume and profit per unit, similar to how Costco manages product prices.
Most features of Entra ID are part of Microsoft's ecosystem and included in Microsoft 365 bundles, which means there are no additional costs associated with pricing and licensing.
It is quite expensive, costing more than 50 euros per identity.
The pricing is high.
The pricing of One Identity Active Roles is expensive, but the return on investment justifies the cost, allowing for savings in other areas.
We can secure the applications that we are building and make sure that if the application were to be compromised, there is no full access to a customer's environment causing issues and other security concerns.
It's integrated with Microsoft technologies like Authenticator, SSO, and MFA, streamlining operations and creating a seamless environment.
The granular control, such as preventing logins from specific locations, enhances security significantly.
It's improved our security posture. It has limited access to our crown jewels, where all our identities lie within Active Directory.
It helps in removing custom Active Directory delegation, which enhances security by eliminating unnecessary privileges, addressing identity-based breaches by reducing the number of Active Directory delegations.
It is very intuitive and close to the native tools.
Product | Market Share (%) |
---|---|
Microsoft Entra ID | 19.9% |
Okta Workforce Identity | 8.2% |
Auth0 | 7.8% |
Other | 64.1% |
Product | Market Share (%) |
---|---|
One Identity Active Roles | 9.8% |
ManageEngine ADManager Plus | 14.5% |
Netwrix Auditor | 11.8% |
Other | 63.9% |
Company Size | Count |
---|---|
Small Business | 80 |
Midsize Enterprise | 36 |
Large Enterprise | 132 |
Company Size | Count |
---|---|
Small Business | 7 |
Midsize Enterprise | 2 |
Large Enterprise | 16 |
Microsoft Entra ID is an advanced identity and access management service offering seamless single sign-on, multifactor authentication, and centralized user access across applications, enhancing security and efficiency for organizations transitioning to cloud-based environments.
Recognized for its centralized management, Microsoft Entra ID significantly boosts organizational security by integrating features such as conditional access and identity protection. It supports a wide array of applications, facilitating a secure transition from on-premises to scalable cloud environments. By adopting robust security measures and flexible identity management, organizations can streamline operations and ensure consistent user experiences. However, challenges like confusing licensing costs, outdated documentation, and limited integration with non-Microsoft applications persist. Enhancements in technical support, interface design, and more granular permissions are needed to address these issues effectively.
What are the key features of Microsoft Entra ID?In healthcare, Microsoft Entra ID facilitates secure patient record access and compliance with industry regulations. Financial institutions rely on it for robust security measures in safeguarding client data. In the education sector, it streamlines access to online resources for students and faculty. Global enterprises benefit from its ability to manage complex identity frameworks across multiple regions, ensuring reliable security amidst increasing cyber threats.
One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.
Using One Identity Active Roles, users can:
Managing accounts in AD and Azure AD can be tremendously challenging; continually keeping these important systems safe and secure presents an even greater challenge. Traditional tools can be inefficient, error-prone, and very disjointed. In today’s robust marketplace, organizations are finding it somewhat difficult to keep pace with the constant access changes in a hybrid AD ecosystem. Additionally, there are significant security issues to consider (government compliance, employee status/access changes, and other confidential business requirements). And, of course, there is a requirement to properly manage Active Directory and Azure Active Directory access in addition to managing all the other numerous SaaS and non-Windows applications that organizations use today.
Users can easily automate all of these tedious, mundane administrative tasks, keeping their systems safe and error-free. Active Roles ensures users can perform their job responsibilities more effectively, more efficiently, and with minimal manual intervention. Active Roles was created with a flexible design, so organizations can easily scale to meet your organizational needs, today, tomorrow, and in the foreseeable future.
Reviews from Real Users
A PeerSpot user who is a Network Analyst at a government tells us, “It has eliminated admin tasks that were bogging down our IT department. Before we started using Active Roles, if one of our frontline staff members deleted a user or group, it could take several hours to try to reverse that mistake. Whereas now, the most our frontline staff can do is a deprovision, which just disables everything in the background, but it's still there. We can go in and have it back the way it was two minutes later. Instead of it taking two hours, it only takes two minutes.”
Becky P., Sr Business Analyst at George Washington University, shares, “In addition, with the use of workflows and the scheduled tasks, we were able to automate and centrally manage a number of the processes as well as utilize them to work around other product limitations. Those include, but are not limited to syncing larger groups, which have 50,000 plus members, to Azure AD. We sync up to Azure AD using ARS. If we had not already had ARS in place, it would have been impossible for us to have done so in the time period we did it in. We did it in under six months. ARS probably saves us at least two weeks out of every month. It's reduced our workload by 50 percent, easily.”
We monitor all Single Sign-On (SSO) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.