Try our new research platform with insights from 80,000+ expert users

One Identity Active Roles vs SailPoint Identity Security Cloud comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 6, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Active Roles
Ranking in User Provisioning Software
5th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
20
Ranking in other categories
Active Directory Management (5th)
SailPoint Identity Security...
Ranking in User Provisioning Software
1st
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
69
Ranking in other categories
Identity Management (IM) (2nd), Identity and Access Management as a Service (IDaaS) (IAMaaS) (3rd), SaaS Management Platforms (2nd), Cloud Infrastructure Entitlement Management (CIEM) (1st)
 

Mindshare comparison

As of February 2025, in the User Provisioning Software category, the mindshare of One Identity Active Roles is 4.6%, up from 4.5% compared to the previous year. The mindshare of SailPoint Identity Security Cloud is 32.1%, up from 29.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Provisioning Software
 

Featured Reviews

JosephChandrasekaram - PeerSpot reviewer
Single interface and workflows simplify AD and Azure AD management efficiency and security
The most valuable features include * auditing * dynamic grouping * creating dynamic groups based on AD attributes. Also, as part of the cloud identity, meaning expanding identity to the cloud, it gives me a single workflow to expand on-prem. I can create a user in the cloud and give them access to resources through a single workflow. And for regulatory, auditing, and security requirements, it's critical that the solution enables Zero Trust security with hybrid AD fine delegation and role-based access control.
Praveen Jalumuru - PeerSpot reviewer
Enhanced automation and AI-driven integration offer significant time savings
The most valuable features include its ability to integrate with AI and machine learning, the automation of reports, and the built-in connectors that enable easy connection with both legacy and cloud-based applications. Its code-less drag-and-drop functionality allows for easier adjustments, and it provides strong support with reduced SLAs compared to SailPoint IQ.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution is stable."
"The most valuable features include auditing, dynamic grouping, and creating dynamic groups based on AD attributes."
"It provides automatic provisioning/update/deprovisioning workflows from a source system to a target system."
"It gives us attribute-level control and the AD management features work very well."
"Instead of deleting accounts, we like the deprovision option so that we can reverse any accidental deletions. It also gives a higher level of quality control in terms of enforcing any number of variables, such as making sure that an account has a description entered before the account can be created. We can backtrack and know the history of it that way."
"It's valuable to us in that it resembles the native tools that most people have grown accustomed to... Active Roles resembles traditional tools, such as from Microsoft. That is really good because it eases the way people interact with the tool."
"Secure access is the most valuable feature."
"The best part of this Active Roles is the workflow engine. It features an industry-leading workflow automation feature. It's a visual PowerShell that allows task interruption."
"This solution has improved our organization through its ease of application onboarding, approvals, provisioning, and lifecycle UI performance."
"The most valuable feature for our customers and for us is the identity data warehouse."
"The solution is one of the main security products you need to control access and have visibility into what's happening in your organization. It helps with managing access to applications, ensuring governance, and obtaining certifications."
"It significantly reduces the workload for certification processes."
"It provides a lot of out-of-the-box functionalities. You don't have to do too much custom development like other solutions such as Microsoft or NetIQ. It also has a lot of out-of-the-box connectors for different sources, directories, databases, etc. Its cloud version is working very well, and its pricing is okay. Its value for money is fine for most of the customers. It is also very flexible. They have frequent new releases and patches for fixing errors and things like that."
"Has a great certification module with intuitive options."
"This solution is easy to configure."
"SailPoint has an edge in terms of security since administrators have limited access, unlike ServiceNow where you can change everything. This adds a significant security advantage."
 

Cons

"For the AAD management feature, it needs to improve the objects that we can manage and the security."
"It also has workflows and those are really powerful, but there are no built-in workflows. When it comes to them, it's empty. I would personally love for it to come with ten, 15, or 20 workflows where each achieves a certain task... I could just look at how each is done, clone them, copy them, modify them the way I want them, and be good to go. Right now we have to invent things from scratch."
"When doing a workflow, we would like a bit better feedback on the screen, as we're trying to get it to work. For example, there is a "Find" function that you need set up in a workflow to do some of the automation. It is not the easiest to get a result from those finds when you're trying to do that. In the MMC, they have a couple different types of workflows. In this particular case, we use their workflow functionality to find all of X within the environment, then if you find it, do X, Y, and Z. You can have multiple steps. When you do that search function within that workflow, it's really hard to find out, "Is my search working?" It would be nice if there was some feedback on the screen so you could see if your search is working properly within the workflow."
"I know they have increased support for Entra ID and mentioned providing support for AWS. A way to connect to various directories and integrate with cloud directories would be beneficial."
"The third area for improvement, which is the weakest portion of ARS, is the workflow engine, which was introduced a few years ago. It's slow and not very intuitive to use, so I would like to see improvement there."
"In terms of improvement, it could be made even more user-friendly for administrators when they need to create new workflows and rule sets."
"The way you can search groups could be better."
"Active Roles could add more options for web customization. Our requirements are exceedingly specific. We'd like to get the web interface down to just five buttons, but in some cases, we can only get to six. The web interface in the current version is less customizable than in the previous one."
"The cost of this solution is high. The technical assistance center could be improved. They're very good, but considering the intricacies of the solution, they can further improve."
"There are more functionalities in the Cloud that could be explored."
"The user interface is not very user-friendly."
"The report functionality and dashboard of the access manager could be improved."
"The price of IdentityIQ could be lower. There are additional costs when you buy the licenses, and they force the customers to pay for them."
"The UI needs to be more user friendly. More concentration on historical policy violations would be great. In terms of new features, I would like to see artificial intelligence and machine language added."
"We faced some issues while integrating the solution with a third-party tool."
"It is not readily available and cannot be downloaded from the net."
 

Pricing and Cost Advice

"It's fairly priced."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
"It's expensive."
"The licensing model is a simple user-based model, not that much complicated."
"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"The pricing is on the higher end."
"The product is expensive. I rate its pricing an eight out of ten."
"It's difficult to say that the solution saved costs because it is quite expensive."
"SailPoint is expensive compared to its competitors. It's one of the most expensive products, so I'd rate it as one out of five, cost-wise."
"It is a costly solution. Its cost, for sure, should be reduced."
"SailPoint is higher in price as compared to Saviynt. The initial cost of SailPoint is very high. There are additional costs to the standard licensing fees."
"It is affordable licensing."
"SailPoint IIQ is the best of best. That is reflected in the pricing of the solution. The pricing is based on the number of identities."
"You do pay one price for the license but that price depends on what you choose to include as far as the optional modules go."
report
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
833,108 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
12%
Government
8%
Healthcare Company
8%
Financial Services Firm
18%
Computer Software Company
14%
Manufacturing Company
10%
Insurance Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for One Identity Active Roles?
The pricing for Active Roles is expensive but not as expensive as other solutions like Okta.
What needs improvement with One Identity Active Roles?
Active Roles can fix many little problems that have never been resolved and have lingered for years, continuing to annoy people. For example, you can't search by object GUIDs. The manual says you c...
How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the m...
What do you like most about SailPoint IdentityIQ?
The first valuable feature of the solution is its interface. The second feature of the solution is the level of flexibility it provides.
What is your experience regarding pricing and costs for SailPoint IdentityIQ?
The product is expensive. People need to opt for a licensing plan for one year or three years.
 

Also Known As

Quest Active Roles
IdentityIQ, IdentityNow, Cloud Infrastructure Entitlement Management, Intello
 

Overview

 

Sample Customers

City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
Adobe, AXA Technology Services, Cuna Mutual Group, Equifax, ING Direct, Orrstown Bank, Rockwell Automation, SallieMae, Spirit Aerosystems, TEL
Find out what your peers are saying about One Identity Active Roles vs. SailPoint Identity Security Cloud and other solutions. Updated: January 2025.
833,108 professionals have used our research since 2012.