Try our new research platform with insights from 80,000+ expert users

One Identity Active Roles vs Saviynt comparison

One Identity and Saviynt are both solutions in the User Provisioning Software category. One Identity is ranked #5 with an average rating of 8.5, while Saviynt is ranked #3 with an average rating of 7.4. One Identity holds a 5.2% mindshare in UP, compared to Saviynt’s 14.2% mindshare. Additionally, 100% of One Identity users are willing to recommend the solution, compared to 80% of Saviynt users who would recommend it.
One Identity Active Roles
Read 26 One Identity Active Roles reviews
  • 4,027 Views
  • 1,651 Comparison Views
100% willing to recommend
Saviynt
Read 26 Saviynt reviews
  • 5,967 Views
  • 2,566 Comparison Views
80% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 6, 2024

One Identity Active Roles and Saviynt compete in the identity and access management space. Saviynt appears to have an upper hand in offering robust access governance and flexible deployment models.

Features: One Identity Active Roles stands out for its active directory management, dynamic group handling, and extensive integration capabilities. The workflows support comprehensive user management. Saviynt excels in role-based access, identity lifecycle management, and offers user-friendly application onboarding and certification features. Built-in reporting and database utilities add significant value.

Room for Improvement: One Identity Active Roles could benefit from improved web console customization, support for multiple scripting languages, and the reintroduction of the attestation feature. Additionally, its workflows could include more templates for ease of modification. Saviynt needs better customization options, improved documentation, and more adept technical support. Simplification of its complex integration process is also needed.

Ease of Deployment and Customer Service: One Identity Active Roles is mainly on-premises, while Saviynt offers cloud and hybrid deployment options, providing more flexibility. Active Roles is praised for its knowledgeable support, though there are some limitations in first-call resolution. Saviynt's support is recognized, but users call for better technical assistance and improved documentation.

Pricing and ROI: One Identity Active Roles is perceived as expensive but offers a competitive user-based licensing model that delivers ROI through automation and risk reduction. Saviynt, slightly costlier, provides extensive features for the price and a pay-as-you-go model with multiple plans. Its ROI is tied to comprehensive access management and security features, ensuring compliance and data protection.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed One Identity Active Roles vs. Saviynt Report (Updated: September 2025).
Buyer's Guide
One Identity Active Roles vs. Saviynt
September 2025
Download the complete report
Helped 872,098 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Active Roles
Ranking in User Provisioning Software
5th
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
26
Ranking in other categories
Active Directory Management (1st), Non-Human Identity Management (NHIM) (4th)
Saviynt
Ranking in User Provisioning Software
3rd
Average Rating
7.4
Reviews Sentiment
6.3
Number of Reviews
26
Ranking in other categories
Identity Management (IM) (7th), Privileged Access Management (PAM) (12th), Identity Threat Detection and Response (ITDR) (10th), Identity and Access Management (3rd)
 

Mindshare comparison

As of October 2025, in the User Provisioning Software category, the mindshare of One Identity Active Roles is 5.2%, up from 4.9% compared to the previous year. The mindshare of Saviynt is 14.2%, up from 14.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Provisioning Software Market Share Distribution
ProductMarket Share (%)
Saviynt14.2%
One Identity Active Roles5.2%
Other80.6%
User Provisioning Software
 

Featured Reviews

Grzegorz Kosela - PeerSpot reviewer
Task automation simplifies user and delegation management while offering a customizable interface
Currently, task automation, like provisioning, deprovisioning, and reprovisioning, is very effective. When a user moves from one organization to another, it automatically changes their group membership and performs similar functions. Secondly, the granular delegation feature is very nice and much simpler and easier than it is natively in Microsoft. Two years ago, One Identity Active Roles was under Dell. It was quite poor. However, now, there have been notable improvements, such as faster system processing, better logging, enhanced information, and a more user-friendly interface. Once it was sold by Dell, things got better. The interface became a bit more user-friendly. The Angular user interface is much more flexible for adjusting to customer needs, and a completely new and customizable one can be created, aligning with all settings and scripts required by a customer. The ease of managing on-prem and cloud-based directories through a single pane of glass is good. I'd rate it nine out of ten. The solution's ability to provision and deprovision resources and directories like Azure AD is very simple, especially when you can integrate with the HR system and grab some data from HR. It's actually fully automatic. I don't need to even touch it. It's helped increase operational efficiency by 50%. It's helped decrease security problems around privileged accounts. We were able to decrease the number of privileged accounts and have been able to delegate more effectively. We decreased the number of high-level permissions that administrators had. For example, if someone is a DNS administrator, he has access only as far as the specific actions he needs to handle. We don't need to give away such high privileges for such a daily job. It's helped clarify roles and access. It's helped reduce identity-based breaches. If someone leaves a company, we can easily undo provisioning and close accounts. We can generate reports to see which people have which permissions and at what times. We've just integrated with our HR system. It helps us follow activated and deactivated users. I'd rate the granular controls on offer ten out of ten. We've saved on manpower in terms of the work of the administrators. There's good reporting and functionality, and it's very transparent. You can connect more than one directory and manage everything from one pane. You can do many things from one interface.
Read full review
Suresh Kumar Subramaniyan - PeerSpot reviewer
Has delivered strong identity automation while support response could be faster
With either SailPoint or Saviynt, I utilize this product, as do some of my clients, with AWS as a main cloud provider. We are not using AWS; we were using only Saviynt. We never used AWS because we don't have any customers for AWS. Saviynt likely uses an AWS server for their database, though I'm not certain how they utilize AWS services. The cloud-native capabilities of Saviynt contribute to enhanced cloud security as they are operating a cloud-based solution. Saviynt's capabilities for automating user provisioning and access are excellent, and their IGA functionality is perfect. The specific details about their IGA capability show excellence in terms of automated onboarding, off-boarding process, and JML processes, making it a strong solution in this market. I rate Saviynt 8 out of 10.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features include auditing, dynamic grouping, and creating dynamic groups based on AD attributes."
"Active Roles improved the management of users, groups, and AD objects in the organization."
"It is very intuitive and close to the native tools. Since it is web-based, it does not require extensive training for our end users."
"It is an easier way for me to manage Active Directory with more advanced features."
"Because of Active Roles, we're able to synchronize on an even more regular basis. It enables us to provide even more information to the Active Directory, which helped us to group our users in a more consistent manner."
"We have eased the burden on the support desk and reduced the risk of them doing something they shouldn't."
"Instead of deleting accounts, we like the deprovision option so that we can reverse any accidental deletions. It also gives a higher level of quality control in terms of enforcing any number of variables, such as making sure that an account has a description entered before the account can be created. We can backtrack and know the history of it that way."
"Another good feature is the change history. It's centralized in a single place and allows us to manage people's Active Directory domains from a central location. We can also drill down into individual objects in a troubleshooting or even an auditing situation. We can show evidence to auditors by drilling down into the individual history. It gives you all the history of what happened around an individual object. That is something that would be almost impossible to do in Active Directory, or extremely complicated."
More One Identity Active Roles pros
"We have found the implementation process to be very easy."
"Saviynt is used for the greenfield implementation for the whole IAM, IGA, MFA, SSO, and access management."
"It is very easy to use. It addresses most of the trends in identity governance and risk management."
"Based on my experience working with Saviynt, they deserve a rating of nine because they are very responsive to support."
"Considering the initial cost and the basic features, this is a good solution that provides integration with both on-premise and cloud applications."
"It's a highly functional system and a very well rounded solution. The onboarding of applications is solid. Their user access reviews are very good. Their role-based model and their identity life cycle stuff are solid. It's a very well rounded, strong product."
"Saviynt provides built-in access recommendations, while SailPoint IdentityNow offers access recommendations through a separate AI integration that requires additional licensing. Saviynt functions as a unified platform for various business operations, consolidating user and access data from multiple sources into a single platform. This allows for leveraging the same user base and data across different business functions, including access governance, privileged access management, data access governance, and third-party access governance. In contrast, SailPoint is a decoupled tool, requiring separate integration for managing access and permissions, especially for unstructured data. Saviynt's approach is more integrated and streamlined, providing a unified platform for access recommendations and various business operations."
"The most valuable aspect of Saviynt is its market acceptance."
More Saviynt pros
 

Cons

"The user interface needs to be more modern and scalable. There are certain screen resolutions where the product is unusable."
"The user and group management in Azure AD could be better. Our focus these days is dynamic sharing with several on-prem Microsoft applications like SharePoint."
"Another issue we have with the product is that we run a lot of custom tasks. You have to program them to run on one particular host and there's no automatic failover to a second host. If that host is down when a task is supposed to run, it has to wait until the next time it runs when that host is up."
"The solution needs an attestation process that includes certification and recertification attestation."
"Customer support is rated six. Sometimes having a fix for a bug takes too much time. While in production, issues tend to take a while to resolve."
"For mid-sized to small companies, I do not know if it would be that useful, considering the tool's purpose."
"There are areas for improvement in One Identity Active Roles that include updating the web interface, creating an API accessible from the web, and improving overall performance, as it can be slow at times."
"The way you can search groups could be better."
More One Identity Active Roles cons
"The biggest drawback is that for every change you want to make, you have to go back to them and ask for it."
"The solution does not work very well as the number of users increases."
"The company needs to do more to establish standard practices within the product itself that are common in the industry."
"An area for improvement in Saviynt is that there's a limitation on the number of logs you can get from the past twenty-four hours. For example, if the data is huge, the tool can only give you a maximum of one hundred logs. You can't get any further than that. In the next version of Saviynt, however, you can get more logs and you'll see them inside the log rotation. For example, when you're trying to search inside the log, you can select a date range, and then you can search for a particular log. We haven't used that new log rotation feature yet, but it's included in the next release of Saviynt. Another area for improvement in the tool is that it doesn't have a server monitoring feature, so if your server has a high load, it should give you a warning. You're supposed to get an alert similar to what's being done in WebLogic. In WebLogic, we had a separate facility, but in Saviynt, that feature's missing."
"According to feedback I've received, some users prefer SailPoint over Saviynt in real complex environments. SailPoint has its provisioning platform. Complex integrations may pose challenges in scenarios like a large bank with thousands of users, making SailPoint a preferred choice for some."
"The UI doesn’t enhance the user experience."
"It should support more customizations. In SailPoint, we can do many customizations, but we are not able to do that in Saviynt. For workflows and other things, we can only use what is already in place. Saviynt has a lot of scope for improvement on the customization part."
"Saviynt cannot customize based on customer needs."
More Saviynt cons
 

Pricing and Cost Advice

"The licensing model is a simple user-based model, not that much complicated."
"It's expensive."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"It's fairly priced."
"The pricing is on the higher end."
"If you need to make any changes then there are additional fees."
"Saviynt's pricing is acceptable and licensing costs are yearly."
"The price of the license for this product is quite expensive."
"If you are investing in securing your data and avoiding any non-compliance issues, then yes, it is certainly recommended. To put it plainly, if you're willing to pay fines and aren't concerned about the misuse of data, then there might not be a problem. However, if you intend to safeguard the data of your employees, vendors, and customers, it becomes crucial. In this context, managing data security requires preventive and detective measures, such as enforcing segregation of duties and regularly reviewing permissions. Throughout an individual's life cycle within an organization or customer life cycle, various access permissions are granted. Without taking action on these permissions, there is a risk of exposure later on. If individuals retain access after leaving the organization, it poses a serious security threat. Implementing solutions like Saviynt can address these challenges, ensuring continuous access review, generating reports, alerts, and identifying potential risks."
"The product is less expensive than one of the competitors."
"Saviynt's pricing is reasonable."
"We are not into the licensing part. The clients take care of the licensing part."
"The solution has a pay-as-you-go licensing model, and you can subscribe monthly or yearly."
More Saviynt pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
872,098 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
8%
Manufacturing Company
8%
Healthcare Company
7%
Financial Services Firm
15%
Computer Software Company
13%
Manufacturing Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise2
Large Enterprise17
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise5
Large Enterprise15
 

Questions from the Community

What do you like most about One Identity Active Roles?
The solution is stable.
See all answers
What is your experience regarding pricing and costs for One Identity Active Roles?
The product is expensive, but if you want to save money, the delegation set-up process is quite easy. After setting up Active Roles once, defining the delegation model, it is very efficient, almost...
See all answers
What needs improvement with One Identity Active Roles?
The interface appears outdated. Once logged in, everything inside remains unchanged from years ago. Additionally, when they release new features, they should provide training or webinars at least o...
See all answers
What do you like most about Saviynt?
It is very easy to use. It addresses most of the trends in identity governance and risk management.
See all answers
What is your experience regarding pricing and costs for Saviynt?
Saviynt is very affordable compared to its competitors. It is cloud-based, making it significantly cheaper than on-premises solutions. This cost-effectiveness aligns well with the Saudi market, whe...
See all answers
What needs improvement with Saviynt?
Compared to other vendors, Saviynt's Privileged Access Management feature is not complete. They have an inbuilt PAM solution, but they are not capable of handling all PAM solutions because they hav...
See all answers
 

Comparisons

ManageEngine ADManager Plus vs One Identity Active Roles Logo
ManageEngine ADManager Plus vs One Identity Active Roles
Compared 14% of the time
One Identity Manager vs One Identity Active Roles Logo
One Identity Manager vs One Identity Active Roles
Compared 13% of the time
SailPoint Identity Security Cloud vs One Identity Active Roles Logo
SailPoint Identity Security Cloud vs One Identity Active Roles
Compared 8% of the time
Active Administrator vs One Identity Active Roles Logo
Active Administrator vs One Identity Active Roles
Compared 6% of the time
EmpowerID vs One Identity Active Roles Logo
EmpowerID vs One Identity Active Roles
Compared 5% of the time
More One Identity Active Roles Competitors
SailPoint Identity Security Cloud vs Saviynt Logo
SailPoint Identity Security Cloud vs Saviynt
Compared 33% of the time
Microsoft Entra ID vs Saviynt Logo
Microsoft Entra ID vs Saviynt
Compared 15% of the time
Okta Workforce Identity vs Saviynt Logo
Okta Workforce Identity vs Saviynt
Compared 9% of the time
Omada Identity vs Saviynt Logo
Omada Identity vs Saviynt
Compared 6% of the time
CyberArk Privileged Access Manager vs Saviynt Logo
CyberArk Privileged Access Manager vs Saviynt
Compared 6% of the time
More Saviynt Competitors
 

Product Reports

Buyer's Guide
One Identity Active Roles
October 2025
One Identity Active Roles reportDownload One Identity Active Roles product report
Buyer's Guide
Saviynt
October 2025
Saviynt reportDownload Saviynt product report
 

Also Known As

Quest Active Roles
No data available
 

Overview

One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.

Using One Identity Active Roles, users can:

  • Easily increase and strengthen native attributes of Active Directory (AD) and Azure AD.

  • Quickly unify and automate group and account management while protecting and securing critical administrative access.

  • Free up valuable resources to concentrate on other IT tasks, fully confident that your user permissions, critical data, and privileged access are safe and secure.

Managing accounts in AD and Azure AD can be tremendously challenging; continually keeping these important systems safe and secure presents an even greater challenge. Traditional tools can be inefficient, error-prone, and very disjointed. In today’s robust marketplace, organizations are finding it somewhat difficult to keep pace with the constant access changes in a hybrid AD ecosystem. Additionally, there are significant security issues to consider (government compliance, employee status/access changes, and other confidential business requirements). And, of course, there is a requirement to properly manage Active Directory and Azure Active Directory access in addition to managing all the other numerous SaaS and non-Windows applications that organizations use today.

Users can easily automate all of these tedious, mundane administrative tasks, keeping their systems safe and error-free. Active Roles ensures users can perform their job responsibilities more effectively, more efficiently, and with minimal manual intervention. Active Roles was created with a flexible design, so organizations can easily scale to meet your organizational needs, today, tomorrow, and in the foreseeable future.

Reviews from Real Users

A PeerSpot user who is a Network Analyst at a government tells us, “It has eliminated admin tasks that were bogging down our IT department. Before we started using Active Roles, if one of our frontline staff members deleted a user or group, it could take several hours to try to reverse that mistake. Whereas now, the most our frontline staff can do is a deprovision, which just disables everything in the background, but it's still there. We can go in and have it back the way it was two minutes later. Instead of it taking two hours, it only takes two minutes.

Becky P., Sr Business Analyst at George Washington University, shares, “In addition, with the use of workflows and the scheduled tasks, we were able to automate and centrally manage a number of the processes as well as utilize them to work around other product limitations. Those include, but are not limited to syncing larger groups, which have 50,000 plus members, to Azure AD. We sync up to Azure AD using ARS. If we had not already had ARS in place, it would have been impossible for us to have done so in the time period we did it in. We did it in under six months. ARS probably saves us at least two weeks out of every month. It's reduced our workload by 50 percent, easily.”

One Identity

Saviynt is an intelligent, cloud-first identity governance & access management solution. The solution is designed to help organizations quickly scale cloud initiatives and solve security and compliance challenges. Saviynt offers identity governance, granular application access, cloud security, and privileged access to secure your company’s ecosystem and provide a seamless user experience.

Saviynt Features

Saviynt has many valuable key features. Some of the most useful ones include:

  • Mobile enablement: Saviynt provides a powerful mobile app to manage business operations such as initiating a request, managing approvals, completing certifications, viewing dashboards, and taking actions in a timely manner.
  • Scalability and Flexibility: Saviynt is built for enterprise scale & flexibility with an industry-leading cloud architecture.
  • Cloud-based: Saviynt provides you with the ability to quickly deploy and seamlessly integrate with multiple critical applications within your environment to manage risks effectively.
  • Rapid application & identity onboarding: With Saviynt application and identity onboarding is easy. Saviynt offers pre-built templates and discovery of unmanaged assets & applications to help speed up the process.
  • AI & ML powered identity analytics: By leveraging the power of AI and machine learning, Saviynt is able to identify risk and duplicate identities, and can also close access gaps.
  • Actionable insights: Saviynt provides actionable insights for identity management, compliance, and security via the Control Center.

Saviynt Benefits

There are several benefits to implementing Saviynt. Some of the biggest advantages the solution offers include:

  • Frictionless access requests: With Saviynt you can request access from anywhere, at any time.
  • Policy violation and SoD conflict detection: Saviynt helps your organization prevent risky access by understanding violations and conflicts for any request.
  • Governance: Saviynt provides governance for all human and machine identities – including third parties.
  • Easier provisioning: Saviynt enables you to automate lifecycle tasks in order to make cross-application provisioning easier and more efficient.
  • Out-of-the-box rulesets: With Saviynt’s out-of-the-box rulesets, you can automatically connect security roles to security tasks.
  • User friendly: Saviynt is designed with a modern web interface and has a mobile app and browser plug-in along with a ServiceNow app to make it easy to use.

Reviews from Real Users

Below are some reviews and helpful feedback written by Saviynt users.

An Identity and Access Management Specialist at a non-tech company states, "The dedicated Freshdesk platform is a user community and a step in the right direction for offering learning resources. Saviynt has a lot of potential with many features available for users."

A Principal Consultant at a tech services company says, "It's a highly functional system and a very well rounded solution. The onboarding of applications is solid. Their user access reviews are very good. Their role-based model and their identity life cycle stuff are solid.”

PeerSpot user Amimesh A., Senior Associate at a tech services company, mentions, “The most valuable feature is the ease of implementation. This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool. The reporting features are good.”

Irappa H., Manager at a computer software company, comments, “The most valuable features are the workflows and certification.”


Saviynt
 

Sample Customers

City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
Shell, McKesson, Kimberly-Clark, Ingram Micro, Intermountain Health Care, Forterra, CoreLogic
Buyer's Guide
One Identity Active Roles vs. Saviynt
September 2025
Free Report: One Identity Active Roles vs. Saviynt
Find out what your peers are saying about One Identity Active Roles vs. Saviynt and other solutions. Updated: September 2025.
DOWNLOAD NOW
872,098 professionals have used our research since 2012.
See our One Identity Active Roles vs. Saviynt report.
See our list of best User Provisioning Software vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.