EVOLVEUM midPoint Reviews

Our customers primarily utilize Evolve midPoint for Identity Access Management. A key factor influencing their choice is the preference for open-source solutions. Additionally, some customers prioritize the need for full flexibility to extend and customize the product. 

Our customers leverage the product as a central component in their identity field management. The process involves connecting it to target systems through connectors. It also helps us in role-based access control implementation. Users are granted access based on predefined roles associated with their positions, organizational hierarchy, or job titles. Instead of direct assignments, users automatically receive roles upon entering the company, aligning with their assignments.

The core feature of EVOLVEUM midPoint that I find most valuable is provisioning. Users, including myself, can submit requests that need designated individuals' approval. Additionally, the recertification feature is crucial for regularly reviewing and confirming the appropriateness of user access rights.

I find recertifications valuable because they align with clear regulatory requirements for companies to perform them at least once yearly. Using the product, I can initiate a recertification campaign by selecting users and the applications to be recertified. I define the individuals responsible for approving or rejecting access. The goal is to ensure compliance with regulatory standards.

The tool's flexibility in handling identity types and tickets has brought notable benefits. It provides full flexibility to extend attributes or the schema for users and organizations.

Its audit and reporting capabilities have significantly enhanced our customer's compliance and security posture. Management's regular need for reports, such as the number of users in the application and identifying users with critical access, is addressed. The solution allows easy configuration of reports directly from the front end. Additionally, the ability to schedule and automate report execution, followed by automatic distribution to support or responsible personnel, streamlines the process.

One area where I see room for improvement in EVOLVEUM midPoint is enhancing the user interface for configuration. Currently, a significant portion of the configuration involves technical, XML-based settings requiring a higher level of technical expertise. I believe there could be a valuable improvement in providing a more user-friendly, code-free approach to configuration. This would empower non-technical business users to configure and utilize the system easily. 

I have been using the product for four years. 

Regarding stability, there have been occasional crashes in the front end, especially when navigating deep into certain links or menus. Occasionally, errors and disruptions may occur, requiring a return to the home page. This indicates a potential area for improvement in enhancing the front-end stability. 

However, the product is stable from a backend perspective. I rate it a six to seven out of ten. 

I rate the tool's scalability a ten out of ten. Scalability is a notable strength of this solution, accommodating diverse use cases ranging from supporting millions of users in expansive scenarios to meeting the needs of the smallest companies with just a few hundred users. We have two to three customers who have thousands of users each. 

The tool's support, based in Europe, has been positive regarding collaboration within European time zones. The team has shown responsiveness and a commitment to addressing issues promptly. While the specific response times may depend on SLAs and use cases, my experience is generally good. 

Positive

The tool's deployment is easy and can be done in two hours. It's easy for a medium-sized environment. Typically, in our market, most deployments for this solution are still on-premise or in private cloud environments. However, it's common for organizations to prefer a tokenized environment, opting for deployment on Kubernetes clusters or authorized environments.

In our usual deployment process for this solution, the customer is responsible for providing the infrastructure, whether physical or virtual. Access to the infrastructure is needed, and firewall configurations are essential to establish connections. The deployment initially involves setting up the database and installing the product. Configuration steps include ensuring proper communication with the database and initiating setup tasks, such as defining the admin user's password.

The product is free to use, but a cost is associated if you opt for official product support. Additionally, there is an option for a platform subscription, which entails professional services provided by the vendor. Opting for professional services helps maintain the product's compatibility with upgrades. 

The product has demonstrated scalability to meet the growth of our customer's organizations. As the number of employees increases, scaling the usage of the product is a straightforward process. However, it includes providing additional computational power and potentially implementing a larger database to maintain optimal performance.

Furthermore, with the growth of an enterprise, the complexity also increases. More processes, systems, and requirements come into play. In this context, the flexibility of midPoint becomes crucial. It offers standard features for identity access management that can be configured to meet specific customer requirements and support the evolving needs of a growing organization.

It offers a wide range of approximately 50 connectors to well-known systems, providing standardized connectors to integrate into existing infrastructures. The solution offers flexibility for more specialized integrations through REST APIs and Java- or JDBC-based applications.

I rate the overall product an eight out of ten. 

My main uses are integrating external applications and user management.

The most valuable feature is that it's open-source, so it's easy to look after the source code.

An area for improvement would be that you have to be aware of your interfaces when making changes to the source code, as if you change an integration that is not in-box, that integration can be broken. There are also issues with integration with paid solutions from Microsoft or other identity management vendors, as if they stop working, you have a big problem because they have changed something which is not well documented, and you have to deal with it without breaking copyright (reverse engineering). There are few companies publishing solutions  including source code for integration with closed code solutions. Use is always on own risk - no guarantees for up to date code interfacing to closed code solution.

This solution is really stable - it's able to run in an evolving environment.

This solution is suitable for small to large organizations.

The support isn't ideal - because the product is open-source, it relies on your own ability to make it work unless you pay for support at a high hourly rate. Their responsiveness and willingness to make changes also vary, and it can take a long time to get to talk to somebody who will give you proper answers. However, you can offer them more money if you're interested in solving a particular issue, and they are more user-friendly than commercial companies.

Previously, I worked with Novell Identity Manager (now called NetIQ Identity Manager). It is a great solution, but its code use is not free of charge, so you had to raise funding for the code usage (license or subscription) plus deployment and would still get vendor-locked.

The basic setup is straightforward and takes minutes to complete. The integration of any information system depends on the complexity of the system and the processes you would like to deploy. The environment is ready in minutes, but the solution itself needs comprehensive analyses, discovery of processes and dependencies, and turning them down to configuration files.

ROI depends on the partner that the customer finds for deployment, but I would say it's a better rate than commercial ones.

Licensing - support is defined by the number of users served by solution - it's about 10,000-15,000 euros annually for 10,000 users.

EVOLVEUM has really good in-house publishing, with publicly available binaries that you can deploy in your Docker or Kubernetes environment. Before implementing, make sure to study this solution and how to deploy it - there are lots of examples available. I would give this solution a rating of eight out of ten.

We use EVOLVEUM midPoint for Identity Management. Automating HR Processes - Joiner/Mover/Leaver, connecting source and target systems to synchronize user accounts. 

Because the product is automating processes, if somebody joins the company, based on his/her role within company he/she get proper rights and accesses to the target systems. The privileges can be reviewed and evaluated continually. At every point of time, you know, who has access to what resources. In the end of the day, it eliminates human errors, which protects company assets and good will. 

I like that it's open-source, and it's working. It has nice features, and it is very easy to deploy and maintain.

I think that the product is missing some of the identity governance functions related the data provenance. But I think they are currently working on it. 

Sometimes the GUI crashes or freezes or doesn't work properly, however, I don't see that as a huge problem. 

I would appreciate SAP CUA connector out of the box and more documentation/possibilities on hooks/plugin points.

I have been dealing with EVOLVEUM midPoint for one and a half years.

In my experience, it was very stable. Sometimes it can be a little slow, but the system didn't crash. Depends on the underlying infrastructure. 

It's a scalable solution. I tried a scenario with 2,000 identities. It wasn't that big, but I was satisfied.

It is doing what you expect it should do, that is nice about it. 

The initial setup is very straightforward.

I implemented this solution by myself. 

We're EVOLVEUM partners, and I tried it without a license.

I would tell potential users to at least try it and see. Many of the deployments can be set up within few seconds. It's definitely good to try it and maybe also integrate it within company.

On a scale from one to ten, I would give EVOLVEUM midPoint an eight.