ForgeRock Reviews

One of my company's customers has already integrated ForgeRock and set up Splunk. We just did some simple configuration, but not much since our customer did it.

I use the tool for its single sign-on capabilities. With ForgeRock, we can enable single sign-on and multi-factor authentication features, as well as single-layer or two-layer multi-factor authentication and password-less authentication.

Basically, we enable multi-factor authentication when logging in to ForgeRock. With ForgeRock Access Management, we can access Splunk using single sign-on capabilities. If you need one more multi-factor authentication for Splunk, we can enable it for that particular application. We already enabled multi-factor authentication for ForgeRock Access Management. Users are authenticated through multi-factor authentication, so Splunk does not require one more such tool. If you want the improvements and prefer one more multi-factor authentication tool, then it is okay.

In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required.

I have been using ForgeRock for a year and a half. One of my company's customers uses the tool. My company implements and offers support for the tool.

I provide full support in the application integration for our customers.

I have used Splunk for CybeArk for one of my company's customers. I don't know of particular advantages in ForgeRock as such, but it helps reduce manpower and improve security, and then we can keep the environment stable.

The product's implementation phase is very easy, but a lot of customizations are required.

ForgeRock uses Splunk. ForgeRock's integration with Splunk is very easy and straightforward.

In terms of the tool's adaptive risk and intelligence features, I can say that it is an area that is time-based. In different regions, the working hours are different. We can configure the tool based on the timing and the work location.

In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments. Manual monitoring is not possible, especially monitoring everything with the system memory and CPU memory, along with the user behaviors. Splunk easily monitors everything. From a business perspective, it will reduce risk and then reduce manpower. Splunk provides exact results and monitoring results to track a particular issue so we can easily identify the issue.

We usually receive alerts regarding high CPU utilization because of the high traffic we receive.

I can't comment on whether the tool helps in the area of predictive analytics or automated threat detection.

I recommend the product to others. I can also recommend products like CyberArk and Okta. Wherever we need to monitor the environment, specifically the cloud environment or on-prem one, I can suggest all the above-mentioned tools.

I rate the tool a nine out of ten.

My clients use the solution primarily for customer identity management, access management, customer onboarding, data management, and authentication.

The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it.

The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution.

The reports could be more customizable in an upcoming release, and the overall customization could be simplified by making drag-and-drop functionality.

I have been using this solution within 12 months.

I have found the solution stable.

There is a lot of options for scalability in this solution.

ForgeRock was born out of the open souced technology and users can use the community support without a license. Users with a commercial license can talk directly with the support agents that can immediately assist them with their problems.

The installation is very simple.

The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end.

My advice to those wanting to implement ForgeRock is if they are looking for a strong customizable identity management solution that strikes the balance between convenience and security then this is probably a good choice for you.

I rate ForgeRock an eight out of ten.

We use this product as an access management platform.

ForgeRock has CIAM with leading and innovative solutions.  ForgeRock is DevOps and cloud ready.

Automatic Deployment needs improvement. It could be made easier.

In the next release, I would like it to be easier to use, easier to deploy, and more implementation-friendly.

I have been using this solution for over five years.

We are currently using the latest version.

This solution is relatively stable.

It's a scalable product. We have implemented it for over 5,000 users.

The technical support is fine and we have not had any issues.

I have worked with many other solutions such as CA, IBM, Oracle, and Ping Identity.

It's a bit pricey and could be more competitive.

If you are thinking of using this solution then you should find a service provider who is trained. Troubleshooting skills like performance tuning are important. 

It's a bit costly, so you should make it pluggable so that you can switch vendors when you want.

Generally, you need to be careful not to lock-in 100%.  Select a loosely coupled approach, that way you can replace individual modules if you want to.

Go with open standards and avoid using any proprietary protocols. 

I would rate this solution an eight out of ten.

We use it to define the users in all of our systems like VMS and Samba. We don't use Windows, we use Samba. We create and define the permissions and configurations for the users. 

We were using Solaris IDM system, Solaris sells an IDM system and there was a big migration telling us where to go. They told us to rewrite the IDM solution and we saw which other solutions there were out there. We found this solution and we found someone who could create a proof of concept and we decided to change from Solaris IDM to this. It has the same functionality.

In the beginning, it was open-source as opposed to other solutions like IBM. We used Solaris IDM and we had to merge with another product and we chose this because, in our company, open-source software is the main solution. 

It's hard to speak with ForgeRock. It's very expensive. I find that it's quite expensive for just an open-source system. Support is quite expensive. We are only 300 users. It would make sense for a big company but for a little company, it's quite expensive. 

I have been using ForgeRock for around six to seven years. 

The stability is quite good. As an IDM system, it's not so stressed. We create five or six users per month. 

I heard that it's good for big companies, with thousands of users use it but our company only has a few hundred users. We use little bits of the database. Scalability isn't a problem for us. 

I have contacted their support. It's quite good. Out of ten, I would rate it a seven. 

I would rate it a seven out of ten. 

I would recommend trying it. Do a proof of concept. Every company is different. Management is different, you have to find a local company that can support you.

The interface is quite lively but I don't think that it's possible to have UI that's compatible with the rest of the company's. We only use the core of OpenIDM. 

The primary use of this solution is as an access management system.

The most valuable features are that it is easy to manage and it's stable.

They should improve the solution by including functionality for reporting.

There are several log sites, but many are very difficult.

In the next release of this solution, I would like to see reporting features added, and also they can simplify their log-site because it's very difficult to manage.

I have been using this solution for two years.

This solution is stable.

This solution is scalable.

It works from a container system or with Dell, so it is easy to scale up or to scale down.

With the visual aspect, this solution was not easy to set up, but with Dell's tools, it's very easy.

This solution was deployed both on-premises and on the cloud because I work from three different systems. One was on the cloud solution and two of them were with the on-premises deployment.

If a customer is looking for an identity management solution, then, I can't recommend it, but if they are asking for an access management product then I can strongly recommend this solution.

I would rate this solution an eight out of ten.

The solution is primarily used for the consumers, for their registration and other applications.

For our client, which we are deploying for, the solution seems to be offering them really great value.

The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent.

The identity management model needs a bit of improvement.

The solution should work on offering more automation.

The stability of the solution is good. They are coming up with good solutions and features. However, I think they should focus more on how they can automate things or make it simpler when it comes to the implementation of cloud solutions.

The solution is extremely scalable. We are implementing this for around 10 million customer records.

Technical support needs improvement. We have raised many cases but every time I call, they don't support. You need to buy their professional services.

When you are deployed on these standalone servers, the initial setup is very straightforward. However, when you are talking about the cloud solution, deployment can be a bit tricky.

Deployment took around two to three months. 

We handled the implementation ourselves.

You need to negotiate the pricing, so how expensive or affordable it ends up being depends on each individual contract.

Currently, we are working under the Agile model.

I would advise others to assess the product first based on their requirements. There are multiple models, so they need to be sure to choose the best option for them. Otherwise, they will end up purchasing everything and they might not utilize that product.

I'd rate the solution seven out of ten.

1. Highly customizable is one of the main advantages of the ForgeRock product. I personally like the Custom Authentication Modules design.
2. Ability of ForgeRock support and its development team to provide patches and functionalities.
3. Highly improved performance and scalability.
4. Fully integrated with internal/in-house provisioning systems.
5. Rapid deployment of the products.

For the current client environment, we have started with ForgeRock OpenAM 13.0.0 version and asked for many patches and features for our solutions. The ForgeRock team added functionalities in the form of patches and version upgrades so quickly and it was easily adaptable to our architecture design.

Similar to other products, they do have some improvement scope the in the documentation part. I do feel they became more organized and better, in terms of documenting, as they are growing with the new versions, but there is also more scope. Also, compared to other major market competitors, they have a lot more to learn from them in terms of product designing.

I’ve been working on the ForgeRock product suite (including ForgeRock Access Management, Identity Management and Directory Services) for around three years now.

The deployment of a solution is never easy in a new design of the environment. The new capability of the Amster tool for OpenAM seems to be very easy to deploy your solution over their older tools SSO Admin & SSO Configurator. Amster provides config properties to be exported and imported to another instance with JSON format, as an example.

With every upgraded version, they come with some minor instability issues or little functionality errors. We did find many small and medium functionality issues from the journey of OpenAM 13.0.0 to Access Management 5.1.1, which they fixed in the next upgrades.

Scalability has never been problem with the ForgeRock product suite. You can add nodes at runtime without affecting the environment. You can build another datacenter without affecting the running instance and add to it.

So far, I do not have any complaints on the technical support side. Whenever we asked for any patches or bug solutions, they have responded within their incident matrix response time. I would like to rate technical support at a 10 out of 10.

No, we chose ForgeRock as our first choice. Though we had many other products to look at, ForgeRock seemed to be very compatible with our customizations and ease of use requirements.

ForgeRock came up with a community version and enterprise version, which is the main difference in pricing. They also came up with the Product Suite 5 version. They provide subscriptions based on the identity basis divided into internal and external identities.

Yes, we did comparisons with other IAM tools, like IBM SAM, Oracle Access Manager, and Ping Identity solution. We needed a better user experience and flexible authentication, like adaptive authentication plus multi-factor authentication capabilities, where ForgeRock seem to be the best match among them all.

ForgeRock products are highly flexible and customizable within the range of their competitor's products.

Look at the your requirements and compare products with each other and choose which suits your needs better. On the ForgeRock side, I personally liked the capabilities of customizations and the technical support we get from the vendor.

All of them:

• REST API (the best)
• Available connectors
• Roles
• Objects
• IoT readiness
• Assignments
• Flows, etc.

Automated provisioning and deprovisioning of users and customers. Also, integration into our portals for self-service. With this product, the design and implementation is done in-house. Lots of customizations are possible due to the powerful API.

Improve the software quality (bugs in new versions).

One year now.

No, except that new versions often have basic bugs, which should not be the case.

No, not at all.

Very good. Helped correctly. Bugs were fixed quickly.

Yes, the old product was too big, inflexible and complex.

I think straightforward.

Nothing.

Yes. Oracle, SailPoint, NetIQ, and Apache Syncope.

Check and design the used data model of the product to make sure you make the correct decisions for performance and functionality.