One Identity Manager offers many valuable features. The first is automated identity life cycle management. It handles user provisioning, de-provisioning, and updates based on HR events or directory changes. This removes manual steps and ensures users have appropriate access throughout their life cycle. The second is role-based access control. Here you can define roles and access policies that map to job functions. This makes it easy to assign consistent access rights and minimize access privileges, improving both security and governance. The third is the approval workflows and delegated administration. Built-in workflows allow access requests and changes to go through automated approval paths. Managers can approve access directly, and delegated admins handle tasks within their scope without overloading IT. The fourth is the integration with multiple systems. It supports a wide range of systems: Active Directory, cloud apps, databases, enterprise applications, and more, enabling centralized control over hybrid environments.

The integration with multiple systems is what I rely on the most day-to-day. One more feature is the policy enforcement and segregation of duties. The platform can enforce security policy and prevent conflicting access combinations through SOD checks, reducing risk from inappropriate access rights. Additionally, there is flexible customization and extensibility. We can tailor workflows, forms, and business logic to our organization's needs.

View full review »

What stands out most about One Identity Manager is its strong balance between automation, governance, and deep enterprise integration. In large organizations, those three areas usually become the biggest differentiators. The feature I would probably rate highest is the identity lifecycle automation. The platform can automatically create, modify, disable, and remove accounts across connected systems based on HR business events. This dramatically reduces manual work and onboarding or offboarding delays.

Another major strength is its compliance and governance features. Features like attestations, compliance policy violation tracking, approval workflows, audit history, and access reviews are very useful in regulated environments. The governance heat maps and reporting tools help our security and audit teams to quickly identify and address access risks. The integration capability is also one of the strong parts of the platform. It supports a very broad ecosystem, including Active Directory, Azure AD, SAP, ServiceNow, Workday, Exchange, AWS, Google Workspace, and many SaaS applications. That flexibility is a big reason it is a good fit for enterprises with hybrid environments.

Some additional features that stand out are role-based access, self-service access requests, privileged access governance, workflow customization, historical identity tracking, and AI-assisted reporting in newer versions. Many engineers also appreciate how customizable the platform is compared to some competitors. Several users have mentioned that you can configure complex workflows and integrations yourself without relying heavily on vendor services. To summarize, the strongest features of One Identity Manager for me are its lifecycle automation, governance and compliance capabilities, and integration flexibility. I especially like how it automates provisioning and de-provisioning workflows while still giving us strong audit visibility and role-based governance. Its ability to integrate with Active Directory, SAP, cloud platforms, and ITSM tools makes it effective in complex enterprise environments.

View full review »

One Identity Manager's flexibility and capability to handle everything we want is its best feature. However, that can be a challenge because our business might expect us to do anything based on past experiences. Therefore, it is essential to maintain a strict policy, adhering to standards and avoiding unnecessary customizations. In general, One Identity Manager can handle everything you can expect, and we haven't found anything we couldn't do.

One Identity Manager performs well as a single platform for enterprise-level administration and governance for all types of accounts, including non-human identities, ensuring that responsible individuals can manage system access and authorizations efficiently.

Business roles greatly improve our business functionality by automating processes. For instance, specific departments automatically get new employees added to relevant email distribution lists without manual intervention. This automation saves time and enhances efficiency, and we plan to expand on this in the future.

One Identity Manager enhances visibility regarding governance on our test, dev, and production servers by making issues apparent, allowing us to define the appropriate rule sets and tasks necessary to mitigate any identified discrepancies.

We utilize business roles to map our company structure for dynamic provisioning, having established numerous roles for various entitlements in AD and Entra.

View full review »

Several features stand out in One Identity Manager, including automated user lifecycle management, which reduces repetitive work around onboarding, role changes, and offboarding. Instead of handling everything manually, many tasks can follow predefined workflows. Role-Based Access Management is also useful because it makes access assignment more structured rather than granting permission individually each time. Workflow automation and the approval process help create more controlled processes instead of relying on emails or manual tracking.

One example is during employee onboarding and internal role changes. Before workflow automation, access requests would often move through email or ticket chains. Sometimes an approval was misused or someone accidentally gave broader access than needed because they were handling multiple requests at once. With One Identity Manager, the approval workflow becomes more structured. For instance, if an employee joins the finance team, the request could automatically go to the manager and then to the application owner before access is provisioned. This reduces back-and-forth communication and makes the process more consistent. In terms of saving time, it helps reduce manual follow-ups because people no longer have to keep checking who needs to approve next. It also helps prevent mistakes such as duplicate requests or missing approvals. One practical gap observed is that automation works best when approval hierarchy or roles are maintained properly.

One Identity Manager has improved efficiency and better control over user access management. Repetitive manual work around onboarding, role changes, and offboarding becomes more streamlined, which reduces effort from the IT team and helps speed up processes. It also improves visibility because there is a more centralized way to track users and permissions across different systems. From a security and compliance perspective, having an audit trail and approval workflow makes it easier to understand who approved access and when changes were made. Another benefit is reducing the chance of human error in manual processes. It is easy for access to be missed or assigned incorrectly, especially when organizations are growing.

View full review »

What I like the most about One Identity Manager is that it's totally customizable. You can use One Identity Manager for not only Identity Governance and Administration and identity and access management, but also for other things, such as governance of Azure and app registrations, and creating custom systems for cases and giving access to specific folders.

One Identity Manager provides Identity Governance and Administration for difficult aspects of the solution, including T-codes, profiles, rules, and compliance.

I am satisfied with One Identity Manager for providing a single platform for enterprise-level administration and governance of privileged accounts and data. It has been a really complete tool.

One Identity Manager helps consolidate procurement and licensing with the Federations. When using sync projects, you can assign different licenses, and with system roles, you can create provisioning for each application and license that they need.

One Identity Manager helps streamline my application access decisions and application compliance while addressing application auditing.

This affects my operations by helping a lot and making things easier. It's beneficial to have everything in one portal so the operations team can see it, along with the reports that we can send to the customer, though there are some gaps there.

One Identity Manager helps minimize gaps in my governance coverage for my test, development, and production servers.

My experience with minimizing the gap affects my operations by allowing me to create custom rules for compliance. For example, if a person is part of this role, then they should have access to this part. As I mentioned before with the business roles, that's the base of most of everything. With governance, you can set up these custom roles and custom rules to say that this specific business role should have access to just these particular areas.

View full review »

One Identity Manager has valuable features, particularly the governance module and SAP integration. The SAP integration itself is very good.

Governance is really important because all major companies need to go through yearly audits. At audit time, you need to show whether your accesses are properly attested. Additionally, when a person leaves the company, the accounts connected to the employee must be removed. The JML processes must be properly configured if the accounts are properly connected. This is the most important and critical aspect.

One Identity Manager has multiple interfaces. The admin interface includes admin tools, which are mostly Windows applications including Manager and Designer. Version 10 and later versions can be viewed from the portal, which is a bigger change. The admin interface is excellent because it provides a very good overview of the system, connections, and everything else. There is also a customer or employee self-service portal interface. The later versions use Angular, which is also a bigger change, and I really loved the Angular portal.

Business roles are one of the critical role types in One Identity Manager. You can dynamically create a role, such as SAP Administrator, and assign all entitlements into that role. You can assign it to multiple people or manually assign it or dynamically assign it. If you do it dynamically, whenever a new employee comes in with attributes matching this business role, all these roles will be assigned automatically. This is a faster way of doing it. One Identity Manager has other role types where you can make it more flexible, but the business role is one of the critical ones.

View full review »

The most valuable feature of One Identity Manager is the customization that can be done. Every out-of-the-box process can be changed or I can create any new processes, which is the most useful functionality in my area.

The ability to customize One Identity Manager impacts our operations by allowing us to provide all business needs that our end users would request. However, it might be difficult to maintain customizations when there is a new One Identity Manager release or a new version of the tool, making it challenging to maintain the customization.

I make use of One Identity Manager's business roles to map company structures for dynamic application provisioning. I believe the business roles functionality is important to simplify the onboarding and entire JML process for users, providing simple ways to obtain the needed access and overview of what is required, including roles, business roles, and other dynamic roles.

View full review »

One Identity Manager is very responsive, and that is the first thing I like most. As soon as I submit a case, all the times for the last eight years, I get a first reply that an engineer is investigating the case, and then in maybe one hour or two hours, I receive a reply with some suggestions or even a solution.

View full review »

The best features in One Identity Manager include the new Angular portal, which is the best improvement they made by removing the old portal. This feature gives you access to customize and create endpoints, APIs, and now it makes sense because you can expose and create endpoints from your tables and other target systems can use them and add or remove from your database and trigger processes with APIs. That's a very cool feature because it makes the identity more robust, and you can integrate as many things as you want to integrate to One Identity now. It's a very good addition.

The solution provides a single platform for enterprise-level administration and governance of users, data, and privileged accounts which is quite strong. I recently started a project where we're trying to integrate the management of nonhuman identities, such as Azure Functions and various other devices. I believe One Identity is very effective for managing these types of applications because it treats everything as an identity. You can also apply and request specific business rules for these identities. Overall, I find it to be a very robust solution for managing these kinds of applications.

View full review »

The best features of One Identity Manager in my experience are automated user provisioning and de-provisioning, role-based access control (RBAC), access certification, attestation campaigns, and strong compliance reporting, all from a single centralized identity governance platform.

The biggest impact from One Identity Manager has been automated user provisioning because it removes the need for manual account creation and access setup, which makes onboarding and offboarding much faster and reduces errors in assigning permissions.

Another valuable feature is the access certification and attestation campaigns, which help us keep permissions clean because managers regularly review and approve or revoke a user's access, and it improves compliance without adding extra manual tracking work for IT.

The biggest positive impact of One Identity Manager has been improved control and visibility over user access across the organization because it automates the entire identity lifecycle from onboarding to role changes and offboarding, while also strengthening compliance through regular access reviews and audit-ready reporting. In day-to-day work, it has reduced manual provisioning effort for IT, minimized access-related errors, and made it much easier to prove compliance during audits since everything is centrally tracked and governed.

View full review »

One Identity Manager features that I have found most valuable are, first of all, that it is a trusted solution.

It is easy for us to manage our permissions across multiple accounts. This provides complete governance and secures our organization data and the users. It reduces the risks that are associated with the services.

When we provide solutions as a service, we want a manager and a console from where we can manage everything, so that it should not compromise the security. It is more governance-focused. It actually does the job of administration. It safeguards our passwords, and all those things can be done from a single console.

One Identity Manager definitely provides IGA for the difficult to manage aspects of SAP such as T-codes, profiles, and roles, if it is applicable. It definitely provides comprehensive governance. That also helps us to manage all user entities and security policies because we have multiple security policies in our company.

It automates the account creation. In terms of compliance and governance, compliance with the regulatory requirements should be there. It is suitable for an organization like us, which has a diverse user basis.

From my personal experience, it is very easy to manage from one single console. I am managing all my PAM solutions, IAM solutions, and team solutions through One Identity Manager. We are managing the active directory through this as well. It is easy for us to manage all user level access and the governance part is there. Everything we find is under a single console, which is why the name says One Identity.

It is easy for us to configure the policies and tightly control our user access throughout the employee life cycle. The experience so far has been very good.

One Identity Manager helps me minimize gaps in governance coverage among test, dev, and production servers. It is helping us to do the identity and governance. It definitely minimizes the gaps for that because it has a solution called Identity Governance and Administration. It also has that application governance module from where we are managing the PAG, privileged access governance. All these modules help us to standardize our users' identity where we have to provide privileged access and standardize user access. That helps in identify this governance with the privileges. It helps in reducing the risk as well as satisfying the compliances.

View full review »

Managing business roles and assigning them from business users is what I appreciate most about One Identity Manager. This is a simplified process that we can manage easily in the Manager tool. The primary drawback of One Identity Manager is the customization of the WebGUI.

One Identity Manager provides everything in a single place, which is beneficial. Before One Identity Manager, we used to manage every certification, onboarding, and syncing of data between platforms separately, which was difficult. Having everything in one location gives us a better understanding and allows us to maintain data more effectively. We can maintain entitlements properly, reduce duplicates and redundancy, and have better overall organization.

View full review »

One Identity Manager is a very robust tool with plenty of out-of-the-box features in the identity and access management space, and it is very easy to customize and fits for very complex platforms. 

For multinational companies or those with various locations managing their identities and applications, it is very easy and very robust in nature. 

It also helps streamline aspects of application governance, including access decisions, compliance, and auditing. 

It has a module called access recertification or attestation for recertification and a robust segregation of duties engine, as a governance platform that collects data and provides a variety of dashboards for management.

One Identity Manager provides IGA for difficult-to-manage aspects of SAP, and I can manage by assigning profiles, roles, and groups. There's also a role-in-role concept where I can assign a role to another role.

One Identity Manager delivers SAP-specialized workflows and business logic. For example, if my SAP solution is integrated with SAP GRC and I want to request a segregation of duties check with GRC before provisioning an SAP role, all those tasks can be done in One Identity Manager.

It is easy to manage and provides a single platform for enterprise-level administration and governance of users' data and privileged accounts, but one must know the product. Learning One Identity Manager takes some time, around four to five months, but once learned, managing applications such as SAP or Active Directory becomes easy.

One Identity Manager helps minimize gaps in governance coverage for test, dev, and production servers, and it provides internal deployment tools that make it straightforward to manage code across different environments.

View full review »

The best features of One Identity Manager are its strong automation capabilities, flexible role-based access management, approval workflows, and reliable integration with on-prem systems like Active Directory. Its identity lifecycle management and compliance reporting have also been very valuable for our operations.

The automation has significantly reduced manual efforts and onboarding time while also minimizing access-related errors. It has improved our security and compliance by ensuring users get the right access automatically and access is removed promptly during offboarding.

One Identity Manager has helped us standardize identity and access management across our premises environment. It improves operational efficiency, reduces dependency on manual processes, and provides better visibility and control over access and compliance activities.

Another valuable feature of One Identity Manager is flexibility in customizing workflows and access policies based on business needs. It also provides good visibility into our access, which helps during audits and compliance reviews in our on-premises environment.

One Identity Manager has improved operational efficiency, strengthened access governance, and reduced manual dependency across our on-premises environment. We have faster onboarding and offboarding, fewer access-related issues, improved compliance readiness, and better visibility into our access management process.

View full review »

One Identity Manager handles a very large amount of data, which is one of the good things about the tool. Everything is customizable and easily customizable, which is another strong point. For every configuration, a different tool is available. For example, if I need to set any configurations, I can do it in the Web Designer. I can use Object Browser for SQL-related tasks and mostly for database management.

One Identity Manager has role-based access management. For instance, if I need to work with different applications, I need a specific role. I need to request that role from the application, such as an admin role or any other role. It will be processed in the back end, and I can check everything in the Manager tool as well as Object Browser.

One Identity Manager has business rules such as internal administration, external administration, and security admin. I have seen those kinds of business roles in my project. These are utilized through birthrights. Some roles are assigned during joining itself, while a few business roles are assigned based on a request and are approved by the managers as well as the product owners based on role and demand in the project.

Business rules in One Identity Manager are administrative in nature. One Identity Manager provides users for administration roles, and roles are provided during joining and based on role and demand in the project. Different criteria are available, and based on that, business roles will be provided.

One Identity Manager minimizes gaps through the Manager application, which is part of everything including governance, audits, certifications, and attestations, all available in the same application.

Application-related information is all available in the Manager tool in One Identity Manager. For a specific application, there are different groups or different roles. Everything is audited and has attestations. Attestations occur yearly or twice yearly for compliance purposes with different applications.

As an owner, I receive attestations yearly or twice yearly. For example, if user A has a specific role, I verify whether that role should be with that user. During the request itself, it goes to the product owner at the last approval level. After approval, we have attestations, and that governance part is covered for every role based on product owner approvals.

Privileged users are different from other users in One Identity Manager. Privileged users have specific configurations and are provided with different roles to access only specific applications. Privileged users are not treated as normal users. That part is also covered in One Identity Manager. From my project point of view, I did not see that much privileged user solutions because we have other tools in place to manage privileged access management. However, based on my previous experience, I can speak to this capability.

One Identity Manager is an IGA tool with everything available in the same tool. For example, Identity Lifecycle, attestation, certifications, and role-based access management are all available in one tool. Everything can be customized based on customer requirements. Everything can be managed in the job servers as a separate process, so there is no dependency for different jobs inside the processes. Each job works as a different process. One Identity Manager has a Designer application where I can customize everything based on requirements such as jobs, different application connectors, and different tables. The web application is built in Angular, which is another feature that can be utilized for better user experience.

View full review »

The best features One Identity Manager offers for us come from the sync projects, which are our way to keep data from different sources in one single place, giving us the possibility to simplify the process and to have a clear overview over the products and data.

One Identity Manager has positively impacted our organization by adding more visibility on what we have, what we need, and what compliance features or compliance requirements we need to fulfill while allowing us to provide audit records on time and in a very useful way.

View full review »

One Identity Manager offers strong automated identity cycle management, which reduces manual effort, and it provides role-based access control and self-service access requests, making access management smooth. The compliance reporting and audit capabilities are very useful for governance, and its integration with multiple systems, both on-premises and cloud, gives complete visibility and control.

The automated identity life cycle management makes the biggest impact for our team, as it significantly reduces the manual effort in onboarding or offboarding while ensuring users always have the right access. This improves both efficiency and overall security.

One Identity Manager has improved our efficiency by automating user provisioning and reducing manual effort, and it has strengthened our security by ensuring proper access control and timely offboarding. It also made audits and compliance reports much easier and more streamlined.

View full review »

One of the best features in One Identity Manager that I really appreciate is its high customizability. When I was one of the vendors customizing the demo, it allowed me to tweak things according to our requirements, which I find not available in other IAM solutions.

The advantages of One Identity Manager include its high customizability and the existing workflows that cover a wide range of processes without having to start from scratch.

We have the SAP module in One Identity Manager. We would be using a central account to connect SAP accounts to employee identities under governance.

Being a central account for SAP is important because it helps to remove a lot of discrepancies and makes life easier, especially since SAP is integrated into almost all large-scale organizations.

One Identity Manager does deliver specialized workflows and business logic for SAP.

We do have support from One Identity, but I'm not sure about the Premier Support.

One Identity Manager definitely helps to streamline application governance aspects such as application access decisions, application compliance, and application auditing.

Streamlining application governance enables us to find gaps and manage risks associated with accounts, whether they are privileged or non-privileged, according to our policies.

One Identity Manager does help minimize those gaps in governance coverage among test, dev, and production servers.

There are different roles for the test and dev environments, making the governance aspects manageable.

One Identity Manager has helped us achieve an identity-centric zero-trust model, which aligns with one of the four IAM principles.

View full review »

The best features One Identity Manager offers are its identity lifecycle automation, role-based access control (RBAC), and access governance attestation capabilities. The lifecycle automation stands out because it tightly controls onboarding and role changes with minimal manual effort. What we value most is access certification, which makes audit and compliance much easier by keeping access rights continuously validated.

One Identity Manager has had a strong positive impact on our organization, mainly by improving security, compliance, and operational efficiency. We have seen a clear reduction in manual identity administrator tasks, which has freed up IT teams to focus on higher-value work instead of repetitive access requests. It has also improved our audit outcomes because access is consistently governed and fully traceable through certification and role-based controls.

We saw onboarding time drop from roughly one to two days to a few hours because most access provisioning is now automated through roles. Additionally, access-related help desk tickets went down approximately 30 to 40 percent, mainly due to fewer manual errors and missing permissions.

View full review »

The best feature of this solution is its flexibility to be customized. It is like a framework. You can customize it very far from its core functionality, and it will still work.

The second best thing about the product is that it is rich in concepts of orchestration and event-driven architecture. It works well if you have a development team. For a team that has developers with VB, .NET, or C# skills, it is a very good product.

Another thing that is good about this product is its stability. In general, it is very stable. It does not go down that easily. It does not crash frequently. Especially since version 7 or 8, accessibility has been a very good factor. These are the main aspects that make it one of the best products.

View full review »

The use cases for One Identity Manager include multiple aspects of identity and access management. One of the most interesting features I wanted to utilize was the user's access review, UAR module. The tool can onboard applications such as SAP, which is standard, and the APIs do not present challenges. One Identity Manager can connect SAP accounts under governance, and mapping roles offers leverage in speed and compliance. This functionality is crucial for compliance and governance.

View full review »

One Identity Manager was utilized for governance, provisioning, compliance, and audit management. Even though I had limited access to certain parts, such as IGA, it played a critical role in large-scale access management by offering impressive provisioning and deprovisioning systems. It is an intuitive product for users, as I was able to learn and deploy workflows within a timeframe of two months. The documentation it provides was crucial for the learning curve.

In terms of customization, the ecosystem One Identity Manager offers includes a variety of workflows and extensions, although this comes with high costs. It is highly configurable, allowing dynamic application provisioning through process chains involving IAM and IAG related workflows.

View full review »

The best feature of One Identity Manager is automatic sync, meaning user changes reflect automatically without needing to update multiple systems. It also has multi-system support, working with Active Directory, databases, and cloud applications. One Identity Manager is a very good solution for an enterprise network, providing consistency and accuracy with the same data across all systems and no duplicate users.

The multi-system support and consistency save time and reduce human error. There is no manual user creation on multiple systems, enabling us to onboard users faster than before.

One Identity Manager has positively impacted our organization. It has helped us manage the identity of users from a centralized console, pulling user data from Active Directory, the HR system, and other connected applications. Everything is working well in our organization and really helping our engineers and the users.

We have seen fewer access-related issues with One Identity Manager. The tickets have been reduced by 70 to 80%, and our teams are now able to focus on other things.

View full review »

The best features of One Identity Manager are mainly around governance and centralized user access.

Several features stand out to me in One Identity Manager. Onboarding and access provisioning are very convenient. Another important feature is centralized access governance, which gives a clear view of who has access to what, which is very useful for security and compliance. The access review and certification feature would also be very useful in One Identity Manager.

One Identity Manager has had a strong positive impact on my organization, especially in terms of security, efficiency, and compliance. Onboarding a new user is now automated with accounts created and access assigned instantly instead of taking hours manually. It has improved overall security, reduced manual work through automation, and made compliance and access review much easier.

View full review »

The best features One Identity Manager offers include audit trace history, provisioning to Active Directory, and web portal, as well as compliance reporting, privileged access governance, self-service access, and attestation.

I find myself using self-service access the most, as it enables our users to request entitlements and group access through a user-friendly shopping cart selection menu, enabling them to easily manage their own access needs and reducing the IT burden on IT help desks. Privileged access governance helps to unify governance by allowing our users to request, provision, and attest to both privileged and user access. This ensures proper controls and accountability for privileged accounts.

View full review »

The most valuable aspect of One Identity Manager is how customizable it is compared to alternatives, which is the most obvious and biggest differentiator for me.

I am a strong advocate for One Identity Manager because it provides a single platform for enterprise-level administration and governance of users, data, and privileged accounts. The tool is fantastic for what it does. However, in version eight and below, the UIs to perform all that functionality were terrible and even worse when customizing. The newer version nine is significantly better. I haven't had much experience with the latest version since we are still on version eight, though the UI to manage and perform governance could be better, but I know version nine has definitely improved in this regard.

One Identity Manager has helped me minimize gaps in governance covering test, dev, and production servers. We have two instances of One Identity Manager, and one instance doesn't necessarily allow us to manage test, dev, and prod all together, but separate instances of One Identity do.

View full review »

The best features of One Identity Manager are automated user provisioning, role-based access control, and workflow automation. The identity lifecycle management features stand out because they reduce manual work and help maintain consistent access policies. The reporting and compliance capabilities are also appreciated, as they make audits and access reviews much easier for the team.

One major benefit of the reporting and compliance capabilities has been during audit and compliance reviews. With One Identity Manager, access reports can be generated and user permissions tracked much more quickly compared to manual methods. For example, when auditors requested details about privileged account access, the reporting tools helped provide accurate information in less time, improved visibility, reduced manual effort, and made the compliance process more organized for the team.

One Identity Manager's flexibility for integrating with different systems and directories is also appreciated, as it helps manage identities from a centralized platform.

View full review »

As per my experience, the best features One Identity Manager offers are its centralized directory management, its administrative task delegation, and the policy-based administration. These are the very best features for us, along with the change audits.

Centralized management and administrative task delegation help my team because both have made day-to-day Active Directory operation more efficient. We are not relying on a small group of domain administrators for every request. We can safely delegate specific tasks to helpdesk or IT team while maintaining proper control and oversight. This is a very useful and powerful feature of the solution.

One Identity Manager has positively impacted my organization in many areas because it provides a very secure environment with shorter turnaround time for user requests. We are getting improved management consistency. We also have better visibility into directory operations.

The shorter turnaround time with One Identity Manager means that before implementing this solution, routine requests such as password reset or account unlock and group membership changes really escalated to a senior administrator. After implementing this solution, we are getting automations. These requests can now be completed within a few minutes. Earlier it was taking 30 to 60 minutes. Now it is completed within five to 10 minutes. We have also seen that onboarding account and modification account request process is approximately 40 to 60% faster.

View full review »

Using One Identity Manager has boosted our security in our organization. We use One Identity Manager to give access to different employees according to their seniority, and this has helped us increase security. It has reduced the chances of any kind of security vulnerabilities or attacks from hackers or any kind of vulnerability, positively impacting us in terms of security. The efficiency has also increased. Now that we do not have to look into access as much, it has increased efficiency so that we can focus on other work. Overall, One Identity Manager has improved efficiency in our organization.

In terms of incidents of security breach, it has reduced to around 60% of what it was previously, which is the significant change that we have seen after using One Identity Manager.

One Identity Manager offers excellent integration with third parties. We can integrate with Salesforce, and the customer support is also very good. We have faced some problems with the solution, but the customer support has resolved our queries in just a few minutes. The integration with third-party software like Salesforce, Azure, and Jira, as well as the customer support and the user guide that they provide, are the two main features on the positive side of One Identity Manager.

The user manual and go-to guides that they have on their website have been very helpful for us. Whenever we face some small issues, we can refer to those guides. When we have to give access to certain employees and train them on this software, these manuals also work for us and are beneficial. Customer support is a top-notch feature that has helped us in a very good way.

The standout features of One Identity Manager are the customer support and third-party integration.

View full review »

The best features of One Identity Manager include automated identity lifecycle management, access request and approval workflows, role-based access control, strong compliance and auditing capabilities, and centralized visibility across multiple systems. The platform stands out for its governance features, which help organizations manage user access securely while reducing manual administrative effort.

One Identity Manager's governance features help maintain better control over user access and compliance. Features such as access certification, policy enforcement, role-based access reviews, and detailed auditing ensure users only have the permissions they need. This improves security, supports regulatory compliance, and provides administrators with clear visibility into who has access to what across the environment.

One Identity Manager has positively impacted the organization by improving identity governance, automating access management processes, and reducing manual administrative effort. It helps streamline user provisioning and approvals, strengthen compliance capabilities, and provide better visibility and control over users across multiple systems.

After implementing One Identity Manager, there was a noticeable reduction in manual access management effort and onboarding time because many provisioning and approval tasks became automated. It also helped reduce access-related errors and improved audit readiness by providing centralized reporting and detailed access tracking across systems.

View full review »

The best features One Identity Manager offers are automated provisioning, role-based access control, identity lifecycle management, approval workflows, compliance reporting, and access governance.

I rely most on the automated provisioning and identity lifecycle management feature in One Identity Manager. It makes daily operations easier by automatically creating, updating, and disabling accounts based on user role or status changes, which saves time and reduces manual errors.

One Identity Manager has positively impacted my organization by improving efficiency through automating identity management tasks, strengthening access control, reducing manual errors, and helping improve compliance and audit readiness across the organization.

After implementing One Identity Manager, onboarding and provisioning time is reduced by around fifty percent, and manual access-related errors decrease significantly due to automation and approval workflows. It also improves audit readiness because access changes and approvals are tracked centrally.

View full review »

The best features One Identity Manager offers are identity lifecycle automation, access governance, role-based provisioning, approval workflows, and the store, auditing, and compliance reporting capabilities.

Identity lifecycle automation is the feature relied upon most in day-to-day work because it reduces a lot of manual provisioning work and keeps access changes consistent across connected systems.

One Identity Manager has positively impacted the organization by improving access governance, reducing manual identity management tasks, and helping standardize onboarding, role changes, and offboarding processes across the organization.

Since using One Identity Manager, strong outcomes have been achieved such as faster onboarding and access provisioning, and fewer access-related errors because approvals and role assignments are automated and standardized across systems.

Overall, One Identity Manager has been a solid platform for improving identity governance and automation, especially in large environments where centralized access management and compliance visibility are important.

View full review »

The best features One Identity Manager offers are its strong governance and compliance features. It provides great visibility into access control and approvals. It supports the audit requirement and also provides the identity lifecycle process, which really reduces manual efforts and improves accuracy. It also integrates well with multiple systems such as AD and enterprise applications, making it suitable for any hybrid environment of the company.

Because our organization has a hybrid environment, it really helps us to integrate all those systems from a central unified console or portal. This smooths our process and improves efficiency to enforce the security policies.

One Identity Manager has positively impacted our organization by improving the security through proper access control and approval. It has also reduced the manual workload for the IT engineers, making the operations more efficient in our environment.

It has really reduced the workload of the IT team by almost 40 to 60 percent. It provides great visibility and has great security features. The manual tasks have been reduced with the positive impact.

I can see that the workload has been reduced, and it is saving our engineers time, which allows them to handle more work in the same time.

View full review »

The best features One Identity Manager offers include central identity management where all user access is managed from a simple and unified platform, reducing complexity and providing great visibility. Strong automation based on user provisioning, onboarding, and de-boarding of employees is another valuable feature. One Identity Manager also provides an audit and compliance-ready environment with detailed logs and reports that help during audit times, which we are using for auditing purposes.

One Identity Manager has positively impacted my organization by significantly reducing the time required for audit preparation and completion. It has improved compliance by ensuring all access is properly approved and tracked. Security has increased, and we now have a compliance-ready environment with improved efficiency. The time for audit completion has been reduced by almost seventy to eighty percent.

View full review »

The best features One Identity Manager offers include identity lifecycle management, access provisioning, role-based access control, compliance reporting, and auditing across IT systems. Out of these features, I find myself relying on user lifecycle management the most because it helps automate joiner, mover, and leaver processes by provisioning, modifying, and de-provisioning user accounts across connected systems.

Regarding access provisioning and de-provisioning, it manages access request approvals and enforces access policies for applications, databases, directories, and cloud services. For privileged access governance, it governs access to high-risk or privileged accounts by enforcing approval workflows and monitoring usage.

I also appreciate the integration across IT systems where One Identity Manager integrates seamlessly with on-premises and cloud platforms such as Active Directory, Azure AD, SAP, databases, and custom applications.

When it comes to reporting and auditing, One Identity Manager provides detailed reports and dashboards for visibility into identities, access rights, and compliance status, which helps us make data-driven decisions easily.

Since we started using One Identity Manager in my organization, we have seen operational efficiency gains, including faster onboarding and de-provisioning, help desk cost reduction, and improved compliance and audit efficiency. We have also seen a reduction in security risk. The help desk cost has been reduced greatly, as automating password resets, self-service access requests, and lifecycle events cuts down on help desk tickets and support labor by fifty percent. One Identity Manager has reduced risk through strong identity governance that helps prevent over-privileged access and orphaned accounts, lowering the likelihood of data breaches. We have been able to save a lot of money—over the past four years, we have saved approximately one hundred thousand dollars.

View full review »

In my experience, the best features in One Identity Manager are under SSO (single sign-on), where we can save passwords and don't need to authenticate each time when accessing applications. This extends to the creation of privileged IDs and account creation in AD. 

View full review »

One Identity Manager includes a history database, but it lacks a proper dashboard for visibility, making it difficult during audits to determine who triggered role assignments or clarify issues.

As a practitioner, I see that One Identity Manager handles segregation of duties within the SAP module well, allowing for compliance rules and multi-step approval workflows.

One Identity Manager provides an on-premises setup, which is selling more in the market compared to One Identity Manager cloud solution.

One Identity Manager is a complete governance tool, but its pricing remains reasonable when measured against other vendors.

View full review »

The best features of One Identity Manager are user lifecycle automation, role-based access control, strong governance and compliance, powerful workflow automation, integration capabilities, high customization and flexibility, scalability, and stability. The biggest strength of One Identity Manager is its ability to combine automation, governance, and compliance in a single platform.

The implementation of One Identity Manager has had a significant positive impact on both security and operational efficiency, impacting areas such as faster user onboarding, reduced manual efforts, improved security posture, better compliance and audit readiness, centralized visibility and control, and increased operational efficiency, moving us from a manual identity manager to a fully automated, secure, and compliant system.

After implementing One Identity Manager, we achieved clear, measurable improvements in identity and access management, with user onboarding reduced from two to three days to a few hours, faster access provisioning for new employees, immediate off-boarding security, and 100% instant de-provisioning of access for leavers, while eliminating the risk of orphan or active unused accounts. One Identity Manager delivered faster provisioning, reduced manual workload, and improved security with measurable results.

Post-implementation of One Identity Manager, we observe major improvements across operational security and compliance, including identity lifecycle efficiency, access management accuracy, reduction in manual workload, security enhancements, audit and compliance readiness, visibility and control, and overall operational efficiency. These results highlight significant improvements in automation, security access, accuracy, and audit readiness while reducing manual effort and operational delays.

View full review »

The best features of One Identity Manager are the synchronization project, the mapping, onboarding using CSV, and the designer tool which allows us to write our own custom workflows. 

Once it's set up, One Identity Manager helps with provisioning and continues to work effectively. When anyone leaves the organization, they can be un-provisioned, and all access is removed instantly.

View full review »

One of the most significant advantages is its strong security around identity management when compared to other tools; it's quite robust. However, it does come with a high learning curve, making it difficult to implement and operate without a dedicated IAM team. You need people with substantial experience—likely several years—in order to navigate the complexities effectively. It's not something you can easily outsource entirely to a consultancy. In the past couple of years, they released a new version, Version 9, building on the previous version 8.02. This new version introduced a revamped portal where end users can request access. The previous version had a built-in portal that was quite complex to configure. In the new Version 9, they developed a new portal based on Angular, which offers many capabilities. If someone knows how to utilize it and learn its features, they can make API calls to interact with other systems. Some consulting firms are already developing custom frameworks around this to leverage these capabilities. 

This new portal is where end users go to request access. It provides good out-of-the-box functionalities, allowing users to request access to various applications, and managers can approve these requests. In addition to the default functionalities, the use of APIs is enabled through the portal. However, the general market lacks expertise regarding this tool; only a few companies are actively investing in understanding how it works and offering their services based on that knowledge. Many businesses are migrating to this new portal as the older versions are being phased out of support and are eager to learn how to maximize its capabilities.

Overall, One Identity Manager is a robust tool designed for large enterprises and is still an on-premise solution.

View full review »

One Identity Manager automates user provisioning and de-provisioning, enables a faster employee onboarding process, and reduces manual work for IT teams. One Identity Manager provides better visibility of who has access and what kind of access the user has.

There is a central dashboard to see all the users and their access. The IT team can easily identify who has access to which application and which user has been using which server and for how much time. One Identity Manager tracks all user login activities and access changes, helping to detect unauthorized or excessive permissions.

One Identity Manager is a significant time saver since it is an automated process and manual work is not being done. It improves security by giving users only the required access. One Identity Manager provides centralized monitoring and reporting of user activities. It is a scalable solution for larger organizations. If there are thousands of users, manually creating a domain and assigning users would be a very large process. Using One Identity Manager helps the organization do this automatically.

View full review »

The lifecycle automation feature of One Identity Manager is found to be very effective. It handles user onboarding and access assignment without any manual interruption or steps. This has really helped to improve efficiency and accuracy.

Lifecycle automation has multiple aspects that are really helping. One Identity Manager's lifecycle automation has made the biggest difference in secure and instant onboarding, which not only reduced the risk but also reduced efforts from daily operations.

One Identity Manager has provided great security with great automation features and great usability.

View full review »

The best feature offered by One Identity Manager is the excellent automation for user lifecycle management, along with strong role-based access control where access is assigned based on job role, department, and business functions.

The role-based access control feature of One Identity Manager helps my team by keeping the environment secure and ensuring standardized access across users. Instead of assigning access manually, I create roles based on departments, such as finance, IT, or HR, each with predefined access. Every user in the same role receives consistent access, independent of manual decisions, saving a significant amount of time for my IT team, with automated provisioning resulting in over a 70% reduction in provisioning efforts and faster onboarding of employees.

One Identity Manager has positively impacted my organization by saving my IT team a huge amount of time, allowing them to concentrate on other critical tasks and increasing their productivity, resulting in a notable reduction in onboarding and offboarding time. This improvement eliminates the need for manual work for the IT team and enhances my security posture.

I have seen a significant reduction in the time previously taken for onboarding users, achieving a 70 to 80% faster onboarding process compared to the previous time it required, which has had a positive impact on my organization.

View full review »

Once a user is onboarded, we can give some accesses by default using birthright roles or dynamic roles. We can also provide a way so that the user can request the roles or accesses that the user might require. We have a portal, IT Shop, everything set up, and we can create workflows, access approval workflows, and all so that the user can request the required access, and if the proper workflow has been completed, the access will be provided. These all things can be customized as per the customer requirements.

Using One Identity Manager, we can connect with various target systems like ServiceNow, SuccessFactors, Workday, whatever, however. To One Identity Manager, we can onboard data, and we can also send the data to various target systems, whatever the customer might need. It provides various connectors such as DB connector, native SQL connector, Oracle connector, SAP connector, Exchange connector, Active Directory connector, PowerShell connector. There are so many ways we can connect to other systems so that we can send data to other systems and sync back from those systems, making this One Identity Manager system a centralized system that controls everything. One Identity Manager can act as a source of truth for various systems, which is one way for the companies to centralize their IM system.

In my opinion, the best features One Identity Manager offers are customization. We can customize many things as per our requirements, not just use the default options, out-of-the-box options. We can connect to any target system using the PowerShell connector, which is the best way. We also have API connectors and other things as well. From the latest versions, they are moving from the native portal to the Angular portal, which will speed up the portal development process and make the portal more attractive and dynamic. It also has other supportive portals like Operations Portal, Admin Portal, and Password Reset Portal for various services and all.

Most customers choose One Identity Manager because of the customization it provides, not just for me or my customers. We have one feature called attestation, which helps review user access periodically and frequently and ensures the audit players and audit processes work properly within the organization.

One Identity Manager positively impacts my organization and my clients by automating user access reviews, which often won't happen properly. With One Identity Manager, we can schedule those access review processes and automate them so that they automatically trigger and send access review emails to the user's managers, ensuring they take action on the access side, whether the user should have that access or not. For most customers, their access management system becomes smoother using One Identity Manager.

The specific outcomes my clients have seen include saving time and reducing manual work. Without a centralized IM system like One Identity Manager, onboarding tasks must be done manually, leading to human errors. If a user makes a mistake manually, it could lead to another incident, causing bottleneck issues in operations. Using a centralized system like One Identity Manager really eases the onboarding and offboarding processes for any organization, making identity access management smoother.

View full review »

What I like the most is the flexibility or configurability. It is not like you are writing huge lines of code. It allows us to handle our very complex enterprise use cases, and we have many of those. We have a lot of scenarios where we need to do things internationally or slightly differently per country, or need to comply with specific regulations. It gives us a lot of flexibility to meet all those needs while also being able to accommodate our enterprise processes. It allows us to shift the tool to work for us instead of needing to change the organization to follow a piece of technology.

View full review »

The best features of One Identity Manager include that it helps significantly with compliance reviews since managers can regularly certify user access without IT manually tracking permissions in spreadsheets.

The compliance review feature definitely saves time and reduces errors compared to my previous process; before this, access reviews were mostly manual and spreadsheet-driven, so automating certifications reduced a lot of manual error and saved managers a ton of time during audits.

One Identity Manager has positively impacted my organization by improving access governance significantly; onboarding is faster, offboarding is more reliable, and audit preparation takes less manual effort than before.

Onboarding that used to take several hours across multiple systems is mostly automated now, and audit review probably takes fifty to sixty percent less effort compared to our old process.

View full review »

The best features One Identity Manager offers are identity lifecycle automation, access governance, role-based provisioning, approval workflows, and risk monitoring and compliance reporting capabilities.

The automation feature is relied upon most because onboarding and access provisioning are much faster now. There have been fewer access-related errors because approvals and role assignments are automated and standardized across systems. One Identity Manager has improved access governance, reduced manual identity management tasks, and helped standardize onboarding, role changes, and offboarding processes across the organization.

One Identity Manager has positively impacted the organization through access governance, reduced manual identity management tasks, standardized onboarding and role changes, and offboarding processes across the organization.

View full review »

The best features One Identity Manager offers include automated user lifecycle management, role-based access control, centralized identity management, strong audit and compliance support, integration with multiple systems, and AI-driven security and risk insight.

View full review »

One Identity Manager offers strong access control, support for automation with good audit visibility, and performance that functions well within our enterprise environment.

Automation has significantly reduced our manual tasks. This automation substantially lowers human errors, allowing us to save considerable time.

One Identity Manager has positively impacted our organization by improving security since users receive only the access they need while also providing proper access controls. It increases efficiency by automating user onboarding and offboarding, saving our resources' time while reducing human errors and speeding up the employee onboarding process.

View full review »

The best feature of One Identity Manager is the access request and approval functionality, which allows users to request access to a service portal, and the request goes to the proper approver before access is granted, ensuring control and secure access management while also providing a solution that streamlines and assists with audits.

What I find most valuable about the access request and approval features is that they make the environment more secure.

Another standout feature of One Identity Manager is centralized management, which allows all users and access to be managed from a central, unified platform that supports multiple systems such as Active Directory and cloud applications, simplifying identity management.

View full review »

What I find valuable about One Identity Manager is that in the Object Browser, we can see everything, which is a good feature. We can also do and change the data in one place, so that is beneficial; we don't need to query each time.

I find it beneficial because we don't need to open the database, so it's good.

The business rules functionality is important to me because for each individual, we don't need to assign the role. If we assign a particular functionality to the role, it will be assigned to the employee using that business role, meaning we don't need to assign specific things for each employee; it will be done through the business role, which is a good feature.

The main benefits I've seen from using One Identity Manager are that it's very easy to use. I check with other teams, and they are using different tools such as SailPoint and Okta, which are very difficult to learn and manage identities with. With One Identity Manager, the UI is very good; it's easy to learn and understand if we have knowledge about .NET and SQL, or the OOPS concept, making it easy to grasp the tool.

View full review »

My favorite feature is the visualization. When you open an identity, you can see what is linked to it, such as rules or departments. I really appreciate how you can see things that are connected rather than just viewing them in a list from a database. This is my most favorite feature of the overall One Identity Manager system.

This visualization exists in the backend, and it is also in the frontend, though it is somewhat lacking on our side due to our different setup. However, overall I appreciate all of these features for seeing connected information.

View full review »

The best features One Identity Manager offers are its role-based access control, the compliance reporting, and automated provisioning.

One Identity Manager has positively impacted my organization because it has really improved control over the privileged access, and we are getting good visibility into user permissions, and the audit and compliance readiness has been really improved.

The improvement in audit and compliance readiness with One Identity Manager has resulted in time saved, faster audit readiness, and fewer unauthorized access issues, and it has reduced access request process time by 70 to 80%.

View full review »

The best feature that One Identity Manager offers is certificate-based identity management. Certificate-based identity management adds value to my work at Sodexo because recertification makes it possible to automate the lifecycle of accounts in Active Directory; if they are not renewed, the accounts are automatically deleted.

View full review »

The best features in One Identity Manager, which I appreciate the most, are the ability to extend it and the capability for customization and integrating new target systems. 

View full review »

One Identity Manager offers customization with separate tools that have positively impacted my organization.

One Identity Manager has been particularly helpful during audits when auditors request logs showing how a user gained access or their current access status, whether through a business role from the front end or through a dynamic role running hourly or per configurations. Provisioning to different target systems is streamlined, making it easy to store the logs, which is the most important aspect for us.

The Job Queue manages jobs triggered from One Identity Manager, and the Sync Editor manages different target system synchronizations. These are the two major tools I use regularly.

View full review »

I like the workflow engine and the deep integration with SAP products, including SAP authorizations. In the market, there aren't many products that can deliver this feature. The possibility of customizations is a significant aspect that makes this product stand out from others. 

Additionally, the number of connectors they support is commendable. Reducing the number of authorizations given to people on average is beneficial. Previously, individuals had accumulated authorizations as they moved between departments over their careers. 

Now, there's an attestation process when a person moves to a new department, allowing managers to decide on reassigning authorizations. This has led to fewer authorizations being assigned, which is one of its most important benefits. Moreover, the time taken from an authorization request to an assignment has also been accelerated.

One Identity Manager connects SAP accounts to employee identities under governance. We have an HCM connector, and we have built up the complete life cycle of an identity. TThis means when a person leaves the company or has a transition to another department, we also have processes implemented that we take care that they lose the authorization.

The solution provides IGA for difficult-to-manage aspects of SAP, like profiles, rules, etc. We use transaction codes and activities, and so on, on the lowest sub-authorization level for segregation and security checks. We assign roles, composite roles and single roles.

In terms of user experience and intuitiveness, there is always an issue from one product to another. In the beginning, the users may find it a bit complicated. However, they get new functions and a fancier UI. Overal, it provides a good impression.

It's easy to customize. The product has a huge number of possibilities or ways you could go. That said, you need good knowledge of the product. It's complex. This product needs a deep understanding of how the product works and how the implementation needs to be done. You need an external partner with good experience.

We make use of the product's business roles. We try to catch 80% of the authorizations so only 20% of authorization would need to be requested. 

We have connected cloud applications, including SAP cloud systems. These extensions to governance are very important. They need to be integrated. Our aim is to integrate every system where management takes place under one solution. 

One Identity Manager helps minimize gaps in governance coverage among test, dev, and production servers. Now, we can identify when users have no need anymore to have certain authorizations on a special system or special groups. Our user life cycle takes care of this. When they are not in the department anymore, they won't have access. It makes access to special systems more secure. 

It does help with licensing. If two licenses are similar, we can look at the settings and make sure that users are getting more licenses than we need, and when they leave, the license can be removed. It helps save license costs. 

The solution helps with application auditing and compliance as well as access decisions. 

We've been able to achieve an identity-centric zero-trust model. We have other applications around this, however, we are able to give authorizations only to one person and so that no one has more than they need to avoid security risks. People only get authorizations to that which is a user's core functions. 

We have more complex approval processes for normal authorizations. 

View full review »

The feature that provides the most value to me in One Identity Manager is the customization that can be made within it. It is a very customizable tool. One Identity Manager is very well prepared for any possibility of the clients and it is a comprehensive tool where you can make everything.

There is a specific part in One Identity Manager for clients so they do not see the entire solution. This helps clients who do not have all the knowledge to use the platform. That part is very user friendly.

You can extract the information that you need from One Identity Manager. Usually the clients do not have any issues with this part.

View full review »

One Identity Manager's best features include fast setup with the ability to be configured locally for direct database access. The solution provides specific procedures for onboarding and offboarding, and supports the use of custom connectors.

One Identity Manager has positively impacted the organization by reducing account creation and access approval times from days or weeks to minutes or hours through automated workflows. Self-service access requests are routed through a central portal with defined approval paths, which minimized manual work and accelerated onboarding. Governance functions such as attestations and access reviews are now enforced consistently, which was not the case previously.

View full review »

It is very comprehensive. There are a lot of features in the product. The strong points are that you can model your organization in One Identity Manager and create roles. There is a Webshop where end users can order permissions and accounts. These are its strong points.

View full review »

From an end-user perspective, it is very easy to use. There is no need to follow extensive documentation; you just need to go through the process while raising a request. From a developer's point of view, self-practice is essential to grasp the necessary tasks, as initial use might be confusing. The first time, you have to use the documentation. Once you are familiar with concepts, it gets easy.

View full review »

I think SOD is a good offering among the best features One Identity Manager offers. Scalability is good, and it can handle hundreds or thousands of identities across the globe, which is the best aspect I have found.

One Identity Manager has positively impacted my organization with a centralized dashboard and centralized rules for all branches and all departments. It helps to improve the time requirement for processes and also the visibility.

View full review »

One Identity Manager's strong automation is the best feature, as it has reduced manual effort during user onboarding and access management. The unified centralized governance is very useful, allowing us to manage all user access and systems from one platform. One Identity Manager has reduced human error during onboarding and has saved significant time.

View full review »

One of the best features of One Identity Manager is its high level of customization. Since deployment, the solution has been tailored extensively to fit our specific needs. Its out-of-the-box capabilities are commendable, allowing for evolution and integration within an on-premise environment. For us, being able to customize the product to our requirements has been incredibly valuable, turning it almost into an in-house solution. View full review »

My favorite feature is the ease of customization. You can change, optimize, and update it at your convenience. I haven't seen that in many other products available.

We use One Identity Manager to connect to SAP IDM. SAPconnect target systems are integrated into One Identity Manager, and we've made several SAP connections we have made with One Identity Manager. The solution connects with Snow, which you can use to manage your disconnected systems. 

Most clients I have worked with prefer a custom approach. So some prefer Snow, some prefer some other IDM tool with which they want to manage their disconnected systems. So, yeah, you can say yes and no, to be honest. Like, yes, there is a functionality that has been provided, but it's not very matured enough. So that's why I believe clients tend to be a little customized on that front.

One Identity Manager connects SAP accounts to employee identities under governance. That's completely autonomous. Once the target system connection is made, the product is available in the IT shop web frontend. You can order it from there. One Identity Manager handles it by itself. You can customize, but usually the vendor has created an out-of-the-box functionality to do all these operations.

The solution provides IGA for the aspects of SAP that are more difficult to manage. With One Identity Manager, the good thing is that you can customize. In most of the clients I have worked with, the T codes or different custom SAP tables were later introduced in a greenfield project, you don't see these custom tables more often. Out of the box, the SAP connector gives you around 32 to 36 tables in the SAP target system that are more generic tables, but there are custom tables about the T roles or the special attributes. You can customize your connector accordingly, so there is an XML parser provided in the sync editor. You can use it to achieve all those operations.

I'm unfamiliar with SAP-related workflows because clients don't have any specific SAP workflow. They have their own workflows, and One Identity Manager is configured for various product approvals. That's how they are managed. If you want to create a customized workflow, whether it's SAP HANA or any other product-specific workload, you can easily create it.

One Identity Manager provides a connection with Snow, where you can manage your disconnected systems. Most of the clients I have worked with prefer a custom approach. Some prefer Snow or another IDM tool to manage their disconnected systems. There is functionality that has been provided, but it's not mature enough. I believe clients tend to be a little customized on that front.

It connects SAP accounts to employee identities under governance. It's completely autonomous. Once the target system connection is made, the product is available in the IT shop web front end. You can order it from there and everything. One Identity Manager handles it by itself, so you don't need to customize it, but the vendor is given an out-of-the-box functionality to do all those operations.

One Identity offers a single platform for enterprise-level administration and governance of users' data on privileged accounts. The good thing is that much of the functionality comes out of the box. You don't need to customize if you don't want. In a greenfield project, this tool is optimal for those purposes. If the user number is around 1 million or under that data scale, it's a good tool to run on from the IGA perspective. With One Identity, they don't want to focus on IGA. They want to expand the horizon of cybersecurity. There are native tools like Safeguard and others. You can even integrate your PAM accordingly with your IGA and IAM.

There are two types of interfaces in One Identity. One is the phased-out interface, which was known as a web designer. This is getting phased out with Angular now. Angular was one of the lagging points where the user interface was not up to the mark with the out-of-the-box functionalities. Many customers had to customize heavily to get a level of intuitiveness. Now, Angular's web portal has been notched up. You get AI suggestions, IntelliSense, and lots of fraud detection out of the box, like threat level. It's been improved in the recent version, and it's been working phenomenally well.

Business roles are used extensively, and custom implementations are done over business roles. The number of cloud apps I would be telling is a little less because their Starlink connector still hasn't matured enough. It's still not a high-performance tool, but it has the capability to do so.

Nowadays, every organization has almost at least a few apps in the cloud. It's important even if the organization is heavily based on on-premises infrastructure. With this tool, you get so many things that work with this cloud infrastructure, it doesn't let you down completely. When you compare the performance of this with a native PowerShell connector or SAP connector, for example, you feel that the performance could be enhanced a little bit. It's something that is becoming mature in the latest versions. I'm confident they will improve it further in the upcoming versions.

View full review »

Having worked with SailPoint and other identity management tools, I've found One Identity Manager to be quite handy, especially after seven years of experience with it. The framework is robust and flexible, allowing companies to easily adopt and extend the schema as needed. Unlike other tools I've used, One Identity Manager offers a high degree of customization. Even if the out-of-the-box templates or processes don't meet our company's specific requirements, we can readily adapt them, modify them, and build our own processes and templates.

View full review »

The best features One Identity Manager offers are faster employee onboarding, easier compliance reporting, and better control over user permissions.

The compliance reporting feature of One Identity Manager is really helpful for our team. It maintains better visibility and control over user access. Instead of manually collecting access details from different systems, we can generate a centralized report and showcase it to management, which is very useful.

We have seen very positive outcomes from One Identity Manager with visible outcomes including faster user onboarding and better control and visibility.

Earlier, it was taking almost two to three hours to onboard one user. Now it can be completed within ten minutes, which represents almost a 90% time saving.

View full review »

I believe the sync project is a great feature that allows us to preview everything before it gets stored in our database. There is also a feature that helped one of my teammates significantly, which was the limited process that could be triggered for job queue.

We use the sync project every day. The job queue is valuable when anything needs to run a process that would execute without a workflow closure or would run against a huge number of rows, which was very useful in some cases. For customers in the Middle East, they are requesting to have the portal in Arabic. One Identity Manager does not support Arabic yet in the web portal. In some cases, we have had to add the localization files ourselves and edit the entire Angular web views, which is a real challenge. The last version 10 does not support Arabic language for the web portal, and I think that would be very useful for the tool if it could be supported.

One Identity Manager impacts my organization positively. We use it for most of our customers that we configure the tool and install it for.

View full review »

One of the most valuable features is the ability for business people to input their knowledge about business processes directly into the product. It's a good tool for anyone familiar with business or technical administration. The shopping cart capability for requests and the catalog features were also initially valuable.

It's the best product for providing an enterprise view of logically disconnected SAP accounts. Sometimes, it's doing better than the SAP IG, which probably got discontinued or will be. One Identity Manager helps us connect SAP accounts to employee identities under governance. It is critical because there's no such thing as just SAP, and you want to centralize. You have Active Directory, SAP, and all the cloud applications. Every product has its user accounts, and One Identity allows you to connect them all in one place.

One Identity Manager provides IGA for the more difficult-to-manage aspects of SAP. It lets you do many different things and go as deep as you want. The solution has a whole library of specialized SAP workflows for provisioning. 

You can build a customized web interface that you can do whatever you want with. The out-of-the-box interface for administrators or anybody else can take a little time to understand. It depends on the user's maturity. You must understand what's happening before touching the product. If you have experience using Identity Manager or similar tools, it's highly intuitive. It has so many features that it takes time to adopt, but that's not because it's difficult. 

The business roles are fundamental to role-based access controls. If you don't know how to build roles, it's very hard to do. One of the advantages of this particular product is that you don't have to be a technical person to build the role. You can log in as a business owner with a newly created project and add entitlements, users, or criteria. You can do it manually or using a formula. It's easy to do without any code. 

View full review »

The best features One Identity Manager offers include role-based access control and access governance, strong integration with Active Directory, cloud, and enterprise applications, self-service access requests and approval workflows, risk analysis, and policy-based access control.

The self-service access request and approval workflows help my team day-to-day by identifying unusual user behavior through the identity threat detection feature, which reduces manual effort, improves monitoring, and helps maintain better security and compliance across the environment.

The AI-assisted reporting and identity threat detection feature in One Identity Manager helps simplify daily security and compliance tasks, and I wish there were more advanced features available.

View full review »

From my point of view, the best features that One Identity Manager offers are its synchronization in the web portal. I find the standard connectors particularly helpful in the synchronization in the web portal.

One Identity Manager has positively impacted my company by minimizing manual effort. The minimization of manual effort has specifically affected my team by providing time savings, efficiency, and data integrity.

Since it is company-wide, an estimate of how much time my team saves with One Identity Manager is rather difficult, but it definitely has a very large impact.

View full review »

One Identity Manager stands out because it offers a wide range of features without requiring complex installation or ongoing maintenance. While many identity governance products necessitate external integration specialists, One Identity Manager's user-friendly interface allows internal staff with some IAM knowledge to manage it effectively after hands-on training. This is particularly beneficial because the product's pre-built lifecycle features, the core functionality of any identity governance tool, are comprehensive enough to address the needs of most companies, including larger organizations, without extensive customization.

View full review »

The best features that One Identity Manager offers include relatively no limitations when it comes to connecting, and if there is ever no API interface, you can create one yourself and write it in.

By using my own solutions such as scripts or email integrations, I can give an example of how I use this flexibility in everyday work. Currently, for an application called Fluency Direct, a custom PowerShell script was created for the automatic creation and setup of users and assignment of groups within Fluency Direct.

One Identity Manager has positively impacted my company through cost reduction and less effort in the individual departments for the technicians who used to manually create users in Active Directory, which now all happens automatically.

View full review »

I like the solution since it is very flexible, and I can basically do everything that I like and need with it. 

I appreciate its automation capabilities a lot. Through automation, we have been able to reduce the number of service requests and tickets to our vendor. We have also managed to reduce the cost quite drastically in that sense. 

Additionally, by automating the access reviews, we have saved considerable time for our business leaders, even talking about several full-time equivalent savings concerning access review automation.

It works well at an enterprise level. We use it as a centralized platform for the whole identity.

It is a flexible system and we can customize it the way we want.

We use the business roles to map company structure for dynamic application provisioning. This is a very important aspect of the solution. 

We use the solution to extend governance to cloud apps and this is very useful for us.

Through automation, we have been able to reduce the number of service requests and service tickets towards our vendor, and we have been able to reduce the cost quite drastically. By automating access reviews, we've been able to save quite a lot of time - up to several FTEs. When we launched the system, we had quite a wide scope and saw results immediately. 

The solution helps us achieve an identity-centric zero-trust model. As you are getting your identity only through a centralized system and also getting all the accesses attached to that identity and all the accounts attached to that identity through one system, then it is possible. We also handle access to any system through that one solution. When we do that, we have a full picture of the identities and what kind of accounts and entitlements they have. Having the full picture and having the governance of the whole entity when it comes to access management allows security to be tight. Also, the controls that we have in place then, for example, joiner, mover, leaver, that helps in maintaining that zero trust principle.

View full review »

One Identity Manager offers identity-centric security, acting as a single source of truth by centralizing identity data for users, devices, and applications. It supports role-based access control and automatically assigns and reworks roles to minimize privileges. 

The solution integrates multi-factor authentication, enforcing stronger measures and requiring identity verification for accessing critical resources. It continuously monitors user behavior in real-time, triggering automated responses, and manages secure access for both on-premises and cloud applications using protocols such as SAML.

Additionally, it facilitates RBAC, provisioning and de-provisioning, certification campaigns, onboarding various applications, audits, and reporting with segregation of duties.

View full review »

One Identity has the biggest out-of-the-box functionality set. I've worked with other platforms like SAP that have a lot of features, but One Identity Manager is on top. 

One Identity provides an enterprise view of the more logically disconnected SAP accounts. It has the strongest SAP connector on the market and it can fully replace SAP centralized administration. It connects SAP accounts to employee identities under governance. One Identity is the only solution that offers IGA for the harder-to-manage aspects of SAP on a deep level. 

It has out-of-the-box SAP workflows and allows you to customize workflows, but you need an SAP specialist to handle these customizations. One Identity provides a comprehensive perspective for governing identity and access processes, reports, compliance stuff, etc. 

One of the biggest challenges organizations have is setting up borders with other processes and enterprise applications like ServiceNow. You could handle these processes, but it would make no sense. A typical example for better understanding is the joiner-mover-lever process of an employee and the topic of hardware where an employee gets their notebook, mobile phone, etc. These are something you would not challenge in a solution like One Identity. 

It can be easy to customize depending on the integrator's expertise. It has many out-of-the-box functionalities, but it also provides full flexibility to customize it. You can do it the right way or the wrong way, and this depends strongly on the integrator's knowledge and expertise. You can build on out-of-the-box elements or code everything from scratch, but this is not recommended.

One Identity's business roles are one of the most critical features. They enable you to reflect the entire entitlement structure up to the manager abstraction layer. For example, you can form a role for marketing and assign access to everything people in the marketing department need to do their work, including all the entitlements on the Active Directory and Azure levels. 

You can also assign a role to the IT shop, so people can request roles through the UI that are automatically assigned by the marketing team. Without these role functionalities, people would need to know the exact entitlement they need to have for the work, or someone from the service desk needs to know which entitlements are required. 

That adds additional pitfalls when you are not using roles properly. People can choose the path with fewer obstacles. They can find the people in the marketing department and copy-paste the entitlement, which might be a way but not the correct way when it comes to audits and revisions.

We have started extending governance to cloud applications in the past two or three years. It has challenges because it strongly depends on the cloud applications and especially on the API end endpoint. The connection is done technically on the API level, so you are strongly dependent on the restrictions of the API.

View full review »

The SAP integration is One Identity Manager's most valuable feature. It offers a strong, out-of-the-box integration that is easy to implement, a significant advantage over many other products that often lack this integration component.

View full review »

I like the provisioning feature of One Identity Manager. It is very powerful and flexible. It works at a very high level, but it can also be tailored as per needs. They have something called Sync Editor. I personally like that one because I have a developer background. Currently, I have more responsibility within the company for this feature. I am one of the six subject matter experts (SMEs). My area is the reconciliation part. 

Compliance with BaFin requirements is very important for us. If we do not fulfill them, our license can be retracted. If we do not fulfill these requirements, it is not good for the company. We use the identity life cycle. We use provisioning extensively. We use attestations, recertifications, and SODs. We need all these equally to fulfill the BaFin requirements.

View full review »

It is highly customizable, a feature that influenced our company's decision. We can easily customize it.

I find it user-friendly. Once you have some experience, it demonstrates best practices and guides you on the correct way to use the tool. 

View full review »

In One Identity Manager, I appreciate the Synchronization Editor for onboarding different target system applications. We have various connectors that allow customization. For instance, the Windows PowerShell connectors can connect to different services such as RESTful services, SOAP services, and Windows services. I like how data flows from the target system applications to One Identity. We explore technical aspects, write functions in PowerShell, and connect with APIs. 

Another interesting feature is attestation, where we review and re-attest existing employees' rights. We create attestation policies, workflows, and schedules.

View full review »

One Identity Manager is a comprehensive identity management system that encompasses employee identity lifecycle management, certification, and segregation of duties. It ensures high security through multiple approval processes, preventing unauthorized access and enhancing compliance by providing time-based access for privileged accounts with proper audit trails. Additionally, it streamlines application access decisions and extends governance to cloud applications.

View full review »

Since I am placed in the business organization, I see smooth processes for joiner, mover, and leaver, and a compliance perspective. We are getting cost savings by automating system integrations. Previously, people handled access rights manually for each system. Now, after integrating about half of our systems, we are saving approximately three FTEs, and expect it to double. Line managers can see team members' access rights and do attestations in one view. We have integrated requesting of access rights also to external systems via the web portal to remind leaders about access rights management also for leavers and movers. Automation of these processes improves security and compliance by meeting auditor requirements.

View full review »

It's difficult to identify the tool's core value because, initially, it seems to do nothing out of the box. Essentially, it's a framework that requires customization to align with specific processes. Nevertheless, its greatest strength lies in its ability to serve as a foundation for identity and access management processes. Standard functions like initiating workflows or requesting approvals are essential but expected. The tool's true advantage is its flexibility; it provides building blocks that can be easily assembled to create custom processes, much like constructing something with Lego bricks.

View full review »

One Identity Manager provides a wide range of features that enable connection to numerous target systems. It also includes built-in capabilities to automate user onboarding and offboarding processes.

One Identity Manager offers numerous features, including role management. We can create custom bot-specific roles, integrate with external systems, and grant users access upon onboarding within our system. The tool's automation capabilities are particularly valuable. They allow us to schedule tasks for execution at specific times, eliminating the need for manual intervention.

View full review »

One Identity is one of the most feature-rich platforms on the market. It covers every use case. The user interface has been improved, making it easier to make it look like what customers want. It's easier to customize than a lot of competition solutions. There are nearly a thousand built-in processes that you can edit and customize according to your needs. 

The solution has a graphical synchronization engine program to generate synchronization and provisioning for you. If those aren't enough, you can create your own, which we often do. Our developers can handle that kind of integration quickly. If we have the definitions ready, it usually takes only a day or two.

The ability to extend governance to cloud applications is critical. The Microsoft 365 integrations are particularly important. All the cloud applications are crucial, especially in the Nordic countries, where we have a lot of SaaS applications.

View full review »

The One Identity Manager's user-friendly interface allows for easy external identities and user account creation. To request a new account, we can just navigate to the appropriate section and provide the necessary information. Existing identities can also be managed through this platform by requesting entitlements. This streamlined process eliminates manual intervention and ensures efficient account management.

View full review »

The designer tool is one of the most powerful features because you can manage permissions and permission groups in it. The designer is a tool for adding and removing permission. The manager lets you create IT Shop objects and determine which type of user can access an object.

One Identity is versatile and complex. There are no limits to what you can do with this tool. It integrates well with Active Directory and has a powerful API integration. They also introduced the new Angular platform to replace the old web portal, which was too complex. Angular is a simplified web UI for users to do whatever they want to do.

We can leverage JavaScript and the Angular framework to build interactive UIs with the new Angular portal. Also, the new API server makes a lot of sense because using Angular is the front end, and the API server is on the back end. You can do anything you want. It's limitless at this point.

We use One Identity to manage SAP and logically disconnected SAP accounts. From an architectural point of view, you can create request staging tables to sync to the SAP through API calls to the SAP module. You can link the data source to the One Identity staging table to ensure all data goes into the One Identity testing table. You ensure all the necessary fields are there and create a staging table where you would load all the information from SAP. 

You can sync into the One Identity object. From there, you can do whatever you want to do. You can create Active Directory groups and add permissions. SAP is also robust. For example, let's say you have a department's table in SAP. You can also get the department information from the SAP and tie it to the object depending on how you want to sync and structure your project. My approach would be to create a staging table and make an API call to SAP, filling up and syncing the table to the SAP objects in One Identity, adding all the necessary permissions from SAP to the same user, and creating the AD groups if that's also part of the plan. 

There are many approaches to connecting One Identity Manager to SAP accounts under governance. There is no written-in-stone way to do this. The cleanest approach would be using a staging table where you can add all the permissions. A staging table contains the user information and the groups the user belongs to. All of that information will be in any staging table you want. From that table, you write information into the object. 

It helps manage some of the more difficult aspects of SAP. If you have a staging table with all the information from SAP stored there, you have all the rules, Active Directory group names, and permissions. You have all the information. You can use that information to create an identity in One Identity. If you have an SAP account, you must create that SAP identity in One Identity. You can tag and call it SAP and import the source. You can add a SAP tag to it to show that this is an SAP account. 

Before Angular was introduced, the user experience was bad. To do a small custom change in the web UI, you had to do a lot of configuration on the back end. The new Angular portal solved that problem. I don't have any complaints now. The user interface is perfect, making the experience good for the users. Loading objects, caching, and handling errors are way faster with Angular.  

One Identity's business roles help us with provisioning. The whole idea of business roles is to provision based on the user's role. You create business roles for a department with a manager, assistant manager, technician, etc., so you can create custom business roles for all these positions in the same department. Each has permission to do certain things because of their business role. Business roles assign resources and permission groups based on role. It's critical because it limits access based on those roles. We can use business roles to extend governance to cloud apps. 

View full review »

It has a full feature set with certain tools for certain things.

I use the Designer a lot because I do a lot of customization (processes, scripts etc) and I would say it is pretty comprehensive. I am a Microsoft Identity Manager (MIM) veteran, which is an old product that still has end-of-life support. One Identity Manager is the next generation of IGA platforms because almost everything can be customized and extended and still keep a solid metacatalogue. I can test and evaluate the data, even at a property level, and be sure that it is going to work before pushing my changes into production.

The next one would be the Manager because that is where we review the data and orchestrate things like approval workflows and attestations. We can use different models for entitlements such as system roles and business roles. Then we can assign these to an IT shop for the end user.

Then, of course, none of these tools would be useful if we do not have any data coming from a target system such as HR. Here we use the powerful Synchronization Editor that comes with a lot of OOTB-connectors, also called sync projects. Within a sync project, mapping and workflow is set up to synchronize the data and provision changes to, for instance, an Active Directory target system. It is also possible to develop custom connectors.

We are also using the Job Queue which is a tool that displays ongoing processes (Jobs) and possible errors. We can look at history jobs and also get a health check of our Job Servers and Web Servers.

I also use the Object Browser which is an abstraction of the SQL tables. This tool is more technical than Manager but powerful in its own way with possibilities to trigger events, filter data and even more.

Finally, the Database Transporter that is used to transfer objects or custom changes between One Identity Manager databases. These changes are mostly something called "change labels" that could be work I have done in the Designer, objects created in the Manager or other information I want push to a specific environment using a transport package.

View full review »

One Identity's user interface is excellent. It has a timeline view that shows when a user received access and when access was removed. This provides a solid overview of all the users' activities since they were onboarded. 

Another visualization tool not in the main UI shows the identity in the center and links to the target applications. You can drill down and see the details for those target systems. That is very helpful for us to look up something related to a user quickly. 

We use One Identity to manage SAP. We did a lot of customization, integrating the GSA components of SAP. We brought in all those rules, and it wasn't straightforward, but One Identity has some additional support and capabilities for SAP that helped us a bit. We brought all those GSA-related activities in through process changes and some customization. 

One Identity is good at automated user provisioning and de-provisioning. The system processes things quickly. We had an issue where we mistakenly disabled nearly 4,000 Active Directory accounts due to a developer error. We had to get those accounts back up again and were pushing the records to AD to make the changes. It was running a bit slowly, but we have a cloud setup, so we bumped the resources, and it handled that load quickly.

The compliance reports are good, and custom reports can be easily generated. One Identity provides separate built-in user roles for auditors, compliance officers, and others. The SOC exemption process and associated reporting are excellent. 

It's critical that One Identity extends identity governance to cloud apps because most organizations are hybrid. The cloud is maturing and becoming more affordable. More organizations are shifting from legacy Oracle EBS systems to Microsoft 365 or Salesforce. All these vendors have also picked up cloud offerings and offer them as a managed service or complete service, where we don't have to worry about anything.

View full review »

One Identity Manager stands out for its extensive functionality. It allows us to perform nearly any customization a customer might require, unlike other products with limited customization options. One Identity Manager's wide scope for tailoring configurations makes it a versatile tool. It can connect to various target systems, including Active Directory and schema-based systems like REST APIs. This makes One Identity Manager a great fit for our organization's end-to-end needs, from user provisioning and auditing to onboarding new joiners. It seamlessly fits all our requirements.

View full review »

One Identity Manager's governance and approval workflow capabilities are the most valuable features, as they help keep access under control and properly documented. This is very useful for audits and security.

The governance and approval workflows in One Identity Manager ensure consistency and security for systems or applications accessed by employees. Employees access applications in a controlled way so that no security breach occurs.

One Identity Manager has had a positive impact because the automation has significantly reduced repetitive work for the IT team. The consistency across all access management, reliability, and the full workflow with logs for audit purposes help us see who has access and why they have access to particular applications. Approvals and access history can be tracked when needed. This is very helpful during audits and investigations.

Since adopting One Identity Manager, manual efforts for the IT team have been significantly reduced, saving time. The IT team is able to handle more workload than previously, and this has provided more opportunities and additional work for particular IT teams.

View full review »

One of the most valuable features of One Identity Manager is its availability as an on-premises solution and as infrastructure-as-a-service in the cloud. Additionally, the reporting capabilities, powerful synchronization engines, and workflows, including the SAP connector, are highly beneficial. The solution provides an identity-centric approach which supports achieving a Zero Trust model, and it significantly reduces operational costs by allowing the same number of support team members to manage a greater number of systems. View full review »

From a technical perspective, One Identity Manager's greatest strength lies in its extensive customization options. The platform offers a wealth of functionalities and flexibility, allowing us to tailor solutions to meet our organization's specific needs without limitations. This unparalleled adaptability is One Identity Manager's most significant advantage.

View full review »

One Identity Manager is more scalable and customizable than other products I have worked on, and user customization isn't as complicated. Defender, One Identity's PAM solution, is useful for rotating passwords in the developer's evolving facilities. 

Customizing the UI and backend is easy if you understand the framework. It may take some time to learn, but it's not too difficult once you have it down. Business roles are a handy tool from One Identity that we can map multiple accesses in a single bundle and provide it to the users. You can also provide birthright access to this, so they don't need to request it once onboarded. We can assign them access based on a particular department or a job role.

View full review »

I greatly appreciate the initial approach provided by One Identity Manager. It's beneficial because we can easily view nearly all the information about our users without extensive searching. Access to users and groups is rapid. For instance, if a user has standard connections, such as Active Directory, LDAP, or SAP integrations, we can readily access information based on their identity. This is a fantastic feature.

View full review »

One Identity is a complete solution that has everything we need. We can use it to manage SAP. It connects SAP to employee identities under governance. This functionality is critical. One Identity Manager provides IGA for the more difficult-to-manage aspects of SAP, which is also crucial. The SAP-specialized workflows are easy to implement. 

One Identity provides a single platform for the administration and governance of users, data, and privileged accounts. It provides a complete overview of all these things. The user interface is intuitive and nice. It shows everything. Customizing the interface isn't hard. You can create custom fields. This is one of the most important things.

View full review »

I like One Identity's reporting features and the single sign-in option. Users can skip multiple logins. It also gives us a centralized system that lets us know about a user's access. This is an automated process. If a user leaves the company, One Identity will ensure their application access will be removed after a certain date. When the user joins a company, it ensures all privileges are created and active by the start date.

Using an open-source integration platform, we can integrate any service provider with One Identity. I think the user experience has been positive. Customizing the solution for each company's requirements has been challenging and interesting. Some of these companies are massive and have significant requirements, and we need to ensure that everything is under the scope.  We are collaborating to test and incorporate other functionalities. Corporations might also have their own applications, so we should be aligned with those. 

View full review »

I like the customer-facing portal because it is simple to use for end users. Some of the features are also easy to configure.

View full review »

One Identity Manager's most valuable asset is the ability to customize its front-end website.

View full review »

One Identity Manager stands out for its modular design, allowing us to easily customize it with specific components, and its flexibility to handle any identity and access management scenario we encounter.

View full review »

One Identity Manager offers several features that I found advantageous compared to other tools. For instance, imagine two distinct teams: one responsible for administrative documentation and the other for development. With One Identity Manager, the administrative team wouldn't need to learn a separate design tool, as the platform offers dedicated features for both administrative and development tasks. This segregation of functionalities is helpful because it streamlines workflows and reduces complexity. For example, if we need to monitor backend processes, One Identity Manager provides a dedicated job queue with a visual representation, allowing us to easily identify any stuck jobs. Additionally, the platform is database-oriented, offering built-in filtering and browsing functionalities within the object browser, further simplifying data management.

View full review »

The most valuable feature is the JML. Unlike other identity manager tools, the JML is more customizable, making it easier to find.

The solution provides IGA for the difficult-to-manage aspects of SAP such as T-codes profiles.

It provides a single platform for enterprise-level administration and governance of users' data-privileged accounts. We have end-to-end JML features, including role-based access provisioning, access certification, and reporting. One Identity Manager is a very good platform, especially for those who have been working with it for the last two or three years. They are likely to be very happy with it.

Another good feature of One Identity Manager is its multi-language support. I give the solution a seven out of ten for its single platform feature.

One Identity Manager has an intuitive interface that is customizable.

View full review »

One Identity Manager offers a wide range of connectors, allowing it to interface with multiple target systems and perform provisioning and de-provisioning tasks within them. This extensive connector library, available out-of-the-box, is one of its most valuable features.

View full review »

I like how One Identity Manager is designed. We can control granular-level permissions. Compared to SailPoint and CyberArk, we can go granular in the access levels. We can control it at the table, column, and database levels. That's the power of One Identity. 

We can import business roles from a .csv or create them in the manager. It is easy to create as many roles as we want, and there is no limit to the resources we can assign to them.

View full review »

It's easy to integrate SAP with One Identity. SAP has different modules, and you can manage users through the One Identity interface. Integrating through a stream connector is simple. 

It's role-based access control, and you can manage it. It's perfect for our customer's governance control. One of my customers is using One Identity's PAM solution. It is a separate component and licensing model.

View full review »

There are a lot of valuable features, including connectors, attestations, and workflow.

For the governance of users, data, and privileged accounts, it's really strong. It's really good, a 10 out of 10.

We also make use of its business roles to map company structures for dynamic application provisioning. That aspect is super important.

View full review »

One Identity Manager is flexible and offers numerous connectors that enable us to serve as the core component of the system, as well as to construct our own connectors using the API.

View full review »

It has a lot of depth. It has advanced features. As a customer or as someone who is managing the solution, I like its self-service capabilities where it has lots of powers, and the users can select any reference users. The majority of the time, we face an issue where new joiners are not aware of what they need to have in order for them to do their job. One Identity has the answer where they can know this by selecting any reference users, which are basically their colleagues. This way, they can quickly know what sort of access they have in the system, and they can raise the same. The system will automatically identify it for them. It saves a lot of time and is also a very useful feature.

Another valuable aspect is the depth of the product. It allows the support team to reroute certain requests to different people, and within their request flow itself, you can ask questions. All these features are very helpful in our context.

View full review »

The most valuable feature of One Identity Manager for me is its Designer tool. This tool allows me to write custom code and provides flexibility to customize and adapt the system to meet specific business objectives.

View full review »

There are various tools available in the market. The best part of One Identity Manager is that it provides wholesome features. Most of the things required for identity management are given out of the box in One Identity Manager. You can just define your use cases, take this tool, and right away implement the solution. The default features and the default setup are already embedded or built into One Identity Manager. That is what provides One Identity Manager an advantage over other tools where we have to customize things, whereas, in One Identity Manager, most of the things can be done out of the box. On top of that, if something needs to be customized, that can also be done in One Identity Manager. The inbuilt functions or features that One Identity Manager provides for identity management are very good.

I have been working on it for the last six years. It is very good from the user experience perspective.

View full review »

The solution helps us to efficiently manage lots of authorizations automatically. We started initially using One Identity as a tool for security reasons. But then we noticed that management in the supply chain embraced One Identity for operational efficiency reasons. Today It allows all 100,000 employees to automatically access all kinds of applications.

We use it for SAP. We have multiple SAP systems. We use it for HANA and the cloud environment, for example.

One Identity Manager provides an enterprise view of management for logically disconnected SAP accounts. It's very good yet also difficult. Technically, it's a good solution, however, you need to have people who understand it and can use it the correct way. Being just a One Identity developer is not enough. You need to be specialized in this kind of module to use it to be efficient and effective. We are not there yet to use all this additional functionality.

One Identity Manager connects SAP accounts to employee identities under governance. It is important to see who has which SAP role, and if it's assigned based on the HR function, or assigned after an additional request.

There is a special SAP connector. There is reporting. You can build reports yourself. There are lots of possibilities, however, you need to know how to use it.

The solution is good for providing a single platform for enterprise-level administration and governance of users, and access to applications and data. We use it only for personal accounts. We have a separate PAM solution to manage privileged accounts. But to request access to PAM-tooling initially, needs to be done in One Identity. It's a two-step approach.

What I noticed, is that the user experience in version nine is good. We’re using an older version. The user experience is not very good in version eight. It’s a bit old-fashioned as it appears now. The latest version is much more modern.

We make use of the solution's business roles to map our company structure for Dynamic Application Provisioning. We are giving people the right authorizations based on the job and function. We use it a lot, especially in the stores and distribution centers where there is a high frequency in the joiner, mover, and leaver process, but the organizational structure is quite solid and doesn't change a lot.

We use One Identity also to give access to test environments, as self-service.

It has positively affected operations. There are a lot of things that are possible. It does what you want. 

It provides more insights because HR data and access to all systems are in one system. This information can help us to review who needs more access, or revoke access if it's necessary.  

One Identity Manager helps streamline application access decisions. There's an approval flow for additional access requests. For every application, you can have a different flow, in case you need extra security approvals or from a data-owner. 

It helps streamline application compliance and auditing. We can do a re-certification process and someone can give approval if it is needed or not. It's helped us improve governance. The re-certification process is very good. 

The solution helped enable application owners or line of business managers to make application governance decisions without IT. All employees and managers can request access as a self service in One Identity instead of going through IT.  The request for access is easier, and faster, because after approval the access is automatically granted.

View full review »

The customization is an excellent aspect of the solution. You can basically change the product to anything that we need to with most of the code available. Most of the user interfaces can be changed just by the request of the user and our customers. That's very good. 

Another very good part is the standard connectors, especially SAP. The integration with SAP and One Identity Manager is just very good. It brings a lot of the standards with it already. There's a lot that has already been done and doesn't have to be configured manually. That's back to the customizability. If the SAP connector or any other connector is not enough, things can be reconfigured. 

We use it to manage SAP. From an enterprise view standpoint, we have a full list of all SAP users. It connects all SAP users to the specific employees and we get an enterprise view. The solution connects SAP accounts to employee identities under governance. That is very important. It's one of the most important things we can do - to recertify permissions and recertify the users and also find authentic users that are not used anymore. That is why it's a very important part of governance.

The solution provides some default workflows for creating users, updating permissions, et cetera, however, you can customize beyond that. You can basically do whatever you want all in workflow and processes, automatic processes, et cetera. 

It provides a single platform for enterprise-level administration and governance of users, data, and privileged accounts. It allows you to see everything. If you have more than one product, you have a very good overview of everything. The identity manager alone can give an overview of privileged accounts that exist. The overview is very good. 

The solution's user experience and intuitiveness are great, especially for the users and administrators. The web interface is very good. It's very easy to use. Most customers change the interface colors and icons and stuff like that to match their own company. 

It is easy to customize the solution for our particular needs or for our client's particular needs, depending on what has to be customized. For web interface customization, you need to do some programming. You need to be experienced in web interface programming. However, enterprise processes, workflows, approval, recertification, and calculation of permissions and stuff like that is very easy. It's easy to configure that without much knowledge of the system. 

We make use of the solutions business roles to map the company structure for dynamic application provisioning. Business growth is one of the first things that we try to conceptualize with our customers. We can map specific permissions to specific roles and also apply those via dynamic roles automatically to people in specific departments.

We do use the solution to extend governance to cloud apps. This extension of governance to the cloud apps is important. You have to extend the governance to every aspect - not only on-premise, but also cloud. You cannot stop with governance. If you only do governance on half your systems, then that doesn't really make sense. Therefore, it's very important that the solution provides it for the cloud as well.

The product helps minimize gaps in governance coverage. The recertification and access management part can help with that.

It can help consolidate procurement and licensing. None of our customers have needed it until now. 

The solution helped enable application owners and managers to make application governance decisions without IT. When the recertification or application access is automated and configured correctly, then the manager automatically gets, for example, every six months, a request on the web interface, which is very easy to understand. It basically explains everything. The user just has to click the green arrow or the red cross to say yes or no to certain access or permissions; it's very easy.

The product helped us achieve an identity-centric zero-trust model. It all comes back to the optimization of different accounts since everything is connected. With this product, you get a 360-degree view of all accounts, et cetera. 

View full review »

One Identity is easy to integrate. It isn't easy to use, but it can be extended. It has out-of-the-box integration capabilities for small companies. It can be integrated with many different systems, such as SAP, and the out-of-the-box configurations offer extensive visibility. 

The solution provides a single platform for enterprise-level administration and governance of users, data, and privileged accounts. That's the primary purpose of this product, and it works. 

With almost 10 years of experience with the product, I understand the product and how it works, but I cannot speak from the end-user perspective. However, we can customize the solution and do our best to make it user-friendly. It offers different levels of customization. Experienced developers can perform some advanced customizations, but it can also be customized on a very basic level. You can customize almost everything. 

View full review »

One Identity is simple to implement. About 90 percent of the implementation is configuration rather than scripting and creating the connectors. It's quite easy to customize the solution. 

View full review »

The most valuable feature of One Identity Manager is its object-oriented architecture. According to this architecture, every element written inside of the system is an object and can be granularly given to someone. The solution's control is amazing. Another great feature of One Identity Manager is its ability to delegate responsibilities to different types of people through granulated access.

View full review »

We did a PoC with other identity management tools such as SailPoint, Oracle Identity Manager, and Microsoft Identity Manager. We chose this product for being able to accommodate our requirements. It's very flexible, and it's open to being developed to our requirements. For example, for our custom tasks related to subsidiary companies, we created a custom HR portal for our subsidiaries. These employee accounts are not in our main HR databases. We created a portal in One Identity for their HR divisions, and they are doing their daily operations on this One Identity custom portal. That's why we chose this product for our production environment.

Another reason for choosing One Identity was the local support and the Password Manager solution that they have.

View full review »

It offers really powerful processes. For example, when a person is joining a company, or changing teams, or leaving, it's easy to create a management flow for the onboarding or offboarding process. It helps manage all of the accounts a person might need to have access to. It integrates with several platforms and has specific connectors that make it very useful. It works with the majority of applications an enterprise might be using, such as Salesforce or various cloud providers. It also integrates well with SAP. 

It provides a unified view of logically connected solutions. It can connect to accounts related to employee identities under governance. It's probably the main reason a client would use the solution. The entire reason to deploy such a solution would be to have governance over accounts and have access to the life cycle of the account. 

The solution is a single platform for enterprise-level administration and governance of users, data, and privileged accounts. 

It can be fairly easy to customize, depending on a user's particular needs. If you are integrating with some very common solutions, it's pretty straightforward. 

The solution offers various business roles to help map company structure, name, and provision. You can tie permissions to specific roles very effectively. You can implement role-based access control.  

We've used it to extend governance to cloud apps. This is important to us. The common trend is to move to cloud applications. Even local clouds afford the same level of permissions. Having a standardized layer in between definitely helps. 

We immediately noted the benefits of the solution. However, it depends on the type of user. Common enterprise users can get quick results. Those responsible for identity access management or compliance see the results quickly. They'll benefit almost immediately. The normal user, however, may not understand the difference. 

You can use the solution to minimize security gaps and close the gaps between privileged and standard users. 

It can help consolidate procurement and licensing. It can help you understand how many users need access to specific applications to help you get better numbers as to what is needed and not overbuy licenses. 

The solution helps us streamline application access decisions, application compliance, and application auditing. You can get reports. It's nice. It helps with visibility and planning. 

It helps reduce footprints and minimizes access from unrelated teams. 

View full review »

Several employee data fields are synchronized to Active Directory, providing easy access to other applications (office, address, description, telephone, employee status, etc.). The update process is scheduled and automated to run multiple times a day, so Active Directory is always up to date with different employee data.

The One Identity birthright process has helped generate user accounts more accurately and quickly. Our Service Desk ticketing system is now used to complete user accounts and provide only what isn't common across their department or team. 

View full review »

The most valuable features are centralized Identity Management, robust Access Governance, and One Identity Manager workflow automation, simplifying user management and compliance.

View full review »

One Identity Manager is user-friendly and easy to customize. One Identity's business roles enable me to map company structures for dynamic application provisioning, which is fairly important.

View full review »

It helps in managing SAP. There is a connector that you configure with the tool and it helps to provision accounts and assign roles or permissions in SAP. If there is a disconnected SAP application and you want to bring it on board, One Identity Manager gives you the tools to do so.

One Identity Manager connects SAP accounts to employee identities under governance. Although each organization is different, what is typical in some organizations is that it is important for them to meet security compliance regulations like CIS controls. They use the solution to meet those requirements.

In addition, healthcare companies have to be HIPAA compliant. One of the HIPAA rules is related to terminations. They need to make sure that every user or employee who is terminated is denied access within 24 hours. One Identity Manager helps you to implement that kind of case. If we connect One Identity Manager with the human resources system, we can read the employee's end date and automatically disable access for that user in less than 24 hours. In fact, we can disable the employee, once we have connected to Active Directory, in five minutes or less.

One Identity Manager doesn't have a privileged access management model but we can create one. A robust solution is based on the Windows platform. To address this use case you need a SQL Database and Microsoft Internet Information Services. If your organization is a Windows environment, One Identity Manager is a good option for your company.

In terms of the user interface, Quest, the vendor, follows up-to-date web standards for development. Currently, they are moving to implement Angular as a framework to implement end-user UIs. As a result, end-users will see a pretty nice website, a web portal where users can approve requests, submit password changes, or submit new requests. Also, if there is a certification campaign running, the web portal is very user-friendly. The manager can log in and see items that need approval or denial. The current version is designed to support mobile, tablets, and web browsers.

We also make use of One Identity's business roles to map company structures for dynamic application provisioning. That is a very important feature because most companies want to implement role-based access. Business roles are one way to help companies to identify job codes and position codes. It enables the grouping and automating of certain types of access for certain departments. For example, if you know all the people in your sales department, you can configure a business role so that anybody who is a new hire in that department will get certain accounts or certain access or certain groups in different applications. Doing that in One Identity Manager is a very simple task and it is very well organized.

The product can also be extended to support any of the SaaS or PaaS applications on the cloud. Nowadays, identity manager solutions are focused more on managing of identities and entitlement access on-premises. But companies are moving to the cloud and it has become very critical for solutions to start handling user accounts and permissions in the cloud. One Identity Manager is specifically a product that is moving in that direction and providing connectors to the cloud. It's a gap that needs to be closed and not many providers are investing in that. I've been implementing One Identity Manager for 12 years and I still haven't seen any other company doing cloud identity management, 100 percent. Hopefully, next year and in the following years, more companies are going to start adopting that technology.

And whenever you implement test, dev, and production servers, it will help minimize gaps in governance coverage among them. Using the solution you can connect and configure users in production, but if you configure dev or test instances, you should absolutely be able to handle ID and governance access for those applications.

View full review »

One Identity's interface is pretty good. It's user-friendly, and you can access most applications inside the console. The user experience is solid. You can use One Identity if you are a layman without much technical experience. You might need a little more training with admin access, but it's easy to learn. 

View full review »

One Identity Manager connects SAP accounts to employee identities under governance. The connector from One Identity for SAP is the most powerful one in the market. This connector can touch all the levels of the objects in SAP. It can not only be connected to SAP ERP but also to SAP HANA, GRC, etc. One of the strengths of One Identity Manager is the SAP connector. You can touch a lot of the SAP environment and also have deep granularity.

View full review »

An outstanding feature of One Identity Manager, compared to SailPoint, is the dashboard where they present everything. With the dashboard, the customer can see how the integrations have happened. It is more presentable than what we have with SailPoint. The user experience is good because everything is exposed on the dashboard. They can tweak it a little bit if they want.

Also, using its business roles to map company structures is fairly easy and good, similar to SailPoint. It is handy. This function is very important because today, most organizations rely on RBAC, role-based access control. If a tool offers identity management capabilities, it must also offer role-based access control. Both One Identity Manager and SailPoint offer good role-based access controls. It's easy to configure and use.

View full review »

One Identity Manager is very customizable to meet customer requirements. We can write custom code as per customer requirements.

Role-based access is also very valuable.

View full review »

One Identity Manager is more reliable than other identity managers. The most valuable features are the behavior, configuration, and customization options.

View full review »

One Identity Manager's account creation feature stands out as its most valuable functionality.

View full review »

The self-service functionality of One Identity Manager is arguably the most valuable feature. It allows us to easily initiate access requests for new hires through a user-friendly interface. This information is automatically sent to HR for review. Similarly, for departing employees, the intuitive interface enables us to import their details and trigger the termination process seamlessly.

View full review »

In the Manager tools, my favorite feature is the ability to obtain a comprehensive overview of any user efficiently. The portfolio view simplifies this process, eliminating the need to check through Tableau or other tools. Another significant advantage is the quick and easy creation of mappings, roles, and IT configurations for various products within One Identity Manager. This feature stands out as a valuable and time-saving capability in the manager tools.

In our Governance and management tool, One Identity Manager plays a crucial role in connecting SAP accounts to employee identities. This integration ensures that all identities are linked to their respective employee profiles. This connection is of utmost importance because if, for instance, a login is enabled for a specific user, maintaining a consistent ID becomes essential. With One Identity, this process becomes seamless, allowing the replication of related attributes across all relevant systems and ensuring a cohesive identity management approach.

View full review »

The solution offers good integration with other environments such as SAP and Active Directory, et cetera. We are managing access and managing all the provisioning of user access and accounts.

We manage the product to help manage SAP. The solution is okay for providing an enterprise view for the management of logically disconnected SAP accounts. It is quite complicated since SAP has quite a structure for these roles and accesses, however, it is quite manageable in One Identity and it is well supported with proper support from our external provider. We finally managed to make it perform. It is now working well.

One Identity Manager connects SAP accounts to employ identities under governance. This is important. We had it implemented before only based on requests without active-active connection. There were quite a lot of non-matched users, and what happened a lot was that we would have users who had left the company and were still active in SAP. So now when a user leaves the company it’s not an issue. Also, the SAP account is already provisioned. This ensures data protection and the privacy of users and everything.

If I were to assess One Identity Manager for providing us with a single platform for enterprise-level administration and governance of users, data, and privileged accounts, I’d rate it highly. From a rating of five, I’d rate it 4.9.

The solution's user experience and intuitiveness are good. It’s extensive. 

How easy it is to customize really depends on the level of desired customizations. There are some customizations out of the box while others require quite a lot of coding. In that case, I’d suggest a person uses support or gets external support.

View full review »

The most valuable feature of One Identity Manager is it simplifies user-account provisioning and administration. One Identity offers a comprehensive range of solutions that cater to almost every aspect of the identity and access management domain. Their solution suite includes a login solution for access management that can be seamlessly integrated with your IGS solution. Additionally, they offer a dedicated tool for IGA that fulfills all your identity and assessment requirements. In addition, they have a solution called One Identity Safeguard for identity management and access management, which is gaining increased importance. With One Identity, you can obtain end-to-end solutions from a single vendor, whereas with other vendors, you would need to combine various vendors to achieve the same result. 

View full review »

One of the valuable features is that it is relatively organized. I definitely appreciate that aspect. It is also relatively simple to use with a very easy flow to the GUI. The user interface is really top-notch. Whatever we need to do with it, we are able to see just how to do it right away.

Customization is also fairly easy. There really isn't a whole lot to it.

And one of the main things that we use it for is the creation and modification of business roles. That way, we can assign just one role to a user and they have all the permissions that they would need. We also use the solution to extend the governance to cloud apps. For users who need to work with the cloud on a daily basis, it makes assigning their privileges a lot easier.

View full review »

The solution is a typical, conventional IGA but the tool itself offers many options for customization. Some other products are easier to implement but don't have the same customization capabilities. 

View full review »

One thing that I like about the product is it comes with a lot of out-of-the-box features. There is the occasional scripting here and there, but there are some out-of-the-box samples that you can follow. So, it has been pretty good. We have been able to work well with it.

I have found One Identity Manager to be flexible. It is mostly configurable. We get most of the features out-of-the-box. If not, we have some samples that we can follow, then model the system, accordingly.

As far as GDPR is concerned, our company is located across the globe. Based on user requirements at any given location, we have been exposing only those attributes. In that way it has been flexible so we can comply with GDPR.

View full review »

It's very easy to roll out. They do have various defaults available, so you have a variety of rollout options.

It is very easy to handle complex requirements. It provides a very good user experience.

I like the user interface. I'd rate it three out of five.

The solution provides an attributes-based setup, a dynamic role setup, and many other features for enterprises. It provides a single platform for enterprise-level administration. 

It has an easy user experience. It's great. From an intuitiveness standpoint, I'd rate it three or four out of five. It tries to make it easy for administrators to fulfill requirements, even if it needs to be customized. 

The customization is top-notch. It's the best compared to any other tool we've used. It fulfills a lot of needs. I'd rate the level of customization three out of five. 

While I haven't really used the solution's business roles to map company structure for dynamic application provisioning, leadership has used it for this purpose. My understanding is that it is quite good.

The product does help minimize gaps in governance coverage for test development and production servers.

It's helped us to achieve an identity-centric zero-trust model.  We are able to set up dynamic rules centrally. 

View full review »

The best feature is that it's customizable. For example, we can create any kind of product or custom service within an IT shop and customize it the way our customers need it. For the customers, it's the best. They are happy with it.

We can create a custom policy for a company. We can use a business role for access to a given product and determine what the next process is. For example, if someone requests access to something, the custom policy will show it to the supervisors at each location or redirect it to the user who is responsible.

Also, we use the solution's business roles to map company structure a lot. That's one of the parts that the customer really needed. They wanted a custom role for each of the cases they were creating. They wanted to assign users directly to a business role, and these roles can be assigned to other users in the directory. The business roles feature is critical.

One Identity has another model called Data Governance Edition. It's a very good solution for controlling and applying the concept of CIA (confidentiality, integrity, and availability). It's the best solution for that. We use One Identity Manager with Data Governance. There are shared folders, and a lot of people have access to them. With Data Governance, if someone requests access, based on the kind of permissions they have, Data Governance helps us make this kind of decision.

View full review »

In terms of what I found most valuable in  One Identity Manager, it's the only product where the workflow and the catalog can be configured on roles or by business people. You don't need to know the technology at all to configure that, so this is the product's biggest advantage as well as its strongest feature. One Identity Manager is also business-oriented and IAM administrator-oriented.

View full review »

The best feature is the security of the solution. 

View full review »

Among the most valuable features of One Identity Manager are administration from Active Directory and Azure Active Directory, as well as administration from Exchange. These features enable us to have fully automated processes to create new accounts and new mailboxes. The most valuable option is the ability to design an automated route to give our customers permissions.

The solution is also very flexible. We can adjust all the standard processes that One Identity comes with and we can create new processes. We can always change whatever we need to change.

View full review »

The most valuable features include the 

• automated attestations or recertification
• IT Shop, which reduced calls to the help desk by 60 percent from users not having to contact someone to request access to something. Now, they go to the Self Service portal. 

Those two are the biggest wins.

In addition, when it comes to usability and functionality, users are always the most difficult to please. But when we went to version 8, we actually had zero negative feedback. We had people who were praising the UI of the new version. It was very well received. We had no pushback or anything negative that we had to address.

Another huge win is that a lot of our producers and salespeople are constantly on the road, and making them log into a portal for approval was very difficult. Once we implemented the approval feature, those users were extremely happy with it. It saves time and helps the end-users to become productive sooner because they can do the approvals.

View full review »

In terms of what the most valuable feature of One Identity Manager is, that would be hard to say because the tool is great overall. There's not really one feature you'd prefer over other features, but what's really great, in my opinion, is the fact that the provisioning is really stable and accurate, and it's a process my company trusts. This means that without a lot of maintenance, I can be pretty sure that as soon as my alternative source gives a new identity or gives new information about a particular identity, everything will be transformed and executed the right way. My company has tried other solutions and there's always a struggle with the provisioning system in terms of knowing what systems work, but with One Identity Manager, this issue doesn't happen. It's also a really stable system which I like.

View full review »

In terms of the most valuable feature of One Identity Manager, it's not like one feature is useful without the other features. It's not a tool, but it's more an overall integrated solution that is helpful and not specifically one solution on its own. The best points of One Identity Manager would be its process orchestration and synchronization manager.

View full review »

The most valuable features are that it has a lot of capabilities, can integrate with a lot of systems, including automated onboarding like CyberArk, and allows you to integrate different entities.

View full review »

As the team supporting the platform, one of the key features One Identity Manager has that was very valuable was the administration interface which allowed a quick easy overview of staff, their entitlements, and how they had were entitled to access.

Centralizing identity management allowed for a centralized governance model. 

The IT shop is a great tool that allows a simple interface for users to see their access, be able to request additional access, and view the workflow approval process to understand where their request is and what any hold-ups may be. 

View full review »

In dollars: access reviews. In QoL: Entitlement requesting, Approval workflow, and Attestations. 

At the start of our project, IT was considered a burden by most of the company. One Identity's easy to set up requestable items and the associated smart approval workflows gave IT the power to become a hero to the company. Eventually we had lines of business coming to us with requests to integrate more and more into the self-service portal. Then on top of that, the existing attestation cycles allowed us to confidently know for certain that correct access was issued and maintained across the company. 

View full review »

• It gives the best user experience, enabling us total transparency in user access rights.
• We unified business processes for students and staff at enrollment/hiring/graduation/termination of contract in all organizational units of the university.
• It reduced risks by granting adequate access rights to users.
• The best feature is that HR finally took responsibility of it, so not everything is on IT.
• The policy and role management features are important for identity management.

View full review »

The most valuable feature for me is the built-in security, which is the best that I have seen. The interface is also very good.

View full review »

It's the automation. With One Identity you can have multiple accounts and everything is managed in the same system. You don't need to manage different systems at different times. With just one, you can do everything. It saves a lot of time for us and simplifies things.

In terms of the policy and role management features, through the automation that we have within the system, we are able to simplify those processes. The role management is really a great solution because we assign and define roles within the system and then apply them to the identities that we create for our employees.

It is definitely a flexible solution. The connection with multiple systems is what makes it flexible. We can create the accounts flexibly, enabling access to other systems. In addition to Active Directory, it can extend to SAP, to Salesforce, to Office 365, etc.

View full review »

Nobody has to put people in AD groups by hand anymore. It goes automatically and that's very good.

It's also very flexible. It's quite easy to customize and we have customized it a lot. There are many features already in it that you can choose from but you don't have to use everything. You can use just a few features and leave things out.

View full review »

For me, personally, the automation is the most valuable feature. I don't have to do things manually, like creating user accounts and provisioning them to the target systems.

We are familiar with the policy and role management features and we are using some of them. They are very hard to define, but they are also very powerful in a way. You have to define them clearly before you start using them.

One Identity Manager is also flexible. If it doesn't have a feature that you want, out-of-the-box, you can customize it by creating scripts or modifying the schema. But you usually need consultants to do the job.

View full review »

The features are open and have a good tabular structure for the data, as well as the connected relational/relative topology.

View full review »

It is very flexible and adaptable to our needs and the ootb features are also quite comprehensive. The overview sheets are great.

View full review »

It is a flexible because it is customizable. It allows you to build anything on top of it.

View full review »

The standard connectors are the most valuable feature.

The product is flexible. For example, it offers cloud features.

View full review »

There are so many different connectors out-of-the-box, and the solution works fine. Overall, the product works well and is very good tool, which functions well.

It's pretty flexible because you can use it in almost every way you want. It is very open. It provides good insight on all the basic job chains, and you are free to use, extend, or change it.

View full review »

• It's very flexible. You can customize it to the fullest extent. You can use it for almost every situation for every customer.
• The policy and role management features are very good. They have gotten better over time.
• The privileged accounts governance features are very good.

View full review »

• To get an overview.
• To get a good structure.
• To get a good automation process.

View full review »

It is highly integrated with our clients.

The policy and role management features are good.

The solution is flexible because you can realize the customer needs. Therefore, it is easy to upgrade specialized things. It provides the flexibly, so you can implement customers' use cases.

View full review »

It brings simplicity into complex matters.

View full review »

The policy and role management features are superb. If you have a customer who is willing to go somewhere with role management, then the possibilities are endless with the product. It is well-structured, and the architecture is well-defined. I am quite content with it.

The solution is flexible. It is based on modules. Depending on the customer's needs, you can implement the different modules, which are accompanied with it. 

View full review »

Flexibility: It has many features which can be combined and configured in a great way, then put together in projects and ways that developers didn't think were possible, which has been great.

The policy and role management features are very powerful and useful for our customers. You can do anything there.

The privileged account governance features are great from the overall governance look, the things which you can do with it, and the results that you can achieve from it.

View full review »

The overall capabilities of the identity governance and administration (IGA) solution for identity management.

The flexibility of the solution: We are able to use what is out-of-the-box, customize and prioritize it, then further develop it to meet our needs. Our use for it is very complex, but we are able to achieve success with One Identity.

The back-end, its capabilities, and workflows are very good.

View full review »

• Publishing capabilities
• Connectors
• This solution is quite flexible. We have a lot of customization since we have our own business processes. 
• We use it to manage our users in SAP.

View full review »

The most valuable feature is the fact that we don't need paper anymore. We came from a paper solution and getting rid of the paper is valuable.

The solution is also flexible. We have customized our IT shop. Because we have so many applications, the solution, out-of-the-box, wasn't good enough for us. So we have customized all our workflows for approvals and it's working fine.

View full review »

Its flexibility is the most valuable feature, the way we can customize the user interface and the workflow processes. It helps us set up the correct approval processes.

View full review »

The most valuable feature is the configuration of users, especially onboarding and offboarding SAP roles. It is very important this is done in a fast way, especially in connection to the SAP HR system, where we can get a user onboarded as soon as they have the information recorded in HR.

View full review »

Workflow management is an important feature. With other identity management products, there was no workflow management so we had to build it ourselves. That's one of the reasons we selected One Identity.

We have also found the solution to be flexible. We can customize a lot of things and arrange most things within the product.

It has also definitely helped simplify compliance.

View full review »

The most valuable features of this solution are its handling and that it is easy to maintain and manage the data.

The solution is flexible in connection with the controls. For example, it's easy to implement, easy to handle, and understandable to configure.

The user interface needs improvement.

View full review »

Simulation mode of One Identity Manager for company policies, station policies, business roles, etc.

The solution is flexible. You can customize it a lot. You can also customize parts of it. You can can build connectors, connecting them to a new application, and so on.

View full review »

We no longer keep users who shouldn't exist.

It is flexible with APIs and the customizing of a portal.

View full review »

The most valuable features of the product are the recertification, segregation of duties, and user experience.

The simplicity of the policy and role management features make it easy to use for implementing policies and configuring them.

View full review »

The tool is like a big Lego in which you can use the parts that make sense for your organization.

It has several components out-of-the-box.

The solution is flexible, in general. You can define the parts of the solution that you want to use, and it won't affect the price. 

View full review »

Even without any customization, if you install it, configure it, it's ready. We may do some small customizations afterward, but the product is really good as is. It's very powerful. Without any customization, it starts working.

There is also a new feature, the Sync Engine, which is very good. Before, without it, the initial onboarding of HR systems was very difficult.

The policy and role management features are good, but not well-implemented in many companies because it's not that easy. It takes time. We are starting to use attestation in our current project and to follow the company policies. It takes time, but the feature is good. The company policies feature is really good because in workflows you can check whether the policies are all working. It's a good feature, but I don't think it is very common in many companies.

In terms of privileged account governance, in all of our previous projects we created privileged accounts and, again, with the new projects, we are going to start managing privileged accounts through One Identity. This feature is good. The new features are really good.

Finally, the product is flexible. We can easily customize almost any part of the system, such as having logic code inside the templates, inside the tables. And we can create processes as well. The customization makes it really flexible.

View full review »

It's a huge toolkit, and you can do a lot of stuff with it. You can extend nearly everything, so if you want to build something that may not have been though of by the vendor. You can do this with a partner, as we have done in the past. There is also support for these processes. Compared with other distributors who design their products to certain specification, you can put in your own processes, because not all companies function the same. You can write what you want, and the process should be like that.

The policy and role management features are huge. We have had some problems getting our colleagues onboard using these features. They are used to IT setting up everything. The features in the software are good, but there is a lot of transition you have to do inside a company to get these features working.

The solution is flexible. You can customize everything. You can do what you want in it. Sometimes, it is not unwise to do everything on your own, but you can.

View full review »

• Separated modules and integration allow for more capabilities 
• Graphical and tabular interfaces
• VB and SQL front-end and back-end

View full review »

Everything (location, cost center, department, business role, etc.) is a role.

The Data Importer is a great tool to create an ETL. It generates code which is easy to maintain later without the tool.

The Attestation function lets you easily define grant/deny workflows based on constellations in the database.

View full review »

The data is easy to manipulate using SQL queries and commands.

View full review »

The out-of-the-box connectors (SAP, LDAP, MS Active Directory, CSVs, etc.), and the one-stop-shop portal for user requests and authorizations which can be customized to display corporate logos and color schemes.

Additionally, certain “out-of-the-box” features can be configured to not be displayed or affect specific behaviors through the Project Configurator.

Additional customization requiring coding is possible, but requires additional planning, coding, and testing and is out of scope for this project.

In D1IM there are different ways of connecting with targeted systems. Out-of-the-box Connectors could be with:

• Connected system modules which allow interaction between D1IM and third party systems, with their specific schema extensions, dedicated synchronization templates and business logic. They allow deeper out-of-the-box target system management.
• Connectors which are predefined synchronization interfaces, developed by Dell, and are highly configurable but cannot be customized!

Interfaces are developed during IdM projects as an additional, customer specific feature of D1IM. This enables the connection of more proprietary or less common systems. Interfaces are easily changed in their functional behavior and implementation.

View full review »

Some valuable features are:

• Easy to configure, as it is mostly UI based
• Reporting
• Dashboard

View full review »

• The GUI is very impressive and clean (even cleaner and minimalistic in v7).
• JobQueueInfo does an amazing job tracking all processes.
• Synchronizations are easy to set up.
• Reporting capabilities are fantastic once you get the hang of using Report Editor.
• WebDesigner allows a lot of customizations to be added to the web project.
• Schema and table names are very logical. It is very easy to find something in the database just because of the fact that the naming convention in the schema is very logical and consistent.
• It's a feature-rich product: a suite of very powerful tools with a lot of functionalities once you get the knack of them.

View full review »

• GUI
• Reporting capabilities

View full review »