OneLogin by One Identity Reviews

We use it primarily as an identity provider. Beyond that, we use the SSO and SAML components. Additionally, we utilize their SmartFactor Authentication to prevent dictionary attacks. This is an additional security measure.

We needed the solution primarily as an identity provider. We needed something that was cloud-based and not Microsoft-based. We were primarily Mac users and still are to a large degree.

It has helped with compliance and instituted a security measure that isn't very common with other solutions, at least not that I've seen, like putting MFA or second-factor authentication before the password prevents dictionary attacks. Dictionary attacks are when people try to access a given site, whether we SSO or SAML to it or directly to OneLogin itself to gain access to any of the company services. Putting MFA first prevents people or external threat actors from trying to get someone's password and getting access that way. They need that second authentication before they can even type in their passwords.

Given that cybersecurity is the client's concern, SmartFactor Authentication has been really handy in checking off some of those boxes.

It's handy that the desktop feature enables users to log in once and have access to all apps and their OneLogin portal. It's useful to have, especially since it’s centralized, since there's MFA protecting it, and since there are various layers of security there. I would say it's impactful. It's something that we needed.

The adoption rate of the solution in our organization is primary. You can't get access to email without going to OneLogin. In that regard, it's a good thing. We need it and we want it. We're essentially enforcing it and everyone has to use it.

The solution provides us with a single pane of glass for access management across our organization. There are some applications outside of it and that's not really OneLogin's fault. They don't offer SSO or SAML.

It's super useful to have a single pane of glass when it comes to access management. It's great to have everything in one place. It's great to have all the logs there in one place. It's easy to see who accesses what. Especially today, there are so many different systems. Keeping everything in one place makes my job easier.

We have not used Smart Hooks to create custom workflows and integrations.

OneLogin work identity helped to free up our time. It seems like the whole onboarding process, offboarding process, and security are easier.

I'm the primary IT guy. We have a third-party consulting firm as well that helps us out, however, anytime I have to onboard or offboard someone, it makes it so much easier.

The solution affected our experience when working remotely. It made COVID pretty much a breeze. We were not impacted at all in any way. We wanted to structure ourselves that way, to begin with. We didn't want to rely on any on-premises technologies in case there were issues. Any of our users can work from anywhere and that's something that we wanted to do from the get-go. We've definitely been able to do that thanks to OneLogin.

The solution helped save money for our organization, either by optimizing time-intensive processes or by increasing productivity.

It’s hard to say, money-wise, however, definitely with time, it’s saved us incalculable amounts of time. Just having a single place to go to onboard or offboard users makes the whole process a whole lot easier. I tend to deploy licenses, at least from Microsoft, automatically from OneLogin for users. I don't have to go into each separate app and create their account there. I don't have to worry about passwords or MFA for any of those services. There are just tremendous amounts of time saved all around.

We use the solution SmartFactor Authentication to adjust authentication flows in real-time, depending on the risk score associated with the login attempt. I honestly haven't found that as useful. It's helpful, however, I've run into an issue where it blocks people from signing in. Essentially, if I'm not paying attention to such and such person failed to log in, it doesn't seem like there's an easy way to alert the admin, "Hey, this person was blocked from signing in and cannot sign in at all," even if they're attempting a legitimate sign in. Therefore, while we do utilize it, we keep it at the highest level, just so that if users are traveling, they will not be bothered most of the time by it.

For now, the only thing that needs to improve is the support. I used to have a really good support experience. I'm not sure now that they were acquired by One Identity, it seemed like that changed. It could just be growing pains, however, I feel like their support lately needs some improvement. The product itself works great.

I would like better reporting from SmartFactor Authentication when a user is not able to sign in due to a new location, new IP, new device, et cetera. That would definitely help.

As a company, we've used the solution for well over four years, however, I've used it for four years exactly.

Lately, I've been a little disappointed with the stability. We had a few outages recently. I don't know if it was two or three. I do know that they went on for hours. The users couldn't SSO into their sites or apps, and that was a bit unexpected, to be honest, one, that we had an outage like that, and two, that it took so long to resolve.

It's highly scalable. We use it pretty much wherever we can. I like that about it. Even though we don't use the desktop product, that has huge potential as well.

I would've given support really high marks earlier. However, it's not as good anymore. I've submitted a couple of cases that kind of helped me, however, the support staff that I spoke with were not super helpful for one of the cases. They never responded and I didn't feel like following up as I just didn't know if I would get the response I wanted or that I was looking for.

Neutral

I did not use a different solution previously. I have used Okta elsewhere and I like it. I've used AD as well back in the day, however, OneLogin and Okta are a step ahead.

I was part of the initial setup. It's been a while now and it is more straightforward. Initially, I needed to get used to the product and figure out where everything is more than anything. I wouldn't call it that complex. The documentation has been getting better, so that definitely goes a long way. I wouldn't describe the setup as too complex. There's a learning curve, however, it's not super high. For the most part, you can find where things are in the various different menus.

We deployed the solution using two or three IT staff. We're a smaller company.

There are around 45 to 50 end-users. Endpoints were around 75 to 80. We do have a variety of different teams, some of which use different software or different applications. We do have a lot of remote users and it has worked flawlessly for them for the most part work. We've had contractors use it and it has worked flawlessly there also. It's pretty robust and pretty simple to set up new users and give them access to whatever they need.

The solution requires occasional maintenance that is done internally. We look through the logs or look through access.

We did not use an integrator or reseller or consultant for the deployment of the solution.

I would say we have seen an ROI, especially in terms of time for IT, time, and security.

The pricing is great and competitive. It's right around where Okta is, and maybe a little cheaper. I

I came into the company and they were already using it. I didn't see a need to change. I know Okta is growing alongside OneLogin. However, I haven't really seen a need to change.

We do not use OneLogin desktop feature to extend SSO and Mac OS or Windows machines. I am considering it, however, I know there are also other offerings. We utilize Kandji for Mac MDM and I'm considering trialing that. As far as Windows goes, we have Intune set up and they do SSO. There's no need for a OneLogin client on their desktop. We had that set up before the OneLogin offering, so we just kept to it as is.

We have not used Smart Hooks to create custom workflows and integrations. We use various clouds for our deployment, including Microsoft and Google. 

I'd rate the solution overall an eight out of ten. The biggest factor for me from giving it the highest score right now is the support.

The ease of use as far as deploying the users or connecting fast applications is straightforward. Sometimes you do require the help of documentation, however, when you do, the documentation is there and it is thorough. It's a lot more straightforward than something like Active Directory, however, it's not really an apples-to-apples comparison.

We primarily use Onelogin for SSO, but have been using the service for device trust as well.

It has made things easier to manage. All users obtain the correct apps to deliver on their role without much Admin intervention after Onboarding.

The most valuable features are SSO and device trust. These features secure our application access and our device access.

One area where Onelogin may improve is on the Onelogin Desktop reporting side. Onelogin does provide reporting on the devices in the admin portal, but data is not updated and only written at the installation of the application.

I have been using it for about three years.

No issues while in uptime, but we have seen a few service outages.

The user base keeps expanding in Onelogin, I have not seen degradation through expansion.

The pricing and licensing are reasonable. It is much cheaper than other products.

The solution is a single sign-on for a control systems integrator startup that I was the systems administrator for. We linked it with several other applications just to give our employees a one-stop-shop portal to get to all of the other applications they needed to use, based on their role within the company and who needed access to what.

It was really well accepted by pretty much everybody at the company. If somebody got locked out of something, it was really easy to figure out how to get them back up and running. It was really, really easy. It was very, very intuitive. The whole application was just intuitive. It was easy to understand. It was easy to come to grips with stuff. If I couldn't figure out how to do something, then the support articles were pretty darn and helpful as well.

Something I really liked about the product was how easy it was to onboard and offboard people. Onboarding people took maybe 10 to 15 minutes overall. Once we had it connected to everything, once I made the OneLogin ID, it would essentially make user names and passwords for every application that we had.

When you offboard someone on OneLogin, there's this checklist of stuff. However, basically, you have to manually click on this checklist, each of the checkmarks. It would actually be really nice if, for offboarding someone, you just click "offboard" and it automatically runs a script to do that.

It's not like a massive amount of time. Still, it'd be kind of nice just to hit one button and be say all right, I've offboarded these people. I click the button and they're out.

I'm a cybersecurity guy and I found that the two-factor authentication offering they have (if you don't buy one of their other products) is pretty basic. It'd be nice to have something a bit more advanced included, however, that's probably just me wishing.

I've used the solution for eight to ten months. It's been just under a year.

I believe the solution had been implemented in the company the year before I had worked in the automation group.

It was really stable. It was actually really nice and easy to pick up and learn. It would work, it would do what it needed to do. Thankfully, my predecessor had left some documentation on how to do stuff, however, it was pretty simple and easy to follow stuff as well. It wasn't that difficult to get the hang of.

It was definitely scalable. I was administrating it at the start of the pandemic, so we scaled down and then we scaled up as needed. It was very, very scalable. We have between 50 and 100 people on it in the company.

99% of the people who weren't me just used it to get to the stuff they were working with. I was doing most of the work with it. I wouldn't say excessively used at all.

I didn't use their tech support a bunch. The one big issue I had with OneLogin wasn't actually OneLogin's fault. I was trying to do an integration with ADP so that our employees when I was working there, could basically access their W2's and all that. They were very responsive through tech support. I didn't have any issues getting in touch with them. They usually got back to me within the day. They were very helpful.

I didn't do the integration, I just did the administration after it had been integrated. That said, it was SaaS as far as I'm aware.

I handled maintenance. We didn't have a ton of maintenance to do, or updates or anything of that nature. Once we got it up and running, it was essentially just basically making sure that the bill got paid.

The pricing for the base solution was fine. There's a separate product they do for two-factor authentication. It's extra. There is OneLogin Adaptive, they changed the name of it, which was a bit too expensive for Adaptive two-factor authentication. Other than that, I thought the price was right. We were pretty frugal over at my company when I worked there.

I can't recall if we purchased directly from OneLogin or from a reseller.

I was a customer and an end-user.

I'd rate the solution at an eight out of ten.

It's a nice SSO. Just know that if you want a more proper security suite for access, it's going to cost you more money. The basic package is just very basic two-factor authentication.

Currently, we use the solution for identity management. We wanted to have our own identity management on-premises as we did not want to use any third-party cloud solutions. 

I haven't explored the solution completely to a great extent.

Thus far, I've found that it's easy to use. 

The solution's ability to save and manage of all my passwords is great.

With OneLogin, I haven't found anything that I thought particularly needed an upgrade. The features that they have provided are absolutely fine with me. When it comes to our organization's requirements, it changes from time to time, so the features we need might change in the future as well.

In terms of managing the users on a large scale, it would be easier if they had some kind of user management portal.

Device management could be added to the solution. Users should be able to have a custom device added to the enterprise edition of the portal. From there, users should be able to add any device and use the solution to login.

The user management is supplied via a plugin and should probably just come standard within the solution itself.

I've been using the solution for one year.

Scalability-wise, we haven't deployed it completely. Right now, we are looking for something that may be more compatible with our requirements. We are not yet finalized on the features that we need. We have biometric devices that need to be created and finished as well and so we want users to have both password and biometric sign-in capabilities. Therefore, we've yet to attempt to scale the solution and I wouldn't be able to speak to how hard or easy it is in general.

We have tried Okta, and currently, we are trying to go through the company's product manuals. We're working to purchase a subscription on a monthly basis for 5 or 6 users. We are still exploring what the pros and cons are to see if it will fit with our requirements. 

Both products are great. Okta does provide user management so I can have all my users' applications in a single location. With OneLogin, I need to indicate the application and supply the technical application via a plugin. We need to have the plugin for OneLogin which we don't need with Okta.

During the initial setup, I was going through the user manual and then trying to work out how to implement everything. I am inter-technical. Therefore, I have a fair understanding of how the system works. It was not a problem for me. For first-time users, I think it could be simplified a little bit more.

I handled the entire implementation myself using the documentation provided by the solution.

Currently, upper management is asking that we look at other solutions. We're looking at Okta while we start the process of seeking out other solutions to compare.

I'm not sure of the version we are using, however, I do believe it is the latest release.

I use it on my personal computer for my personal use. I have a web subscription.

I was recently looking for other Identity providers available that have on-premises potential. OneLogin has on-premises solutions but their enterprise options are a bit on the expensive side so we are looking for alternatives.

Currently, I'm much more focused on Okta, as the solution hasn't really met our requirements.

The main feature that we are looking for is the device management in which we don't need to have a plugin for anything. We want to manage everything in one place. We even want to have the PCs go password-less. Based on the fact that we want to make all of our PCs password-less, we are looking for something that can help us manage the PCs as well.

I'd rate the solution nine out of ten.

Our use case is to connect the users to the IDE and other endpoints. That is the basic use case that we have for OneLogin.

With OneLogin there is a shift in the way identities are managed from an on-premise solution to a cloud solution.

Increasing the number of users with OneLogin is very easy. You don't have to really increase your hardware configuration because you don't host anything.

I like the feature with OneLogin where you can create a new role and associate it with the users. It's quite easy and user-friendly. It doesn't take much expertise to do all these things with OneLogin from what I observed.

OneLogin needs to increase the number of connectors available out of the box to connect to the different endpoints. The number of out-of-box connectors should be increased. If more of the out-of-box connectors are made more available, the product would be improved. I believe that the user interface can be a little better on OneLogin. 

The downtime with OneLogin is something that will keep improving, but it's fine. The pricing is quite competitive compared to other products.

I would like to see easier UI customization and things like that. It should be easier to configure the settings of OneLogin based on the customer's needs.

In our experience, OneLogin is very stable.

Scalability is one issue with OneLogin that we haven't really tested yet. We haven't put that much load on the software directly to test the scalability. 

Given the number of users that we cater to, it performs quite well. There are different customers of ours using the solution. The biggest customer might have around ten thousand internet users who are using this. 

With OneLogin we manage the typical roles of the client, like developers, managers, internet employees, etc. Those are the kind of people that we are regulating.  We do not require more than two people for the deployment. For maintenance, we always give one day for the allocation, but there are not many maintenance tasks. We have one person enrolled as the maintenance support consultant per project. OneLogin is still the market's most exemplary solution. 

Slowly our use of OneLogin is increasing. I wouldn't say it is very extensively used currently, but our goal is to have more and more customers use it.

Personally, I have not had direct experience with OneLogin customer support because I have not interacted with them. The different deployment teams take care of those things.

We have used other solutions in different places. For cloud solutions, we have used Microsoft Azure and Oracle Cloud Services, their Cloud Identity Services. We recommend this solution based on our client's needs. 

It's quite simple to set up OneLogin. The initial setup is quite simple because you don't have to do too many tasks. Many things are already there when you log in to manage the product.

Compared to the on-premise solution, the cloud version of OneLogin has many pre-configured settings and it doesn't take much time to set up for your enterprise. 

I'm not the person who does the deployments. We are partners with OneLogin and we do this for the clients. The delivery team handles the deployments. What we have done is organize some pilot programs where we demonstrated the product capabilities to our customers.

We use people from our own company to deploy OneLogin. Our own guys do the deployment since they were all trained for it. They are all very good at doing the OneLogin deployment for our clients.

The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.

If the customer is already heavy on the Microsoft Windows platform and they have an inclination towards Azure, we compare how Azure would work for the customer versus OneLogin. That is where we make a decision. 

If the client doesn't have much of a directory requirement in the environment, then OneLogin would be a good choice.

I would recommend having the professional services from OneLogin, if not fully, at least partially. 

OneLogin is a pretty good product. I would rate OneLogin as eight because there is still room for improvement.

Greatly improved our password security and policies surrounding them. Better user activity logging and reporting as well.

API, Documentation, Mappings.

Performance is lacking sometimes and having a RESTful implementation instead of RPC would have been more desirable.

No.

A little. It isn't possible to view all users in a specific role on our account. The request times out.

Customer Service:

Best in industry.

Technical Support:

Very knowledgeable and helpful when they could be. Sometimes their hands are tied by engineering bottlenecks.

An internally developed solution. We switched because of contractual security obligations to our clients and opted to let a third party that had already invented the wheel do it for us.

Fairly complex. Our implementation was different than their standard, out of the box, installation. It took some time for us to wrap our mind around OneLogin's capabilities as well as OneLogin to understand our business.

In-house.

Keeping our clients happy keeps us in business. It is very high.

Surprisingly expensive given the price of on-premise solutions. They do deliver on what they are paid for though.

Not as in depth as we did with OneLogin.

Good product, great service.

It eased SaaS selection, adoption and integration.

Ease of integration with AD and connector support are the most valuable features.

• More off-hour support

We have not encountered any stability issues.

We have not encountered any scalability issues.

Customer Service:

Customer service is top notch.

Technical Support:

Technical support is very knowledgeable and sound.

We did not previously use a different solution.

Initial setup was very straightforward.

Vendor team was very sound and knowledgeable of the solution. Expertise is at the highest possible level.

ROI was immediate.

Negotiate well.

Before choosing this product, we also evaluated Okta.

The most valuable features are single sign-on, user provisioning, and self-service password resets.

It has made our user experience much better. Instead of having users remember dozens of usernames and passwords, they only need one now.

They regularly implement ideas from their Ideas portal.

The company is always improving. OneLogin has a customer Ideas Portal, where customers can submit product enhancements to the company. I have personally submitted 10 ideas through the portal, and the company has taken action on half of these ideas. Two of them have already been implemented into the product. One is in the current development sprint. One is planned for a future sprint, and one is marked for “Future consideration.” Many companies offer these types of portals as a way of providing some method for customers to voice product enhancements. With many other vendors,

I feel like the ideas portal is a dead end and that the company just doesn’t want to tell me that they don’t care. I trust that OneLogin actually values their customers and their ideas. This is evident by the number of enhancements that get implemented directly from this portal.

I have used it for about three years.

We have encountered deployment issues. We had a number of issues in our integration, but the company has now completely changed their on-boarding process for new customers. My understanding is that things are completely different now.

There were issues with stability in 2015 and early 2016, but OneLogin has completely re-architected the product, and it has been rock solid for over a year.

We have not encountered any scalability issues.

Customer service is all aces.

The support personnel are knowledgeable and friendly. Most issues are resolved with only a couple of emails.

We transitioned from a different provider. The previous provider went out of business.

Initial setup was mostly straightforward. We'd done it before with the previous provider, so a number of the most difficult questions had already been answered.

We implemented in-house.

ROI is 12.

Don't trust the pricing on the site. Contact a sales rep.

Before choosing this product, we also evaluated Okta, Ping, HelloID, Shibboleth, CAS, and Gluu.

Use them. You won't regret it.