To begin with, I used Forgrock’s OpenAM to replace OpenSSO for obvious reasons – Oracle decided to put OpenSSO in maintenance mode. I also used Forgerock’s products (with significant customization though) to replace Sun IM/AM. Oracle has a complete suite of best-in-class IAM capabilities but the subscription costs were high and the support for customization is minimal.
I also take into the account that the maturity and support of Forgerock’s products are still evolving. There are several other criteria that I generally consider for evaluation though.
I used Forgerock’s products for the below reasons:
• Provides a simple upgrade from Sun OpenSSO to OpenAM and ForgeRock OpenIDM runs seamlessly with the Sun Identity Connector Framework
• Unified Platform
• Lightweight Infrastructure
• Connected Security
• Developer-friendly AM solution
• Forgerock’s products are open source – it is one of the key differentiators.
• Generally configurable straight out of the box. OpenAM comes with a wide variety of built-in custom Authentication modules. And has ability to plug-in to the existing authentication modules.
Tough question. Really depends upon requirements such as is it internal and/ or remote access required, integration with partners, multi-platform support and integration, SDK availability for Applications, etc. If its a corporate wide requirement and covers all the above than Oracle Identity suite would be a good one to look at. If your a large MS shop then probably sticking with their I&AM solutions would be best.
Hi infosec professionals,
Based on this article, a few days ago "Twilio became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials".
What could be done better... Read More »
Download our free Identity Management (IM) Report and find out what your peers are saying about SailPoint, One Identity, Omada, and more!