Amazon Cognito vs ForgeRock comparison

Amazon Web Services (AWS) and Ping Identity are both solutions in the Access Management category. Amazon Web Services (AWS) is ranked #10 with an average rating of 7.8, while Ping Identity is ranked #8 with an average rating of 7.8. Amazon Web Services (AWS) holds a 3.6% mindshare in AM, compared to Ping Identity’s 4.8% mindshare. Additionally, 82% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 93% of Ping Identity users who would recommend it.

Amazon Cognito

Read 17 Amazon Cognito reviews

1,945 Views
1,848 Comparison Views

82% willing to recommend

ForgeRock

Read 38 ForgeRock reviews

4,818 Views
2,409 Comparison Views

93% willing to recommend

Amazon Cognito

ForgeRock

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 11, 2024

ForgeRock and Amazon Cognito compete in the identity and access management category. ForgeRock has the upper hand in features and flexibility, while Amazon Cognito is favored for its seamless integration with AWS.

Features: ForgeRock provides comprehensive identity management, policy enforcement, and extensive customization. Amazon Cognito offers seamless integration with AWS services, automatic scaling, and user authentication management.

Room for Improvement: ForgeRock could improve documentation, reduce the learning curve, and enhance UI/UX. Amazon Cognito needs better support, more detailed feature documentation, and additional customization options.

Ease of Deployment and Customer Service: ForgeRock’s deployment is complex due to extensive customization, but has highly rated customer service. Amazon Cognito is easier to deploy in AWS environments, but its support needs improvement.

Pricing and ROI: ForgeRock has higher setup costs justified by its comprehensive features, providing strong ROI. Amazon Cognito offers lower upfront costs, making it cost-effective within AWS ecosystems, though sometimes lacking advanced features.

To learn more, read our detailed Amazon Cognito vs. ForgeRock Report (Updated: April 2026).

Buyer's Guide

Amazon Cognito vs. ForgeRock

April 2026

Download the complete report

Helped 889,955 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Amazon Cognito

Ranking in Access Management

10th

Average Rating

7.6

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

No ranking in other categories

ForgeRock

Ranking in Access Management

8th

Average Rating

8.0

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Identity Management (IM) (9th), Customer Identity and Access Management (CIAM) (4th)

Mindshare comparison

As of April 2026, in the Access Management category, the mindshare of Amazon Cognito is 3.6%, down from 5.8% compared to the previous year. The mindshare of ForgeRock is 4.8%, down from 6.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Access Management Mindshare Distribution
Product	Mindshare (%)
ForgeRock	4.8%
Amazon Cognito	3.6%
Other	91.6%

Access Management

Featured Reviews

Bibhupada Meher

Staff Software Engineer at Visa

Custom authentication has enabled secure multi-factor logins and unified access across apps

The features or capabilities of Amazon Cognito that I have found the most valuable so far include its seamless operation and the requirement of fewer integrations from the client side. All the features are there, enabling us to create the users, manage the groups, and manage access. Mostly, the access management is very good in Amazon Cognito, I would say. The benefits and positive impacts that Amazon Cognito has had in my experience include the fact that earlier we needed to implement so many things on behalf of the product itself. Now, the go-to-market strategy requires less than a week to complete integrations of the user flow, specifically mentioning that a basic authentication flow could be completed in a week itself. We don't have to care about how we manage the passwords, how we manage groups, and how we manage access management because all those things are there. It's handy, the documentation is very good, and it is easy to integrate. That's the reason I would say that the impact AWS is building on the product is great.

Read full review

Shreya Reddy

Software Engineer at a financial services firm with 10,001+ employees

Centralized access control has improved secure onboarding and supports strict compliance

I wish we had used ForgeRock's adaptive risk-based authentication, which allows dynamic adjustment of authentication requirements based on user behavior. This could have helped us further strengthen our security. Another hidden gem is the built-in support for custom authentication modules and scripting, which gives a great deal of flexibility to tailor authentication flows. The self-service capabilities for password resets and account recovery have been very helpful in reducing support overhead and improving user experience. Discovering and utilizing these features would have definitely made our integration even smoother and would have provided additional value for both our users and our security team. One area of improvement would be the user interface for policy and workflow configuration, which can become complex and sometimes unintuitive, especially for new administrators. A more streamlined and user-friendly UI would help reduce the learning curve. Enhanced out-of-the-box analytics and reporting would also be valuable, as our current options often require custom development or integration with external tools. While extensibility is a strength, documentation for advanced customizations and integrations could be more comprehensive and easier to follow. Improved support for seamless upgrades and backward compatibility would also help minimize downtime. In terms of performance, optimizing the platform for high concurrency environments would be beneficial, especially for organizations with large user bases or peak usage periods. Enhanced scalability features such as more granular or horizontal scaling options would provide better support for distributed deployments. For integrations, having more pre-built connectors and easy integration with modern cloud-native services would accelerate adoption. Improved monitoring and real-time health dashboards would help proactively identify and resolve performance bottlenecks.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The multi-factor authentication setup has room for improvement."

"The federation is one of the most efficient features as the pricing is competitive."

"I would recommend Cognito for users who are already AWS customers."

"I rate Amazon Cognito nine out of ten."

"The features or capabilities of Amazon Cognito that I have found the most valuable so far include its seamless operation and the requirement of fewer integrations from the client side."

"What is quite valuable is that we can outsource storage of the credentials to AWS, and they manage it quite securely."

"The most valuable features of Amazon Cognito are OTP validation and email validation."

"One of the key benefits of this software is its ease of integration with a wide range of applications, including mobile apps and web applications. This simplifies the process of integration, and it can be seamlessly incorporated with Azure, Kubernetes, and other software systems."

More Amazon Cognito pros

"For our client, which we are deploying for, the solution seems to be offering them really great value."

"Flexibility in the customisation. Out-of-the-box support for almost all authentication mechanisms/products."

"The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent."

"Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users."

"One of the interesting projects was to use ForgeRock as software as a service for the biggest telecommunication company in Switzerland, where they used it as a service for their customers."

"In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments."

"ForgeRock is an extensive product with many functionalities and capabilities, much more than many other tools combined."

"We used it to implement multi-factor authentication and to improve our security posture as well as reducing the potential for attacks."

More ForgeRock pros

Cons

"There is room for improvement in Amazon Cognito."

"Amazon Cognito could improve by simplifying the configuration."

"Cognito has the possibility to render the login screen and all the customer flows related to managing the account. Still, it's useless in an international setup. They are unable to localize these screens, so we had to write our own screens and just use the Cognito API."

"The ease and simplicity of integration could be improved when using this solution. When using Okta, scope is a single endpoint with a parameter as a scope, but in Cognito, for each scope, there is a separate endpoint."

"What I found generally lacking in AWS is privileged access management (PAM)."

"In a future release, we would like to have different methods to validate the characteristic of a user. For example, we would like to use biometric data to analyze the behavior of users."

"The setup and configuration can be complex, especially for advanced use cases."

"The MFA related to the solution's side is nonexistent."

More Amazon Cognito cons

"The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution."

"I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required."

"The product's customization is a bit complicated."

"We would like this solution to be developed for use with mobile applications."

"The solution requires more simplified customization."

"You have to be careful about customizing the solution, and how to sustain it across your teams."

"ForgeRock can be improved by making it easier to understand the licensing and upgrade protocols."

"The product's support services in the French language are not free."

More ForgeRock cons

Pricing and Cost Advice

"We pay $600 monthly per user for licences and there are no other additional costs."

"The pricing is bad so I rate it a two out of ten."

"The price of the solution depends on the number of users using it."

"The price of Amazon Cognito is low. The pricing model is based on the users."

"The product is relatively inexpensive compared to other tools."

"The price of Amazon Cognito is expensive. We are on an annual subscription."

"The pricing of this solution is good compared to other solutions on the market."

"On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a five out of ten."

"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."

"Its price is comparable to other products in the market."

"ForgeRock is an expensive solution."

"The pricing of the solution is fair but I do not have the full details."

"The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end."

"ForgeRock's pricing is more competitive than other products."

"It's a bit pricey and could be more competitive."

"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."

See which vendors are best for you

Use our free recommendation engine to learn which Access Management solutions are best for your needs.

See recommendations

889,955 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Comms Service Provider

11%

Computer Software Company

Manufacturing Company

Financial Services Firm

20%

Manufacturing Company

Computer Software Company

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	4
Large Enterprise	5

By reviewers
Company Size	Count
Small Business	15
Midsize Enterprise	5
Large Enterprise	18

Questions from the Community

What do you like most about Amazon Cognito?

The most valuable feature of the solution is its swift authentication.

See all answers

What is your experience regarding pricing and costs for Amazon Cognito?

I am aware that the pricing of Amazon Cognito is not managed by me directly but is managed by some other teams, specifically the DevOps teams. As far as I know, it is based on how many users we hav...

See all answers

What needs improvement with Amazon Cognito?

I think Amazon Cognito provides less flexibility to customize at the moment. It is very tightly coupled with its own services, so it does not provide customization according to what the client need...

See all answers

What is your experience regarding pricing and costs for ForgeRock?

The pricing, setup cost, and licensing are very straightforward, which is a good success. I appreciate that it is very straightforward and helpful.

See all answers

What needs improvement with ForgeRock?

There are some areas I want ForgeRock to improve. These areas include policy configuration, documentation clarity, UI complexity, and debugging token flow. I want ForgeRock to improve in documentat...

See all answers

What is your primary use case for ForgeRock?

I am using ForgeRock for standard support, policy configurations, and documentation clarity. The pricing, setup cost, and licensing are very straightforward, which is a good success. I appreciate t...

See all answers

Comparisons

Microsoft Entra ID vs Amazon Cognito

Compared 29% of the time

Auth0 Platform vs Amazon Cognito

Compared 11% of the time

Cloudflare One vs Amazon Cognito

Compared 9% of the time

OneLogin vs Amazon Cognito

Compared 6% of the time

Symantec Siteminder vs Amazon Cognito

Compared 3% of the time

More Amazon Cognito Competitors

Microsoft Entra ID vs ForgeRock

Compared 9% of the time

SecureAuth Identity Platform vs ForgeRock

Compared 7% of the time

Ping Identity Platform vs ForgeRock

Compared 6% of the time

SailPoint Identity Security Cloud vs ForgeRock

Compared 6% of the time

Okta Platform vs ForgeRock

Compared 5% of the time

More ForgeRock Competitors

Product Reports

Buyer's Guide

Amazon Cognito

April 2026

Download Amazon Cognito product report

Buyer's Guide

ForgeRock

April 2026

Download ForgeRock product report

Also Known As

No data available

ForgeRock Identity Platform, ForgeRock OpenIDM

Overview

Amazon Cognito is a simple user identity and data synchronization service that helps you securely manage and synchronize app data for your users across their mobile devices. You can create unique identities for your users through a number of public login providers (Amazon, Facebook, and Google) and also support unauthenticated guests. You can save app data locally on users’ devices allowing your applications to work even when the devices are offline. With Amazon Cognito, you can save any kind of data in the AWS Cloud, such as app preferences or game state, without writing any backend code or managing any infrastructure. This means you can focus on creating great app experiences instead of having to worry about building and managing a backend solution to handle identity management, network state, storage, and sync.

Amazon Web Services (AWS)

ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.

With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy to use, and graphical dashboard. ForgeRock Access Management allows you to build safe authentication using options like passwordless and usernameless logins, single sign-on, biometrics, contextual analytics, and behavioral authentication. When threats appear, you can swiftly change how your users access your most sensitive applications and provide users with secure access to the applications, systems, and resources they need on demand.

ForgeRock Benefits and Key Features

Elevate your security and efficiency: Consolidating your legacy systems under one single platform provides reliable, unified control over all your user identities and access-related policies. ForgeRock Access Management also supports scaling existing policies for application onto new setups.
Passwordless authentication: Implementing passwordless authentication is simple with ForgeRock Access Management. You can easily replace user-selected passwords with other options, such as easy multi-factor authentication, biometrics, and SSO.
Identity governance: ForgeRock Identity Governance is a modern, AI-driven identity governance solution. By leveraging ForgeRock generated analysis reports, you can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low-risk accounts, and review high-risk and inappropriate user access privileges. In addition, you can grant and enforce access to systems, applications, and infrastructure according to established policies.

Reviews from Real Users

ForgeRock stands out among its competitors for a number of reasons. Two major ones are its robust identity and access tools and its being easy to manage and scale with one central dashboard.

PeerSpot users note the effectiveness of these features. A technology solutions leader at an outsourcing company writes, “We need it for multiple clients, multiple implementations. Not all of them are necessarily a multi-tenant solution. We need a very versatile solution that can do a lot of work, but from a single instance that we can centralize authentications and we don't duplicate the efforts and that's where ForgeRock seems to do better.”

Mohamed B., a cyber security consultant at a tech company, writes, "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users. ForgeRock secured our system so that it is accessed only by authorized people, and it implemented the SSO."

Ping Identity

Sample Customers

Expedia, Intuit, Royal Dutch Shell, Brooks Brothers

Geico, Thomson Reuters, Salesforce, McKesson, Trinet, SKY, BNP Paribas, Deloitte, Capgemini, North Western University

Buyer's Guide

Amazon Cognito vs. ForgeRock

April 2026

Free Report: Amazon Cognito vs. ForgeRock

Find out what your peers are saying about Amazon Cognito vs. ForgeRock and other solutions. Updated: April 2026.

DOWNLOAD NOW

889,955 professionals have used our research since 2012.

See our Amazon Cognito vs. ForgeRock report.

See our list of best Access Management vendors.

We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.