Amazon Cognito vs ForgeRock comparison

Amazon Web Services (AWS) and Ping Identity are both solutions in the Access Management category. Amazon Web Services (AWS) is ranked #9 with an average rating of 7.6, while Ping Identity is ranked #11 with an average rating of 8.0. Amazon Web Services (AWS) holds a 7.0% mindshare in AM, compared to Ping Identity’s 7.2% mindshare. Additionally, 80% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 92% of Ping Identity users who would recommend it.

Amazon Cognito

Read 15 Amazon Cognito reviews

1,948 Views
1,831 Comparison Views

80% willing to recommend

ForgeRock

Read 30 ForgeRock reviews

4,421 Views
2,166 Comparison Views

92% willing to recommend

Amazon Cognito

ForgeRock

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 11, 2024

ForgeRock and Amazon Cognito compete in the identity and access management category. ForgeRock has the upper hand in features and flexibility, while Amazon Cognito is favored for its seamless integration with AWS.

Features: ForgeRock provides comprehensive identity management, policy enforcement, and extensive customization. Amazon Cognito offers seamless integration with AWS services, automatic scaling, and user authentication management.

Room for Improvement: ForgeRock could improve documentation, reduce the learning curve, and enhance UI/UX. Amazon Cognito needs better support, more detailed feature documentation, and additional customization options.

Ease of Deployment and Customer Service: ForgeRock’s deployment is complex due to extensive customization, but has highly rated customer service. Amazon Cognito is easier to deploy in AWS environments, but its support needs improvement.

Pricing and ROI: ForgeRock has higher setup costs justified by its comprehensive features, providing strong ROI. Amazon Cognito offers lower upfront costs, making it cost-effective within AWS ecosystems, though sometimes lacking advanced features.

To learn more, read our detailed Amazon Cognito vs. ForgeRock Report (Updated: June 2025).

Buyer's Guide

Amazon Cognito vs. ForgeRock

June 2025

Download the complete report

Helped 861,524 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Amazon Cognito

Ranking in Access Management

9th

Average Rating

7.4

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

No ranking in other categories

ForgeRock

Ranking in Access Management

11th

Average Rating

8.0

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Identity Management (IM) (13th), Customer Identity and Access Management (CIAM) (6th)

Mindshare comparison

As of July 2025, in the Access Management category, the mindshare of Amazon Cognito is 7.0%, up from 6.5% compared to the previous year. The mindshare of ForgeRock is 7.2%, up from 6.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Access Management

Featured Reviews

Wojciech Doganowski

Solutions Architect & PMO at AS TV Play Baltics/TV3 Group

International setup localization challenges drive custom development while outsourcing credential management enhances security

We are using it in an international setup where we have multiple services running in multiple countries. Cognito localizes only regarding language, but the service is localized in each country. Cognito has the possibility to render the login screen and all the customer flows related to managing the account. Still, it's useless in an international setup. They are unable to localize these screens, so we had to write our own screens and just use the Cognito API. I hope they will fix this soon because it's useful to rely on already prepared flows for all the account management. As it doesn't work with different languages, rewriting it is quite complicated. Additionally, maybe they could find another step in the price so there is not such a significant jump from the basic to extended functionality. Some flexibility would be helpful.

Read full review

Ahmet Murat Ülker

Devops Engineer and Trainer at a tech vendor with 1-10 employees

Easy to use, but customizations can be complicated to handle

I would suggest others use the product after asking them to consider their use cases. SSO may be a use case for some, and using the product as an IDM tool may be a use case. At the moment, my company is not deploying all the components of ForgeRock itself. My company uses ForgeRock for OAuth 2.0. For example, my company is not deploying the IDM and identity gateway components. You should consider your use case and select the required components for that use case. My company does not use the SSO features of the tool. My company uses SSO to access ForgeRock's AM Console for individual users. My company does not use single sign on features of the product and instead, we use Auth0. I rate the tool a seven or eight out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"What is quite valuable is that we can outsource storage of the credentials to AWS, and they manage it quite securely."

"I appreciate Amazon Cognito's ability to scale with demand and its seamless user verification features."

"I rate Amazon Cognito nine out of ten."

"The solution is proto connective and integrates well with other AWS services."

"The federation is one of the most efficient features as the pricing is competitive."

"One of the key benefits of this software is its ease of integration with a wide range of applications, including mobile apps and web applications. This simplifies the process of integration, and it can be seamlessly incorporated with Azure, Kubernetes, and other software systems."

"Cognito speeds up our development and saves us time."

"The most valuable features of Amazon Cognito are the pre and post-token generation, and the different Cognito triggers. It has lots of functionality and flexibility."

More Amazon Cognito pros

"Easy to navigate, handle and manage the applications."

"I like the intelligent authentication feature."

"It works very well, especially in Identity and Access Management. It helps detect anomalies in user behavior patterns."

"ForgeRock is an extensive product with many functionalities and capabilities, much more than many other tools combined."

"In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments."

"The product is easy to set up."

"I like the way it is handling authentication and authorization."

"The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it."

More ForgeRock pros

Cons

"Cognito triggers can improve by providing more direct use cases rather than giving a white paper. A white paper is not at all interesting, it has too many details. It would be a benefit to provide a smaller document that is summarized. The smaller version would bring microdata, macro data is not helpful."

"The setup and configuration can be complex, especially for advanced use cases."

"The MFA related to the solution's side is nonexistent."

"I believe this product could improve by enriching user profiles."

"Amazon Cognito could be improved by making it easier for us to add more data to the token, allowing customization of JWT. It requires a complex program to customize the token currently, however, the UI could support this configuration better."

"In a future release, we would like to have different methods to validate the characteristic of a user. For example, we would like to use biometric data to analyze the behavior of users."

"Amazon Cognito could improve by simplifying the configuration."

"There is room for improvement in Amazon Cognito."

More Amazon Cognito cons

"The solution's deployment should be made easier."

"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."

"I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required."

"Lacks simplified documentation within the tool that requires use of a separate portal."

"It should have a better user interface. Its flexibility should also be improved. It is not about simplifying; it is more about flexibility. Each company has its own requirements, and ForgeRock can provide more flexibility in terms of the use of existing modules to implement features for the customers."

"Automatic Deployment needs improvement. it could be made easier."

"The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI."

"ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant."

More ForgeRock cons

Pricing and Cost Advice

"The price of Amazon Cognito is expensive. We are on an annual subscription."

"The price of Amazon Cognito is low. The pricing model is based on the users."

"The price of the solution depends on the number of users using it."

"The pricing of this solution is good compared to other solutions on the market."

"The product is relatively inexpensive compared to other tools."

"We pay $600 monthly per user for licences and there are no other additional costs."

"On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a five out of ten."

"The pricing is bad so I rate it a two out of ten."

"Its price is comparable to other products in the market."

"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."

"ForgeRock's pricing is more competitive than other products."

"It's a bit pricey and could be more competitive."

"ForgeRock is an expensive solution."

"The pricing of the solution is fair but I do not have the full details."

"The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end."

"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."

See which vendors are best for you

Use our free recommendation engine to learn which Access Management solutions are best for your needs.

See recommendations

861,524 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Comms Service Provider

10%

Financial Services Firm

Manufacturing Company

Financial Services Firm

23%

Computer Software Company

12%

Insurance Company

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Amazon Cognito?

The most valuable feature of the solution is its swift authentication.

See all answers

What is your experience regarding pricing and costs for Amazon Cognito?

The basic functionality is reasonably priced, but the extended functionalities, especially the extended security, are quite expensive. There is a significant jump from the basic to the extended fun...

See all answers

What needs improvement with Amazon Cognito?

See all answers

What do you like most about ForgeRock?

The most valuable features of ForgeRock are social login and data protection.

See all answers

What is your experience regarding pricing and costs for ForgeRock?

Our company was considering switching back to Keycloak from ForgeRock, so as to not pay any license fees. ForgeRock also supports M-PIN and biometric features that Keycloak does not provide. My com...

See all answers

What needs improvement with ForgeRock?

In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't think ForgeRock directly supports integrations with Slack, making it an area wher...

See all answers

Comparisons

Microsoft Entra ID vs Amazon Cognito

Compared 61% of the time

Auth0 vs Amazon Cognito

Compared 11% of the time

Cloudflare One vs Amazon Cognito

Compared 9% of the time

Ping Identity Platform vs Amazon Cognito

Compared 3% of the time

Okta Workforce Identity vs Amazon Cognito

Compared 3% of the time

More Amazon Cognito Competitors

Microsoft Entra ID vs ForgeRock

Compared 23% of the time

SailPoint Identity Security Cloud vs ForgeRock

Compared 11% of the time

Ping Identity Platform vs ForgeRock

Compared 11% of the time

Auth0 vs ForgeRock

Compared 9% of the time

Okta Workforce Identity vs ForgeRock

Compared 2% of the time

More ForgeRock Competitors

Product Reports

Buyer's Guide

Amazon Cognito

July 2025

Download Amazon Cognito product report

Buyer's Guide

ForgeRock

July 2025

Download ForgeRock product report

Also Known As

No data available

ForgeRock Identity Platform, ForgeRock OpenIDM

Overview

Amazon Cognito is a simple user identity and data synchronization service that helps you securely manage and synchronize app data for your users across their mobile devices. You can create unique identities for your users through a number of public login providers (Amazon, Facebook, and Google) and also support unauthenticated guests. You can save app data locally on users’ devices allowing your applications to work even when the devices are offline. With Amazon Cognito, you can save any kind of data in the AWS Cloud, such as app preferences or game state, without writing any backend code or managing any infrastructure. This means you can focus on creating great app experiences instead of having to worry about building and managing a backend solution to handle identity management, network state, storage, and sync.

Amazon Web Services (AWS)

ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.

With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy to use, and graphical dashboard. ForgeRock Access Management allows you to build safe authentication using options like passwordless and usernameless logins, single sign-on, biometrics, contextual analytics, and behavioral authentication. When threats appear, you can swiftly change how your users access your most sensitive applications and provide users with secure access to the applications, systems, and resources they need on demand.

ForgeRock Benefits and Key Features

Elevate your security and efficiency: Consolidating your legacy systems under one single platform provides reliable, unified control over all your user identities and access-related policies. ForgeRock Access Management also supports scaling existing policies for application onto new setups.
Passwordless authentication: Implementing passwordless authentication is simple with ForgeRock Access Management. You can easily replace user-selected passwords with other options, such as easy multi-factor authentication, biometrics, and SSO.
Identity governance: ForgeRock Identity Governance is a modern, AI-driven identity governance solution. By leveraging ForgeRock generated analysis reports, you can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low-risk accounts, and review high-risk and inappropriate user access privileges. In addition, you can grant and enforce access to systems, applications, and infrastructure according to established policies.

Reviews from Real Users

ForgeRock stands out among its competitors for a number of reasons. Two major ones are its robust identity and access tools and its being easy to manage and scale with one central dashboard.

PeerSpot users note the effectiveness of these features. A technology solutions leader at an outsourcing company writes, “We need it for multiple clients, multiple implementations. Not all of them are necessarily a multi-tenant solution. We need a very versatile solution that can do a lot of work, but from a single instance that we can centralize authentications and we don't duplicate the efforts and that's where ForgeRock seems to do better.”

Mohamed B., a cyber security consultant at a tech company, writes, "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users. ForgeRock secured our system so that it is accessed only by authorized people, and it implemented the SSO."

Ping Identity

Sample Customers

Expedia, Intuit, Royal Dutch Shell, Brooks Brothers

Geico, Thomson Reuters, Salesforce, McKesson, Trinet, SKY, BNP Paribas, Deloitte, Capgemini, North Western University

Buyer's Guide

Amazon Cognito vs. ForgeRock

June 2025

Free Report: Amazon Cognito vs. ForgeRock

Find out what your peers are saying about Amazon Cognito vs. ForgeRock and other solutions. Updated: June 2025.

DOWNLOAD NOW

861,524 professionals have used our research since 2012.

See our Amazon Cognito vs. ForgeRock report.

See our list of best Access Management vendors.

We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.