We performed a comparison between Auth0 and ForgeRock based on real PeerSpot user reviews.
Find out in this report how the two Access Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most important thing for me is compliance. Everything that they have developed in Auth0 is already certified by many regulators such as ISO. So, we do not need to take care of that. We have the shared responsibility model to share assets with other products we are using in the cloud."
"It is very scalable because it provides a new environment for companies based on their number of users and other factors. The tool can take a lot of users."
"I simply use the JWT from the client on the server side to process requests and push updated profile data to a database/queue as needed and end the process without having to persist data in the web server (sessions)."
"The valuable features are that it is extremely secure and that it's developer-friendly."
"It's a very powerful platform. It has the ability to do the usual stuff, according to modern protocols, like OIDC and OAuth 2. But the real benefit of using the platform comes from its flexibility to enhance it with rules and, now, with what they call authentication pipelines. That is the most significant feature, as it allows you to customize everything regarding the authentication and authorization process."
"It has a lot of customization and out-of-the-box features."
"The most valuable feature is that it is simple to integrate, irrespective of your codebase."
"It is easily connected and easy to put our app in single sign-on."
"We have found the identity and access management tools in the solution to be particularly useful for our organization."
"The product is easy to set up."
"The solution is very scalable. We have a lot of users that have been increasing over the years that we have been using it. We have approximately 20,000 users."
"I like the intelligent authentication feature."
"ForgeRock is an extensive product with many functionalities and capabilities, much more than many other tools combined."
"ForgeRock has CIAM, which other products didn't have, and they have DevOps ready."
"The most valuable features are that it is easy to manage and it's stable."
"The most valuable features of ForgeRock are social login and data protection."
"The Management API could be improved so it's easier to get user information."
"The price modelling is a bit confusing on the site and can be costly."
"There is a possibility to improve the machine-to-machine authentication flow. This part of Auth0 is not really well documented, and we could really gain some additional knowledge on that."
"When they introduced the Organizations feature they did support different login screens per organization. However, they introduced a dependency between this feature and another called the New Universal Login Experience. The New Experience is a more lightweight login screen, but it is much less customizable. For example, today, we are able to fully customize our login screen and even control the background image according to the time of day. We have code to do that. But we are not able to write code anymore in the New Experience."
"There could be easy integration with IoT devices for the product."
"The product support for multi-tenancy could be improved."
"I think they can do a better job in explaining what you're supposed to do next in order to correctly follow an idiomatic approach to using the solution beyond simply passing a JWT token to a server and having the server check then signature to validate the token."
"The tool's price should be improved."
"As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively."
"I find that it's quite expensive for just an open-source system. Support is quite expensive."
"We would like this solution to be developed for use with mobile applications."
"The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution."
"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."
"We raised tickets asking for improvements, but sometimes we don't get the proper solution. They are responding, but the ticket is open for weeks and weeks. For some issues, we don't get a satisfactory solution or the solution doesn't work."
"ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant."
"The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI."
Auth0 is ranked 2nd in Access Management with 14 reviews while ForgeRock is ranked 5th in Access Management with 27 reviews. Auth0 is rated 8.2, while ForgeRock is rated 8.0. The top reviewer of Auth0 writes "Has good documentation but improvement is needed in MFA and application configurations ". On the other hand, the top reviewer of ForgeRock writes "Governance and access management solution used for multi-factor authentication that is outdated with an unresponsive UI". Auth0 is most compared with Microsoft Entra ID, Amazon Cognito, Frontegg, Cloudflare Access and Microsoft Entra Verified ID, whereas ForgeRock is most compared with SailPoint Identity Security Cloud, Ping Identity Platform, Microsoft Entra ID, Symantec Siteminder and Saviynt. See our Auth0 vs. ForgeRock report.
See our list of best Access Management vendors and best Customer Identity and Access Management (CIAM) vendors.
We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.