ForgeRock vs OneLogin by One Identity comparison

Ping Identity and One Identity are both solutions in the Identity Management (IM) category. Ping Identity is ranked #12 with an average rating of 8.5, while One Identity is ranked #11 with an average rating of 8.5. Ping Identity holds a 4.5% mindshare in IAM, compared to One Identity’s 1.0% mindshare. Additionally, 92% of Ping Identity users are willing to recommend the solution, compared to 100% of One Identity users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jan 5, 2025

ForgeRock and OneLogin by One Identity compete in identity and access management. While ForgeRock offers superior security features, OneLogin distinguishes itself with its seamless integration and wide application support, making it more flexible for diverse needs.

Features: ForgeRock includes adaptive security, identity orchestration, and intelligent authentication. OneLogin by One Identity offers smart factor authentication, single sign-on, and robust directory integration, providing enhanced user management.

Room for Improvement: ForgeRock could improve its deployment complexity, reduce costs, and streamline customization options. OneLogin by One Identity might enhance application diversity for single sign-on, expand detailed reporting capabilities, and boost scalability options for larger environments.

Ease of Deployment and Customer Service: ForgeRock's deployment is complex but is paired with excellent customer support. OneLogin by One Identity facilitates easier deployment with efficient customer service, offering a more user-friendly experience for implementation.

Pricing and ROI: ForgeRock requires a significant initial investment, justified for security-focused organizations. OneLogin by One Identity is more cost-effective, delivering quicker ROI due to lower setup costs and faster implementation, enhancing its appeal in budget-sensitive scenarios.

To learn more, read our detailed ForgeRock vs. OneLogin by One Identity Report (Updated: February 2025).

Buyer's Guide

ForgeRock vs. OneLogin by One Identity

February 2025

Download the complete report

Helped 842,388 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Omada Identity

Mindshare comparison

As of March 2025, in the Identity Management (IM) category, the mindshare of Omada Identity is 3.2%, down from 3.4% compared to the previous year. The mindshare of ForgeRock is 4.5%, down from 5.4% compared to the previous year. The mindshare of OneLogin by One Identity is 1.0%, down from 1.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Identity Management (IM)

Featured Reviews

Pernilla Hulth

IAM Project Manager (Independent) at a retailer with 10,001+ employees

The interface is easy to use and gives you a solid overview

The cloud-based deployment was straightforward, but the on-prem deployment was in a highly complex ecosystem. Omada has matured since then. I wouldn't say that it isn't straightforward, but it depends on the customer. A standard deployment is relatively easy, but it can be more painful if you need a lot of customization. We deployed the cloud solution in around four months, nearly meeting the 12-week benchmark. The on-prem deployment took three years. It was a highly complex ecosystem that was dependent on other systems. Depending on the size of your environment, you need a product owner and some specialists for maintenance. My last customer was a university with a complex environment. They had around 12 people involved in maintenance at that organization. Typically, it's between 2-5 people.

Read full review

Trisha Bhola

Senior Associate at Cognizant

It's easier to customize and maintain our code

I worked on two different projects based on ForgeRock, and both are automated deployments. One is a UI-based deployment. It's an automated process using some scripts. The deployments are done through Octopus, so it's also automated. We first deploy the essential components of AM and then implement additional configurations like Amster Imports. After that, we import all the SAML Federation data and add some certificates. We have two teams of five and three team members working on the different deployment processes. One is working on the dev side, another is looking at the higher environment, and one is managing the data. In another project, I'm the only developer. We also deploy on the dev environments so that anyone can test new features, configurations, and client requirements. They can test it on the dev environment, but a team of four people manages higher environments. The Access Management component involves the most customization, which takes around 15 to 20 minutes because of the need to import the Amster configuration. If another deployment is simultaneously happening, it may be a little slower and take around 30 minutes. The other components, like the user data stores, take about five to seven minutes. It's another five to 10 minutes for Identity Management. After deployment, the maintenance is mostly checking for security vulnerabilities. If ForgeRock shares security vulnerabilities or advisories, we check to see if there is something inside we need to maintain. Other than that, we just install updates when they add features each month.

Read full review

Pete Snell

IT Director at Florida State College at Jacksonivlle

Staff and students can now reset their passwords using their enrolled two-factor device as the authentication mechanism

We've been a OneLogin customer for several years now. While I like the platform, there have been some challenges. A great example is the amount of work needed with that webhook for the enrollment user experience. This functionality is native to some competing products. That's one area where we've leaned on our account rep over the years. They shouldn't rely on the customer to make this experience better. This is one feature request that hasn't been implemented yet. At the same time, they've implemented other features we've requested. One is the ability to use a personal email address as a factor. Initially, they didn't have that. We pushed hard on our account team for about two years before it was finally released. It's a give-and-take. Some of the product's features aren't perfect, but we've had some success pushing fixes to the development team that needs to happen. They've done a decent job. However, there are some fixes that they don't have an interest in. A lot of what I described was before OneLogin was acquired by Quest/One Identity. Things have changed. It doesn't feel like they're driving the product as OneLogin was. It may be because it's a new product to them, and they're still trying to get the lay of the land, process feature requests, etc., but it's not moving as fast as before. We've been experiencing some pain points since the acquisition. For example, there have been some outages we didn't see previously, which are a big topic with my executive team. You have hundreds of applications relying on this service for login. If the service is unavailable, nobody can log into these applications. The issues have high visibility. It's gotten better, but it's still there. It raises questions about whether One Identity can support the platform they've acquired. How are they enhancing the product? And how are they supporting the product and the service in the future? Those are two essential questions. There are also lots of nice-to-haves, but that's the case with any product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Omada's onboarding features reflect our processes for onboarding new employees well. That is the primary reason we use this solution. We use role-based access control. I'm not sure how much it has improved our security posture, but it's made managing identities more convenient."

"We used to have a problem where an employee's access wasn't terminated when they left the company. Now, we have much better visibility into and control over who has access."

"I appreciate all the support we receive from Omada."

"Surveying is a valuable feature because it allows us to import data and see who has access to what data, for example."

"The customer success and support teams have been crucial."

"Omada offers a technical solution that addresses both our needs."

"What I like most is that we can always find a solution, and we can also find the cause when something goes wrong. I like that the most because everything is in one way or another traceable. That is what I like most. I like its reliability."

"Two valuable features of Omada Identity are the ability to discover accounts and link them to identities, and the automatic disabling of inactive accounts or identities."

More Omada Identity pros

"We create and define the permissions and configurations for the users."

"In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments."

"The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent."

"This is a stable solution. When you do experience any issues, you will see it in your DB logs or audit logs so you can easily reach a conclusion of might be causing it."

"I like the way it is handling authentication and authorization."

"The product is easy to use in a development environment."

"Installation and configuration are pretty easy for ForgeRock OpenIDM."

"We used it to implement multi-factor authentication and to improve our security posture as well as reducing the potential for attacks."

More ForgeRock pros

"Ease of integration with AD."

"The directory integration and SCIM provisioning are probably the best features compared to competitors."

"When it comes to access management, the solution's single pane of glass is extremely important. The single pane of glass for access management enables collaborative work between IT and security. We have access to certain applications that require device trust. Based on the role, we can access those applications through OneLogin Desktop."

"The single sign-on and the fact that we can integrate everything in one place and control from there were valuable features of this solution."

"The solution allows the user to search logs based on a specific time."

"One aspect I particularly appreciate is their exceptional customer support whenever I've needed assistance."

"OneLogin is efficient."

"Once I made the OneLogin ID, it would essentially make user names and passwords for every application that we had."

More OneLogin by One Identity pros

Cons

"The account management integration isn't bad, but it isn't plug-and-play like Microsoft Azure. You need some deep development knowledge to set up the connectors."

"When making a process, you should be able to use some coding to do some advanced calculations. The calculations you can currently do are too basic. I would also like some additional script features."

"There's a challenge with handling large amounts of data in this system."

"If you're running Omada on a cloud service, you may have some issues deploying the newest release. Sometimes, the latest release doesn't adapt to the processes we have already installed. Identity Access Management is a critical system for our organization, and we need to ensure that everyone has the same access as they did before the release."

"The backend is pretty good but the self-service request access screen, the GUI, needs improvement. It's an old-fashioned screen. Also, Omada has reports, but I wouldn't dare show them to the business because they look like they're from 1995. I know they are working on these things and that’s good, because they’re really needed."

"Omada's performance could be better because we had some latency issues. Still, it's difficult to say how much of that is due to Omada versus the resources used by our other vendors in our on-prem environment. Considering the resources we have invested into making it run well, it's slightly slower than we would expect."

"I am not working with the product, but they have this BI tool for role-based mining, and I think that should be included in the core product rather than an add-on."

"When you do a recalculation of an identity, it's hard to understand what was incorrect before you started the recalculation, and which values are actually updated... all you see are all the new fields that are provisioned, instead of seeing only the fields that are changed."

More Omada Identity cons

"The solution's deployment should be made easier."

"Lacks simplified documentation within the tool that requires use of a separate portal."

"The product's support services in the French language are not free."

"I think the upgrade process is sometimes a little complicated and there are failures that occur."

"As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively."

"We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced."

"The product's customization is a bit complicated."

"The solution's documentation is not very good, and they do not give more details."

More ForgeRock cons

"To offboard, you have to manually click on this checklist, each of the checkmarks. It would actually be really nice if, for offboarding someone, you just click "offboard" and it automatically runs a script to do that."

"The solution keeps going down for many hours, which impacts the entire company. You can't access any applications. OneLogin Desktop has a huge problem where it locks your computers and you need to reset the whole computer, which is pretty insane."

"While I initially used OneLogin's desktop feature to extend SSO, I discontinued it two years ago due to limitations."

"The tool must be made more robust."

"OneLogin needs to increase the number of connectors available out of the box to connect to the different endpoints. The number of out-of-box connectors should be increased."

"In terms of managing the users on a large scale, it would be easier if they had some kind of user management portal."

"They have downtime twice a year or once in six months. During the downtime, the SSO page did not come up. When users wanted to get to their email, they were redirected to the OneLogin page, but the page did not come up, and MFA and logins failed. It completely crippled us."

"I'd like OneLogin to have a customization section that displays the company's offerings, categorized by different topics."

More OneLogin by One Identity cons

Pricing and Cost Advice

"Omada continues to be very competitive on pricing, especially on the Omada cloud product."

"It is not cheap. None of these solutions are cheap, but we have good pricing at least for now from a licensing perspective."

"It's a fair price for the on-premises system. Compared with what we had before, it's much cheaper and we get all the modules in one. We tried to go with the cloud, but it was far too expensive."

"From an on-prem point of view, the cost is quite transparent and reasonable. The direct cost is primarily for licenses and maintenance on licenses."

"While Omada Identity carries a premium price tag, it proves to be cost-effective."

"Being Dutch, I can only say that it is extremely expensive, but all software products are expensive. If you have 38,000 users, then even one dollar or one euro per person would amount to a significant amount of money. Because of the high number of users, anything gets expensive very fast here."

"There were a lot of administrator, partner, and supplier accounts for people who were no longer working for us but still in the system. So, we reduced the number of users no longer with the company, which saved us some money on licensing."

"The initial total cost of ownership to implement Omada Identity is not small. The TCO for the implementation is as high as any other solution. However, the cost of maintaining the solution is at par or lower than competitors, including adding more features or maintaining the system after the initial deployment or installation to make sure that they are available for users to use or extending the functionalities of those activities. Those maintenance costs are lower than other vendors, but the initial cost of getting the system installed is still high."

More Omada Identity pricing and cost advice

"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."

"Its price is comparable to other products in the market."

"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."

"It's a bit pricey and could be more competitive."

"ForgeRock is an expensive solution."

"ForgeRock's pricing is more competitive than other products."

"The pricing of the solution is fair but I do not have the full details."

"The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end."

"While I wish OneLogin's pricing was more affordable, their licensing model, which is based on per user, is acceptable."

"The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it."

"The pricing and licensing are reasonable. It is much cheaper than other products."

"It was cheap in the beginning, and then it became very expensive. We were initially charged $2 per user per month, which was fine, but by the second year, they increased it to $5 per user. That became very expensive for us because we had about 1,500 users. At $2 per user, it comes out to be $3,000 a month, which is $36,000 a year. If we move to $5 per user, it comes out to be $7,500 a month. That made its cost so high. That is why we removed the product because the cost was high."

"OneLogin's pricing, from the perspective of the education sector, seems quite reasonable for the value it delivers."

"We were happy with the price we got when we signed up, but I don't know what will happen when the time comes to renew because it is a different company now. We haven't seen any pricing models or had that discussion yet. My renewal is a year and a half away. It's worth what we're paying for it. There's no way we could provide the level of service for cheaper or try to do the same in-house."

"Surprisingly expensive given the price of on-premise solutions."

"The price of the licensing is fine."

See which vendors are best for you

Use our free recommendation engine to learn which Identity Management (IM) solutions are best for your needs.

See recommendations

842,388 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

16%

Computer Software Company

13%

Manufacturing Company

Government

Financial Services Firm

24%

Computer Software Company

12%

Insurance Company

Government

Computer Software Company

25%

Financial Services Firm

Government

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Omada Identity Cloud?

As an administrator, we benefit from a lot of functionality that is available out of the box, but it is also configur...

See all answers

What is your experience regarding pricing and costs for Omada Identity Cloud?

They are positioned at a good price point. They are lower than some of their competitors.

See all answers

What needs improvement with Omada Identity Cloud?

The biggest issue, which is the reason why we are transitioning from their product to SailPoint, is the overall user ...

See all answers

What do you like most about ForgeRock?

The most valuable features of ForgeRock are social login and data protection.

See all answers

What is your experience regarding pricing and costs for ForgeRock?

Our company was considering switching back to Keycloak from ForgeRock, so as to not pay any license fees. ForgeRock a...

See all answers

What needs improvement with ForgeRock?

In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't t...

See all answers

What do you like most about OneLogin by One Identity?

OneLogin is efficient.

See all answers

What needs improvement with OneLogin by One Identity?

There have been some outages over the years. The uptime has not been great recently, with some outages lasting six, s...

See all answers

What is your primary use case for OneLogin by One Identity?

We use OneLogin by One Identity to provide SAML authentication and single sign-on for all of our SaaS apps.

See all answers

Comparisons

SailPoint Identity Security Cloud vs Omada Identity

Compared 31% of the time

Microsoft Entra ID vs Omada Identity

Compared 22% of the time

Saviynt vs Omada Identity

Compared 18% of the time

One Identity Manager vs Omada Identity

Compared 7% of the time

SAP Identity Management vs Omada Identity

Compared 6% of the time

More Omada Identity Competitors

Microsoft Entra ID vs ForgeRock

Compared 18% of the time

SailPoint Identity Security Cloud vs ForgeRock

Compared 14% of the time

Ping Identity Platform vs ForgeRock

Compared 9% of the time

Symantec Siteminder vs ForgeRock

Compared 8% of the time

Auth0 vs ForgeRock

Compared 8% of the time

More ForgeRock Competitors

Microsoft Entra ID vs OneLogin by One Identity

Compared 26% of the time

Okta Workforce Identity vs OneLogin by One Identity

Compared 16% of the time

LastPass vs OneLogin by One Identity

Compared 13% of the time

Auth0 vs OneLogin by One Identity

Compared 12% of the time

One Identity Manager vs OneLogin by One Identity

Compared 7% of the time

More OneLogin by One Identity Competitors

Product Reports

Buyer's Guide

Omada Identity

March 2025

Download Omada Identity product report

Buyer's Guide

ForgeRock

March 2025

Download ForgeRock product report

Buyer's Guide

OneLogin by One Identity

March 2025

Download OneLogin by One Identity product report

Also Known As

Omada Identity Suite, Omada Identity Cloud

ForgeRock Identity Platform, ForgeRock OpenIDM

OneLogin, OneLogin Workforce Identity

Overview

Omada Identity is an identity governance and administration (IGA) solution designed to help organizations manage and secure digital identities and access across their IT environments. It focuses on enhancing security, compliance, and efficiency by automating identity management processes.

Omada Identity offers a robust set of features that streamline identity lifecycle management, access governance, and compliance reporting. It integrates with a wide range of IT systems, applications, and data sources, providing a centralized platform for managing user identities and access rights. The solution enables organizations to enforce security policies, ensure regulatory compliance, and reduce the risk of unauthorized access.

What are the critical features of Omada Identity?

Identity Lifecycle Management: Automates the process of creating, updating, and deactivating user identities throughout their lifecycle.
Access Governance: Ensures that users have appropriate access rights, enabling continuous monitoring and recertification of access.
Compliance Reporting: Provides comprehensive reporting capabilities to demonstrate compliance with regulatory requirements.
Role-Based Access Control (RBAC): Simplifies the assignment and management of access rights based on user roles within the organization.
Self-Service Access Requests: Empowers users to request access to resources through a user-friendly portal, reducing administrative burden.
Integration Capabilities: Seamlessly integrates with various systems, applications, and data sources for unified identity and access management.

What benefits or ROI items should users look for in the reviews when evaluating Omada Identity?

Improved Security: By ensuring that only authorized users have access to sensitive information, Omada Identity enhances overall security posture.
Regulatory Compliance: Helps organizations meet compliance requirements by providing detailed audit trails and reporting features.
Operational Efficiency: Automates routine identity management tasks, reducing manual effort and freeing up IT resources for strategic initiatives.
User Productivity: Streamlines access management processes, enabling users to quickly obtain the resources they need to perform their jobs.
Reduced Risk: Minimizes the risk of data breaches and insider threats by enforcing strict access controls and continuous monitoring.

Omada Identity is widely adopted across various industries, including healthcare, finance, and manufacturing. In healthcare, it helps protect patient data and comply with regulations like HIPAA. In finance, it ensures compliance with SOX and other financial regulations. In manufacturing, it secures access to sensitive production data and intellectual property.

Pricing and licensing for Omada Identity are typically based on the number of users and the specific features required. Customer support is available through various channels, including online resources, support tickets, and professional services for implementation and customization.

In summary, Omada Identity is a comprehensive IGA solution that enhances security, compliance, and efficiency in managing digital identities and access.

Omada

ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.

With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy to use, and graphical dashboard. ForgeRock Access Management allows you to build safe authentication using options like passwordless and usernameless logins, single sign-on, biometrics, contextual analytics, and behavioral authentication. When threats appear, you can swiftly change how your users access your most sensitive applications and provide users with secure access to the applications, systems, and resources they need on demand.

ForgeRock Benefits and Key Features

Elevate your security and efficiency: Consolidating your legacy systems under one single platform provides reliable, unified control over all your user identities and access-related policies. ForgeRock Access Management also supports scaling existing policies for application onto new setups.
Passwordless authentication: Implementing passwordless authentication is simple with ForgeRock Access Management. You can easily replace user-selected passwords with other options, such as easy multi-factor authentication, biometrics, and SSO.
Identity governance: ForgeRock Identity Governance is a modern, AI-driven identity governance solution. By leveraging ForgeRock generated analysis reports, you can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low-risk accounts, and review high-risk and inappropriate user access privileges. In addition, you can grant and enforce access to systems, applications, and infrastructure according to established policies.

Reviews from Real Users

ForgeRock stands out among its competitors for a number of reasons. Two major ones are its robust identity and access tools and its being easy to manage and scale with one central dashboard.

PeerSpot users note the effectiveness of these features. A technology solutions leader at an outsourcing company writes, “We need it for multiple clients, multiple implementations. Not all of them are necessarily a multi-tenant solution. We need a very versatile solution that can do a lot of work, but from a single instance that we can centralize authentications and we don't duplicate the efforts and that's where ForgeRock seems to do better.”

Mohamed B., a cyber security consultant at a tech company, writes, "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users. ForgeRock secured our system so that it is accessed only by authorized people, and it implemented the SSO."

Ping Identity

OneLogin by One Identity is a cloud-based access management solution for the modern enterprise. It delivers secure access for every user, every app and every device to meet an organization’s Workforce and Customer and Identity and Access Management (CIAM) needs.

OneLogin provides secure single sign-on, multi-factor authentication (supporting a wide array of passwordless authentication factors), adaptive authentication, desktop-level MFA, directory integration with AD, LDAP, G Suite and other external directories, identity lifecycle management and much more. OneLogin advanced authentication capabilities provide multi-layer, context aware and risk-based protection, minimizing the most common attacks and resulting in increased security, a frictionless user experience, and compliance with regulatory requirements. Furthermore, OneLogin’s user-friendly interface and streamlined design make it easy for end users and IT administrators to navigate the platform and remain productive.

One Identity

Sample Customers

Bayer, ECCO Shoes, Vattenfall, NuStar Energy, Unicredit, Schiphol Group, BMW Group, Deutsche Leasing

Geico, Thomson Reuters, Salesforce, McKesson, Trinet, SKY, BNP Paribas, Deloitte, Capgemini, North Western University

OneLogin has thousands of customers across multiple industries and from around the globe such as Uber, Airbnb, Noom, Petco, Sony, Lucky Brand, Tesco, Airbus, Japan Airlines, Aetna, Compass, Kaplan, Susan G. Komen, AAA and PennyMac.

Buyer's Guide

ForgeRock vs. OneLogin by One Identity

February 2025

Free Report: ForgeRock vs. OneLogin by One Identity

Find out what your peers are saying about ForgeRock vs. OneLogin by One Identity and other solutions. Updated: February 2025.

DOWNLOAD NOW

842,388 professionals have used our research since 2012.

See our ForgeRock vs. OneLogin by One Identity report.

See our list of best Identity Management (IM) vendors and best Access Management vendors.

We monitor all Identity Management (IM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.