Try our new research platform with insights from 80,000+ expert users

One Identity Active Roles vs OneLogin by One Identity comparison

One Identity Active Roles and OneLogin by One Identity are both solutions in the User Provisioning Software category. One Identity Active Roles is ranked #5 with an average rating of 8.5, while OneLogin by One Identity is ranked #6 with an average rating of 8.5. One Identity Active Roles holds a 4.3% mindshare in UP, compared to OneLogin by One Identity’s 1.2% mindshare. Additionally, 100% of One Identity Active Roles users are willing to recommend the solution, compared to 100% of OneLogin by One Identity users who would recommend it.
One Identity Active Roles
Read 25 One Identity Active Roles reviews
  • 1,523 Views
  • 564 Comparison Views
100% willing to recommend
OneLogin by One Identity
Read 17 OneLogin by One Identity reviews
  • 214 Views
  • 143 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 6, 2025

OneLogin by One Identity and One Identity Active Roles both compete in the identity and access management category. OneLogin excels in user-friendly interfaces and cloud capabilities, whereas Active Roles offers superior AD management and customization.

Features: OneLogin by One Identity provides single sign-on, multifactor authentication, and user-friendly role management, streamlining the onboarding process. Its SmartFactor Authentication enhances cybersecurity and supports remote work flexibility. One Identity Active Roles offers robust Active Directory management, automated provisioning, and a single pane of glass for hybrid environments. It includes dynamic groups, built-in workflows, and virtual directories for complex processes.

Room for Improvement: OneLogin could improve by expanding connector availability, enhancing real-time reporting, and offering more advanced two-factor authentication. Improvements in offboarding automation and customer support post-acquisition are also needed. Active Roles needs better web interface customization, increased scripting language support, and improved integration with cloud solutions. Users request more dynamic workflow templates and better workflow engine performance.

Ease of Deployment and Customer Service: OneLogin primarily operates in the public cloud, providing flexible deployment but mixed support experiences post-acquisition. Active Roles is usually deployed on-premises and is praised for its knowledgeable support team. Both products receive positive feedback on customer service.

Pricing and ROI: OneLogin offers competitive pricing with an active user licensing model, although some users have noted price increases. It provides significant ROI through time savings. Active Roles is considered expensive but delivers good value by streamlining operations and improving security, offering considerable ROI benefits.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed One Identity Active Roles vs. OneLogin by One Identity Report (Updated: April 2025).
Buyer's Guide
One Identity Active Roles vs. OneLogin by One Identity
April 2025
Download the complete report
Helped 850,671 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Active Roles
Ranking in User Provisioning Software
5th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
25
Ranking in other categories
Active Directory Management (2nd), Non-Human Identity Management (NHIM) (5th)
OneLogin by One Identity
Ranking in User Provisioning Software
6th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
17
Ranking in other categories
Single Sign-On (SSO) (9th), Identity Management (IM) (11th), Identity and Access Management as a Service (IDaaS) (IAMaaS) (10th), Access Management (8th)
 

Mindshare comparison

As of May 2025, in the User Provisioning Software category, the mindshare of One Identity Active Roles is 4.3%, up from 4.3% compared to the previous year. The mindshare of OneLogin by One Identity is 1.2%, up from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Provisioning Software
 

Featured Reviews

Grzegorz Kosela - PeerSpot reviewer
Task automation simplifies user and delegation management while offering a customizable interface
Currently, task automation, like provisioning, deprovisioning, and reprovisioning, is very effective. When a user moves from one organization to another, it automatically changes their group membership and performs similar functions. Secondly, the granular delegation feature is very nice and much simpler and easier than it is natively in Microsoft. Two years ago, One Identity Active Roles was under Dell. It was quite poor. However, now, there have been notable improvements, such as faster system processing, better logging, enhanced information, and a more user-friendly interface. Once it was sold by Dell, things got better. The interface became a bit more user-friendly. The Angular user interface is much more flexible for adjusting to customer needs, and a completely new and customizable one can be created, aligning with all settings and scripts required by a customer. The ease of managing on-prem and cloud-based directories through a single pane of glass is good. I'd rate it nine out of ten. The solution's ability to provision and deprovision resources and directories like Azure AD is very simple, especially when you can integrate with the HR system and grab some data from HR. It's actually fully automatic. I don't need to even touch it. It's helped increase operational efficiency by 50%. It's helped decrease security problems around privileged accounts. We were able to decrease the number of privileged accounts and have been able to delegate more effectively. We decreased the number of high-level permissions that administrators had. For example, if someone is a DNS administrator, he has access only as far as the specific actions he needs to handle. We don't need to give away such high privileges for such a daily job. It's helped clarify roles and access. It's helped reduce identity-based breaches. If someone leaves a company, we can easily undo provisioning and close accounts. We can generate reports to see which people have which permissions and at what times. We've just integrated with our HR system. It helps us follow activated and deactivated users. I'd rate the granular controls on offer ten out of ten. We've saved on manpower in terms of the work of the administrators. There's good reporting and functionality, and it's very transparent. You can connect more than one directory and manage everything from one pane. You can do many things from one interface.
Read full review
Pete Snell - PeerSpot reviewer
Staff and students can now reset their passwords using their enrolled two-factor device as the authentication mechanism
We've been a OneLogin customer for several years now. While I like the platform, there have been some challenges. A great example is the amount of work needed with that webhook for the enrollment user experience. This functionality is native to some competing products. That's one area where we've leaned on our account rep over the years. They shouldn't rely on the customer to make this experience better. This is one feature request that hasn't been implemented yet. At the same time, they've implemented other features we've requested. One is the ability to use a personal email address as a factor. Initially, they didn't have that. We pushed hard on our account team for about two years before it was finally released. It's a give-and-take. Some of the product's features aren't perfect, but we've had some success pushing fixes to the development team that needs to happen. They've done a decent job. However, there are some fixes that they don't have an interest in. A lot of what I described was before OneLogin was acquired by Quest/One Identity. Things have changed. It doesn't feel like they're driving the product as OneLogin was. It may be because it's a new product to them, and they're still trying to get the lay of the land, process feature requests, etc., but it's not moving as fast as before. We've been experiencing some pain points since the acquisition. For example, there have been some outages we didn't see previously, which are a big topic with my executive team. You have hundreds of applications relying on this service for login. If the service is unavailable, nobody can log into these applications. The issues have high visibility. It's gotten better, but it's still there. It raises questions about whether One Identity can support the platform they've acquired. How are they enhancing the product? And how are they supporting the product and the service in the future? Those are two essential questions. There are also lots of nice-to-haves, but that's the case with any product.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Secure access is the most valuable feature."
"The ease of managing on-prem and cloud-based directories through a single pane of glass is good."
"It has helped increase operational efficiency in our organization."
"The biggest thing for us is Active Roles saves a lot of man-hours in keeping groups up-to-date manually or trying to write some sort of script that you have to run, so we don't have to reinvent the wheel. Instead of when every time somebody joins a department, then somebody has to remember to put in a request to add "meet user Joe" to this group, the solution does it automatically for us. Therefore, it saves our business and IT staff time because they do not have to process requests since Active Role can do it for them."
"The solution improved our organization's security posture by framing the end users and ensuring that capabilities that could cause mistakes are hidden from the web interface."
"The solution is stable."
"It's valuable to us in that it resembles the native tools that most people have grown accustomed to... Active Roles resembles traditional tools, such as from Microsoft. That is really good because it eases the way people interact with the tool."
"With the use of the sync service we were able to import information from multiple external systems and populate them within our space and leverage them for downstream systems."
More One Identity Active Roles pros
"When it comes to access management, the solution's single pane of glass is extremely important. The single pane of glass for access management enables collaborative work between IT and security. We have access to certain applications that require device trust. Based on the role, we can access those applications through OneLogin Desktop."
"The directory integration and SCIM provisioning are probably the best features compared to competitors."
"OneLogin is efficient."
"Once I made the OneLogin ID, it would essentially make user names and passwords for every application that we had."
"One aspect I particularly appreciate is their exceptional customer support whenever I've needed assistance."
"Simplicity is the most valuable part of OneLogin."
"Documentation."
"The most valuable feature is the ease with which we can manage the sign-on feature."
More OneLogin by One Identity pros
 

Cons

"The user and group management in Azure AD could be better. Our focus these days is dynamic sharing with several on-prem Microsoft applications like SharePoint."
"Customer support is rated six. Sometimes having a fix for a bug takes too much time. While in production, issues tend to take a while to resolve."
"There is always room to improve the user interface for increased clarity. I believe enhancements to the console are also necessary because it is more confusing than the web interface."
"The initial setup was quite easy, but it was time-consuming. It took about three months."
"For mid-sized to small companies, I do not know if it would be that useful, considering the tool's purpose."
"It's a fairly stable product but not perfectly reliable."
"The ability to send logs to a SIEM would be very beneficial."
"Another issue we have with the product is that we run a lot of custom tasks. You have to program them to run on one particular host and there's no automatic failover to a second host. If that host is down when a task is supposed to run, it has to wait until the next time it runs when that host is up."
More One Identity Active Roles cons
"The tool must be made more robust."
"To offboard, you have to manually click on this checklist, each of the checkmarks. It would actually be really nice if, for offboarding someone, you just click "offboard" and it automatically runs a script to do that."
"This product doesn't necessarily provide us with all of the functionality that we need, such as being able to share passwords with external users."
"The solution keeps going down for many hours, which impacts the entire company. You can't access any applications. OneLogin Desktop has a huge problem where it locks your computers and you need to reset the whole computer, which is pretty insane."
"They have downtime twice a year or once in six months. During the downtime, the SSO page did not come up. When users wanted to get to their email, they were redirected to the OneLogin page, but the page did not come up, and MFA and logins failed. It completely crippled us."
"I would like better reporting from SmartFactor Authentication when a user is not able to sign in due to a new location, new IP, new device, et cetera."
"OneLogin needs to increase the number of connectors available out of the box to connect to the different endpoints. The number of out-of-box connectors should be increased."
"While I initially used OneLogin's desktop feature to extend SSO, I discontinued it two years ago due to limitations."
More OneLogin by One Identity cons
 

Pricing and Cost Advice

"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"The licensing model is a simple user-based model, not that much complicated."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"It's expensive."
"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
"The pricing is on the higher end."
"It's fairly priced."
"The pricing and licensing are reasonable. It is much cheaper than other products."
"While I wish OneLogin's pricing was more affordable, their licensing model, which is based on per user, is acceptable."
"The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it."
"It was cheap in the beginning, and then it became very expensive. We were initially charged $2 per user per month, which was fine, but by the second year, they increased it to $5 per user. That became very expensive for us because we had about 1,500 users. At $2 per user, it comes out to be $3,000 a month, which is $36,000 a year. If we move to $5 per user, it comes out to be $7,500 a month. That made its cost so high. That is why we removed the product because the cost was high."
"The price of the licensing is fine."
"OneLogin's pricing, from the perspective of the education sector, seems quite reasonable for the value it delivers."
"Surprisingly expensive given the price of on-premise solutions."
"We were happy with the price we got when we signed up, but I don't know what will happen when the time comes to renew because it is a different company now. We haven't seen any pricing models or had that discussion yet. My renewal is a year and a half away. It's worth what we're paying for it. There's no way we could provide the level of service for cheaper or try to do the same in-house."
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
850,671 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
12%
Healthcare Company
8%
Manufacturing Company
7%
Computer Software Company
24%
Financial Services Firm
7%
Retailer
6%
Construction Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about One Identity Active Roles?
The solution is stable.
See all answers
What is your experience regarding pricing and costs for One Identity Active Roles?
The product is expensive, but if you want to save money, the delegation set-up process is quite easy. After setting up Active Roles once, defining the delegation model, it is very efficient, almost...
See all answers
What needs improvement with One Identity Active Roles?
One area for improvement would be the Entra ID side, including better delegation for Entra ID objects and more granular permissions. We would also like to see better Entra ID license management usi...
See all answers
What do you like most about OneLogin by One Identity?
OneLogin is efficient.
See all answers
What needs improvement with OneLogin by One Identity?
There have been some outages over the years. The uptime has not been great recently, with some outages lasting six, seven, or eight hours. Improvement in the stability of the infrastructure would b...
See all answers
What is your primary use case for OneLogin by One Identity?
We use OneLogin by One Identity to provide SAML authentication and single sign-on for all of our SaaS apps.
See all answers
 

Comparisons

SailPoint Identity Security Cloud vs One Identity Active Roles Logo
SailPoint Identity Security Cloud vs One Identity Active Roles
Compared 19% of the time
ManageEngine ADManager Plus vs One Identity Active Roles Logo
ManageEngine ADManager Plus vs One Identity Active Roles
Compared 15% of the time
Microsoft Entra ID vs One Identity Active Roles Logo
Microsoft Entra ID vs One Identity Active Roles
Compared 12% of the time
One Identity Manager vs One Identity Active Roles Logo
One Identity Manager vs One Identity Active Roles
Compared 11% of the time
Oracle Identity Governance vs One Identity Active Roles Logo
Oracle Identity Governance vs One Identity Active Roles
Compared 3% of the time
More One Identity Active Roles Competitors
Microsoft Entra ID vs OneLogin by One Identity Logo
Microsoft Entra ID vs OneLogin by One Identity
Compared 22% of the time
Okta Workforce Identity vs OneLogin by One Identity Logo
Okta Workforce Identity vs OneLogin by One Identity
Compared 14% of the time
LastPass vs OneLogin by One Identity Logo
LastPass vs OneLogin by One Identity
Compared 12% of the time
Auth0 vs OneLogin by One Identity Logo
Auth0 vs OneLogin by One Identity
Compared 10% of the time
More OneLogin by One Identity Competitors
 

Product Reports

Buyer's Guide
One Identity Active Roles
April 2025
One Identity Active Roles reportDownload One Identity Active Roles product report
Buyer's Guide
OneLogin by One Identity
April 2025
OneLogin by One Identity reportDownload OneLogin by One Identity product report
 

Also Known As

Quest Active Roles
OneLogin, OneLogin Workforce Identity
 

Overview

One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.

Using One Identity Active Roles, users can:

  • Easily increase and strengthen native attributes of Active Directory (AD) and Azure AD.

  • Quickly unify and automate group and account management while protecting and securing critical administrative access.

  • Free up valuable resources to concentrate on other IT tasks, fully confident that your user permissions, critical data, and privileged access are safe and secure.

Managing accounts in AD and Azure AD can be tremendously challenging; continually keeping these important systems safe and secure presents an even greater challenge. Traditional tools can be inefficient, error-prone, and very disjointed. In today’s robust marketplace, organizations are finding it somewhat difficult to keep pace with the constant access changes in a hybrid AD ecosystem. Additionally, there are significant security issues to consider (government compliance, employee status/access changes, and other confidential business requirements). And, of course, there is a requirement to properly manage Active Directory and Azure Active Directory access in addition to managing all the other numerous SaaS and non-Windows applications that organizations use today.

Users can easily automate all of these tedious, mundane administrative tasks, keeping their systems safe and error-free. Active Roles ensures users can perform their job responsibilities more effectively, more efficiently, and with minimal manual intervention. Active Roles was created with a flexible design, so organizations can easily scale to meet your organizational needs, today, tomorrow, and in the foreseeable future.

Reviews from Real Users

A PeerSpot user who is a Network Analyst at a government tells us, “It has eliminated admin tasks that were bogging down our IT department. Before we started using Active Roles, if one of our frontline staff members deleted a user or group, it could take several hours to try to reverse that mistake. Whereas now, the most our frontline staff can do is a deprovision, which just disables everything in the background, but it's still there. We can go in and have it back the way it was two minutes later. Instead of it taking two hours, it only takes two minutes.

Becky P., Sr Business Analyst at George Washington University, shares, “In addition, with the use of workflows and the scheduled tasks, we were able to automate and centrally manage a number of the processes as well as utilize them to work around other product limitations. Those include, but are not limited to syncing larger groups, which have 50,000 plus members, to Azure AD. We sync up to Azure AD using ARS. If we had not already had ARS in place, it would have been impossible for us to have done so in the time period we did it in. We did it in under six months. ARS probably saves us at least two weeks out of every month. It's reduced our workload by 50 percent, easily.”

One Identity


OneLogin by One Identity is a cloud-based access management solution for the modern enterprise. It delivers secure access for every user, every app and every device to meet an organization’s Workforce and Customer and Identity and Access Management (CIAM) needs.

OneLogin provides secure single sign-on, multi-factor authentication (supporting a wide array of passwordless authentication factors), adaptive authentication, desktop-level MFA, directory integration with AD, LDAP, G Suite and other external directories, identity lifecycle management and much more. OneLogin advanced authentication capabilities provide multi-layer, context aware and risk-based protection, minimizing the most common attacks and resulting in increased security, a frictionless user experience, and compliance with regulatory requirements. Furthermore, OneLogin’s user-friendly interface and streamlined design make it easy for end users and IT administrators to navigate the platform and remain productive.

One Identity
 

Sample Customers

City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
OneLogin has thousands of customers across multiple industries and from around the globe such as Uber, Airbnb, Noom, Petco, Sony, Lucky Brand, Tesco, Airbus, Japan Airlines, Aetna, Compass, Kaplan, Susan G. Komen, AAA and PennyMac.
Buyer's Guide
One Identity Active Roles vs. OneLogin by One Identity
April 2025
Free Report: One Identity Active Roles vs. OneLogin by One Identity
Find out what your peers are saying about One Identity Active Roles vs. OneLogin by One Identity and other solutions. Updated: April 2025.
DOWNLOAD NOW
850,671 professionals have used our research since 2012.
See our One Identity Active Roles vs. OneLogin by One Identity report.
See our list of best User Provisioning Software vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.