We use ForgeRock to implement SSO MSA for different customers with large databases. We also use the solution to unify their system and dashboards.
Senior CyberSecurity Consultant at RNS
Provides data protection and helps in meeting compliance and automation requirements
Pros and Cons
- "The most valuable features of ForgeRock are social login and data protection."
- "The solution's deployment should be made easier."
What is our primary use case?
What is most valuable?
The most valuable features of ForgeRock are social login and data protection. From an organization's point of view, data privacy is the most valuable feature of ForgeRock. Data should be protected in the right way in an organization. User data is everything in an organization, and if data hacking harms an organization's reputation.
ForgeRock is a very good product for security and meeting your compliance and automation requirements. Our IT team's workload has definitely reduced after implementing ForgeRock.
What needs improvement?
The solution's deployment should be made easier.
For how long have I used the solution?
I have been using ForgeRock for nine or ten months.
Buyer's Guide
ForgeRock
November 2024
Learn what your peers think about ForgeRock. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,763 professionals have used our research since 2012.
What do I think about the stability of the solution?
The solution's stability has to be better, but it depends mainly on how the solution is deployed. Everything is linked to the deployment style. If the deployment is done properly, everything can be fixed automatically.
I rate the solution a seven out of ten for stability.
What do I think about the scalability of the solution?
Around four to five users are using the solution in our organization.
I rate the solution ten out of ten for scalability.
How are customer service and support?
The solution’s technical support is good.
How would you rate customer service and support?
Positive
How was the initial setup?
On a scale from one to ten, where one is difficult and ten is easy, I rate the solution's initial setup a five out of ten.
What about the implementation team?
The solution’s deployment takes more than two to three months. We need to install the identity gateway servers first, and based on the gateway servers, they have to initiate the proxy servers. Once the proxy servers are properly configured, I can start with my different application integration. The whole process itself stretches to two months. That's why it's a very lengthy procedure.
What's my experience with pricing, setup cost, and licensing?
ForgeRock is an expensive solution.
What other advice do I have?
We are using ForgeRock mostly for banks and universities. We are letting them use the self-registration page via social logins, having the consent to provide the data, and implementing the ease of logging into the system. So, this is how we are using the solution's CIAM.
Overall, I rate the solution an eight out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Last updated: Feb 28, 2024
Flag as inappropriateSolution Engineer at Sennovate Inc
Offers good multi-factor authentication and single sign-on capabilities to users
Pros and Cons
- "In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments."
- "I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required."
What is our primary use case?
One of my company's customers has already integrated ForgeRock and set up Splunk. We just did some simple configuration, but not much since our customer did it.
I use the tool for its single sign-on capabilities. With ForgeRock, we can enable single sign-on and multi-factor authentication features, as well as single-layer or two-layer multi-factor authentication and password-less authentication.
What is most valuable?
Basically, we enable multi-factor authentication when logging in to ForgeRock. With ForgeRock Access Management, we can access Splunk using single sign-on capabilities. If you need one more multi-factor authentication for Splunk, we can enable it for that particular application. We already enabled multi-factor authentication for ForgeRock Access Management. Users are authenticated through multi-factor authentication, so Splunk does not require one more such tool. If you want the improvements and prefer one more multi-factor authentication tool, then it is okay.
What needs improvement?
In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required.
For how long have I used the solution?
I have been using ForgeRock for a year and a half. One of my company's customers uses the tool. My company implements and offers support for the tool.
How are customer service and support?
I provide full support in the application integration for our customers.
Which solution did I use previously and why did I switch?
I have used Splunk for CybeArk for one of my company's customers. I don't know of particular advantages in ForgeRock as such, but it helps reduce manpower and improve security, and then we can keep the environment stable.
How was the initial setup?
The product's implementation phase is very easy, but a lot of customizations are required.
What other advice do I have?
ForgeRock uses Splunk. ForgeRock's integration with Splunk is very easy and straightforward.
In terms of the tool's adaptive risk and intelligence features, I can say that it is an area that is time-based. In different regions, the working hours are different. We can configure the tool based on the timing and the work location.
In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments. Manual monitoring is not possible, especially monitoring everything with the system memory and CPU memory, along with the user behaviors. Splunk easily monitors everything. From a business perspective, it will reduce risk and then reduce manpower. Splunk provides exact results and monitoring results to track a particular issue so we can easily identify the issue.
We usually receive alerts regarding high CPU utilization because of the high traffic we receive.
I can't comment on whether the tool helps in the area of predictive analytics or automated threat detection.
I recommend the product to others. I can also recommend products like CyberArk and Okta. Wherever we need to monitor the environment, specifically the cloud environment or on-prem one, I can suggest all the above-mentioned tools.
I rate the tool a nine out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
Last updated: Jul 29, 2024
Flag as inappropriateBuyer's Guide
ForgeRock
November 2024
Learn what your peers think about ForgeRock. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,763 professionals have used our research since 2012.
Integrator Solution at ITR
Stable product with essential features for application security
Pros and Cons
- "The product is easy to set up."
- "The product's support services in the French language are not free."
What is our primary use case?
We use ForgeRock for providing application security.
What is most valuable?
All of the product's features are good.
What needs improvement?
The product's support services in the French language are not free. It is challenging to communicate with their team in the English language. This particular area needs improvement.
For how long have I used the solution?
We have been using ForgeRock for two years as a partner.
What do I think about the stability of the solution?
I rate ForgeRock's stability a nine out of ten.
What do I think about the scalability of the solution?
We manage 200 to 2,000 ForgeRock customers. They are all enterprise businesses.
How are customer service and support?
The technical support services could be better.
How would you rate customer service and support?
Positive
How was the initial setup?
The product is easy to set up. However, the evaluation setup lacks a few components. I rate the process a nine out of ten. The deployment involves access management and directory services configuration. It is time-consuming to set components like directory table policies and target DNS. It takes around ten days to complete.
What other advice do I have?
It is a good and stable product. I rate it a nine out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer:
Cyber Security Consultant at a tech company with 10,001+ employees
Reliable and useful for securing our system, but should be a little bit easier to implement
Pros and Cons
- "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users."
- "It should be a little bit easier to implement. It is user-friendly, but there is always scope for improvement."
What is our primary use case?
We use this solution to manage the identity and access of users to SI and other applications of our company. We implement the identity of the users in that SI.
How has it helped my organization?
It secured our system so that it is accessed only by authorized people, and it implemented the SSO.
What is most valuable?
Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users.
What needs improvement?
It should be a little bit easier to implement. It is user-friendly, but there is always scope for improvement.
What do I think about the stability of the solution?
It is a reliable solution.
What do I think about the scalability of the solution?
It is scalable. We have scaled it.
In terms of the number of users, the whole company has to use ForgeRock to be able to connect to the company. For its administration, we have a team of five people. We don't have any plans to increase its usage.
How are customer service and technical support?
Their technical support is good.
Which solution did I use previously and why did I switch?
I have used SiteMinder and EmpowerID and a solution from Okta.
How was the initial setup?
Its implementation is a little bit complex. It took us between four to six months.
In terms of the implementation strategy, we identified the functional aspects and tried to see if it would meet the needs. After that, we implemented it in the Dev environment, and after that, we implemented it in the Production environment.
What about the implementation team?
I implemented it myself. It does require maintenance, and I handle its maintenance.
What's my experience with pricing, setup cost, and licensing?
Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts.
There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more.
What other advice do I have?
I would recommend this solution if it meets the needs of a company. It is a good solution. You have to implement it to see if it responds to your needs.
I would rate ForgeRock a seven out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
QA Analyst at a comms service provider with 501-1,000 employees
Prompt support, reliable, and scalable
Pros and Cons
- "The support is good and prompt."
- "The solution could improve by adding more advertising and marketing."
What is our primary use case?
We are using ForgeRock for our CRM system.
How has it helped my organization?
In our company, we had some SQL legacy databases but with ForgeRock there is much more integration, including outside the system.
What needs improvement?
The solution could improve by adding more advertising and marketing.
For how long have I used the solution?
I have been using ForgeRock for approximately one and a half years.
What do I think about the stability of the solution?
The solution is stable.
I rate the stability of ForgeRock an eight out of ten.
What do I think about the scalability of the solution?
You are able to build on ForgeRock, it is scalable.
I rate ForgeRock an eight out of ten.
How are customer service and support?
The support is good and prompt.
How was the initial setup?
The initial setup of ForgeRock can be complex based on what kind of integration nodes we are connecting.
What about the implementation team?
We did the deployment of ForgeRock in-house.
What other advice do I have?
I rate ForgeRock a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Identity and Access Manager at Freiberufler
A stable and scalable solution with good intelligent authentication feature
Pros and Cons
- "I like the intelligent authentication feature."
- "It should have a better user interface. Its flexibility should also be improved. It is not about simplifying; it is more about flexibility. Each company has its own requirements, and ForgeRock can provide more flexibility in terms of the use of existing modules to implement features for the customers."
What is our primary use case?
I have been using ForgeRock as a central repository for identities. We have OpenIDM as one of the products. We also have access management and single sign-on authentication for single sign-on purposes.
There are different use cases. One of the interesting projects was to use ForgeRock as software as a service for the biggest telecommunication company in Switzerland. They used it as a service for their customers.
What is most valuable?
I like the intelligent authentication feature.
What needs improvement?
It should have a better user interface. Its flexibility should also be improved. It is not about simplifying; it is more about flexibility. Each company has its own requirements, and ForgeRock can provide more flexibility in terms of the use of existing modules to implement features for the customers.
For how long have I used the solution?
I have been using this solution for three to four years.
What do I think about the stability of the solution?
It is stable.
What do I think about the scalability of the solution?
It is scalable.
How are customer service and technical support?
It depends on whether you have a good partner network. If you have limited support for professional technical services, there could be some pain points.
How was the initial setup?
The deployment depends on the use cases and the size of the company. It can be complex for bigger environments, but for smaller companies, it is straightforward. For example, for one of the biggest chemical companies in Germany, we were searching millions of identities. We didn't apply it at the end because of some budget reasons, and the project was canceled or frozen.
What's my experience with pricing, setup cost, and licensing?
Its price is comparable to other products in the market.
What other advice do I have?
I would recommend this solution. I would advise others to look for a good integrator.
I would rate ForgeRock a nine out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Manager at a consultancy with 10,001+ employees
A stable and scalable solution but it requires better technical support
Pros and Cons
- "The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent."
- "The identity management model needs a bit of improvement."
What is our primary use case?
The solution is primarily used for the consumers, for their registration and other applications.
How has it helped my organization?
For our client, which we are deploying for, the solution seems to be offering them really great value.
What is most valuable?
The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent.
What needs improvement?
The identity management model needs a bit of improvement.
The solution should work on offering more automation.
For how long have I used the solution?
I've been using the solution for almost four years.
What do I think about the stability of the solution?
The stability of the solution is good. They are coming up with good solutions and features. However, I think they should focus more on how they can automate things or make it simpler when it comes to the implementation of cloud solutions.
What do I think about the scalability of the solution?
The solution is extremely scalable. We are implementing this for around 10 million customer records.
How are customer service and technical support?
Technical support needs improvement. We have raised many cases but every time I call, they don't support. You need to buy their professional services.
How was the initial setup?
When you are deployed on these standalone servers, the initial setup is very straightforward. However, when you are talking about the cloud solution, deployment can be a bit tricky.
Deployment took around two to three months.
What about the implementation team?
We handled the implementation ourselves.
What's my experience with pricing, setup cost, and licensing?
You need to negotiate the pricing, so how expensive or affordable it ends up being depends on each individual contract.
What other advice do I have?
Currently, we are working under the Agile model.
I would advise others to assess the product first based on their requirements. There are multiple models, so they need to be sure to choose the best option for them. Otherwise, they will end up purchasing everything and they might not utilize that product.
I'd rate the solution seven out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
IAM CyberSecurity Consultant at a tech services company with 10,001+ employees
Added functionalities in the form of patches and version upgrades so it was easily adaptable to our architecture design
What is most valuable?
- Highly customizable is one of the main advantages of the ForgeRock product. I personally like the Custom Authentication Modules design.
- Ability of ForgeRock support and its development team to provide patches and functionalities.
- Highly improved performance and scalability.
- Fully integrated with internal/in-house provisioning systems.
- Rapid deployment of the products.
How has it helped my organization?
For the current client environment, we have started with ForgeRock OpenAM 13.0.0 version and asked for many patches and features for our solutions. The ForgeRock team added functionalities in the form of patches and version upgrades so quickly and it was easily adaptable to our architecture design.
What needs improvement?
Similar to other products, they do have some improvement scope the in the documentation part. I do feel they became more organized and better, in terms of documenting, as they are growing with the new versions, but there is also more scope. Also, compared to other major market competitors, they have a lot more to learn from them in terms of product designing.
For how long have I used the solution?
I’ve been working on the ForgeRock product suite (including ForgeRock Access Management, Identity Management and Directory Services) for around three years now.
What was my experience with deployment of the solution?
The deployment of a solution is never easy in a new design of the environment. The new capability of the Amster tool for OpenAM seems to be very easy to deploy your solution over their older tools SSO Admin & SSO Configurator. Amster provides config properties to be exported and imported to another instance with JSON format, as an example.
What do I think about the stability of the solution?
With every upgraded version, they come with some minor instability issues or little functionality errors. We did find many small and medium functionality issues from the journey of OpenAM 13.0.0 to Access Management 5.1.1, which they fixed in the next upgrades.
What do I think about the scalability of the solution?
Scalability has never been problem with the ForgeRock product suite. You can add nodes at runtime without affecting the environment. You can build another datacenter without affecting the running instance and add to it.
How are customer service and technical support?
So far, I do not have any complaints on the technical support side. Whenever we asked for any patches or bug solutions, they have responded within their incident matrix response time. I would like to rate technical support at a 10 out of 10.
Which solution did I use previously and why did I switch?
No, we chose ForgeRock as our first choice. Though we had many other products to look at, ForgeRock seemed to be very compatible with our customizations and ease of use requirements.
What's my experience with pricing, setup cost, and licensing?
ForgeRock came up with a community version and enterprise version, which is the main difference in pricing. They also came up with the Product Suite 5 version. They provide subscriptions based on the identity basis divided into internal and external identities.
Which other solutions did I evaluate?
Yes, we did comparisons with other IAM tools, like IBM SAM, Oracle Access Manager, and Ping Identity solution. We needed a better user experience and flexible authentication, like adaptive authentication plus multi-factor authentication capabilities, where ForgeRock seem to be the best match among them all.
What other advice do I have?
ForgeRock products are highly flexible and customizable within the range of their competitor's products.
Look at the your requirements and compare products with each other and choose which suits your needs better. On the ForgeRock side, I personally liked the capabilities of customizations and the technical support we get from the vendor.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free ForgeRock Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Access Management Identity Management (IM) Customer Identity and Access Management (CIAM)Popular Comparisons
CrowdStrike Falcon
Microsoft Entra ID
Cisco Identity Services Engine (ISE)
CyberArk Privileged Access Manager
Workspace ONE UEM
SailPoint Identity Security Cloud
Omada Identity
Okta Workforce Identity
Cloudflare SASE & SSE Platform
Fortinet FortiAuthenticator
Auth0
Ping Identity Platform
Saviynt
One Identity Manager
RSA SecurID
Buyer's Guide
Download our free ForgeRock Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Which one is best: Quest One Identity Manager or Forgerock Identity Management
- What are the Top 5 cybersecurity trends in 2022?
- What are some tips for effective identity and access management to prevent insider data breaches?
- What are your best practices for Identity and Access Management (IAM) in the Cloud?
- What are security features to look out for when choosing a Customer Identity and Access Management solution?
- Why is identity and access management (IAM) so important in preventing data breaches?
- What access management tools would you recommend to help with GDPR compliance?
- Which is the best choice of Zero Trust Network Access (ZTNA)?
- When evaluating Access Management, what aspect do you think is the most important to look for?
- What are some tips for managing the identity lifecycle securely and effectively?