ForgeRock Reviews

• Flexibility in the customisation.
• Out-of-the-box support for almost all authentication mechanisms/products.
• Hassle-free support to federation protocols (SAML can be enabled and configured in a few mouse clicks).

This is not directly applicable to me, as I work in the consulting service industry. However, I have seen how it's brought about improvements at our client locations. One of our clients wanted to have a solution with complicated authentication requirements (authenticate users from multiple sources and even from non-standard sources), and they approached several product vendors. ForgeRock was the only solution they found which fit their budget and time frame.

It has a promising roadmap and strategy. However, the product still needs to refactor and get rid of the dirty coding from its predecessor. I hope it will improve over time.

More than 10 years. I worked on its predecessor, Sun Java System Access Manager, as well.

Not with the version I’m reviewing. There were issues in previous versions but they were fixed over time.

I have never had any issues with scalability. It depends upon how we spec the environment as well.

It's awesome. Instant responses on support calls.

I used Oracle AM a little bit. Its configuration is a bit confusing and takes a long time.

As I said before, you can install and configure the product in a matter of a few minutes; it’s that easy.

I know it’s cheap compared to other leading AM products. You can even go for the Open Source version of the product if you are building it by yourself and don’t need the support and regular patches.

As I said, I work in the consulting/service industry, hence this is not directly applicable to me.

Just try it and get a feel for the product.

ForgeRock is basically an IAM tool and we use it for access to multiple resources or applications. It's basically an identity and access management tool. We are business partners with ForgeRock and I'm a security delivery analyst.

It's had a good impact and we've seen an increase in revenue. 

I like the ease of navigating, handling and managing the applications and end-user profiles. It's easy, convenient and affordable. 

ForgeRock can be a complex product that requires a lot of time to learn and  understand its real value. The issue is that when we're working in real-time scenarios for real-time projects, we might face challenges that we're not able to figure out ourselves. By the time we have real-time interaction with the customer, it can be awkward to go back to the documentation and try to figure it out. I'd like the solution to include ways of customizing or achieving our scenarios more simply. That could include simplified documentation within the tool rather than having to use a separate portal. If something were available within the tool, I would be happy.

I've been using this solution for close to three years. 

This is a neutral product in terms of stability. It's generally fine but sometimes there are issues which could be connected to the application rather than the product.

The solution scales up and down according to your needs.

We receive adequate support. Every time we reach out to them, they're there for us. Whether it's relevant documentation, guidance, or jumping on a call to troubleshoot issues. They're on top when it comes to customer support. 

The initial setup is easy but I would recommend having some knowledge on the container, where you deploy the applications, and how it's done.

ForgeRock is an open-source tool. You can download it directly via the browser. It's only when you want to use their extensive features, you might have to think about the pricing. ForgeRock is booming because it's an open-source tool and it provides good value. It's comparable to a licensed solution. We pay a maintenance fee. 

We initially used ForgeRock as a trial tool to test whether we could achieve all of our requirements. It was a good strategy for us. 

I rate the solution eight out of 10. 

We use it to define the users in all of our systems like VMS and Samba. We don't use Windows, we use Samba. We create and define the permissions and configurations for the users. 

We were using Solaris IDM system, Solaris sells an IDM system and there was a big migration telling us where to go. They told us to rewrite the IDM solution and we saw which other solutions there were out there. We found this solution and we found someone who could create a proof of concept and we decided to change from Solaris IDM to this. It has the same functionality.

In the beginning, it was open-source as opposed to other solutions like IBM. We used Solaris IDM and we had to merge with another product and we chose this because, in our company, open-source software is the main solution. 

It's hard to speak with ForgeRock. It's very expensive. I find that it's quite expensive for just an open-source system. Support is quite expensive. We are only 300 users. It would make sense for a big company but for a little company, it's quite expensive. 

I have been using ForgeRock for around six to seven years. 

The stability is quite good. As an IDM system, it's not so stressed. We create five or six users per month. 

I heard that it's good for big companies, with thousands of users use it but our company only has a few hundred users. We use little bits of the database. Scalability isn't a problem for us. 

I have contacted their support. It's quite good. Out of ten, I would rate it a seven. 

I would rate it a seven out of ten. 

I would recommend trying it. Do a proof of concept. Every company is different. Management is different, you have to find a local company that can support you.

The interface is quite lively but I don't think that it's possible to have UI that's compatible with the rest of the company's. We only use the core of OpenIDM. 

There are multiple use cases including multi-factor authentication that enable more integration on the application stack. There's also the CIAM methodology with the single sign-on, the SAML integration and the federation for business to business. We are partners with ForgeRock and I'm an SME. 

The valuable feature of the product is that it's easy to customize and adaptable to any environment. We can use the leverage acknowledgment of an intellectual capture and make an out-of-the-box complex solution. 

Steep learning curve: As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively.

I've been using ForgeRock Access Manager for 22 years since Sun Microsystems released the source code of OpenAM from Iplanet-DSAME.

The solution is very scalable and offers three kinds of architecture; small, medium and large. That means you can start with one million users, and scale up to 10 million. The only limitation is the platform. 

The deployment is straightforward and doesn't take a lot of time. There's a lot of documentation available. It's a matter of defining the process. 

Once you know your needs, licensing is very flexible and adaptable with any kind of solution and works with any size of organization. 

This is a good product with good technology that's easy to integrate. Follow the best practice and it works well. 

I rate this product 10 out of 10. 

We are using off protocol to protect the application for multiple redirects and single redirects. We have multiple flows and from there an authentication perspective. We do have IDM in place to manage roles and also provisioning activities.

I like the way it is handling authentication and authorization.

I think the upgrade process is sometimes a little complicated and there are failures that occur.

I have been using ForgeRock for the past four years.

I have found ForgeRock to be stable.

The scalability of ForgeRock is not a problem. 

I have used technical support and they have a great team.

Positive

The support team is better than the other product we were using. If the support team is not good you have many issues.

The initial setup is not always straightforward. If we are looking to automate the process, that is not ready currently.  The time it takes to deploy is not a problem and is pretty easy.

I have also worked on Okta and PingFederate. I am comparing based on my experience with other products.

I would rate ForgeRock a nine out of ten.

We are consultants who have deployed versions of the ForgeRock solution.

From a functionality point of view, it's a solid product. Of course, the customers always complain about the price.

The solution has some AI features. It works very well, especially in Identity and Access Management. It helps detect anomalies in user behavior patterns. It also suggests security roles and other ways of doing things based on industry best practices.

The price could be better. 

It looks like it's well funded, but the joining process with Ping Identity is a concern. It could take priority from a product point of view, which is a concern for customers.

In future releases, I would like to see easier integration with other solutions, like facial recognition and KYC solutions with de-dupe functionality and biometric onboarding. This would help complete the entire use case, especially from a customer identity management perspective.

I have been using this product for ten years or so. 

We are an implementer and supporter.

Overall, I would rate it an eight out of ten. 

We are like a big reference site in Africa, and they've already made a lot of deployments there. So, I would recommend it to everyone. 

Customization can be a difficult job.

I have been using ForgeRock for last three to four months. 

It is a customizable solution so if the customization is on track then it is stable. 

The technical support team is very good. 

Positive

I used Seapoint previously. 

As it is a new product I would rate it five out of ten. 

We use the solution for the authorization and authentication of various applications.

The solution has the ability to handle a lot of users.

In an upcoming release, the solution could improve by limiting the need to do customizations.

I have been using the solution for more than three years. 

I find the solution to be stable, it has been working well. However, we have encountered some stability issues when we tried to upgrade. Normally we would have to reboot the server and occasionally have performance and tunning issues. The solution's stability during the upgrade should be improved.

The solution is very scalable. We have a lot of users that have been increasing over the years that we have been using it. We have approximately 20,000 users.

Whenever we experience an incident, we call everyone in the breach and the system owner expert will call the support of the solution. The support could improve because we sometimes have to repeat ourselves since the support is across different time zones.

The initial setup of the solution was quite complex because we tried to use it as a Single Sign-On with multiple applications or customers. 

The solution requires a vendor consultant for the implementation to make the right choices. 

The pricing of the solution is fair but I do not have the full details.

My advice to other users is to be careful about customizing the solution. If you customize the solution you will need good documentation and information that will have to be retained otherwise, there will be a knowledge gap. Especially if you use it for Single Sign-On or federated authentication and authorization. The more you customize it the more it will cause some issues when you are trying to upgrade. We have found in this particular instance if you do the customization you should have certain consistent standards. If you have this solution across multiple teams, there is no single party that has an overview of the code, and what ends up happening is there is too much customization making the upgrades difficult. However, this all depends on the business.

If we are using the solution in a certain way, especially the authorization with customization can cause problems. Every application might have a different way to authorize its functions in the area. However, the authentication is very straightforward. You have to be careful about customizing the solution, and how to sustain it across your teams. Every three to five years you will need to do an upgrade. Otherwise, you will not be supported. Most of us just treat it as a project, then we move on, and we do not use it until a few years later and then we run into large issues.

I rate ForgeRock a six out of ten.