We use it to define the users in all of our systems like VMS and Samba. We don't use Windows, we use Samba. We create and define the permissions and configurations for the users.
System manager at Tribunal fédéral suisse
Enables us to define our systems but it is quite expensive
Pros and Cons
- "We create and define the permissions and configurations for the users."
- "I find that it's quite expensive for just an open-source system. Support is quite expensive."
What is our primary use case?
How has it helped my organization?
We were using Solaris IDM system, Solaris sells an IDM system and there was a big migration telling us where to go. They told us to rewrite the IDM solution and we saw which other solutions there were out there. We found this solution and we found someone who could create a proof of concept and we decided to change from Solaris IDM to this. It has the same functionality.
What is most valuable?
In the beginning, it was open-source as opposed to other solutions like IBM. We used Solaris IDM and we had to merge with another product and we chose this because, in our company, open-source software is the main solution.
What needs improvement?
It's hard to speak with ForgeRock. It's very expensive. I find that it's quite expensive for just an open-source system. Support is quite expensive. We are only 300 users. It would make sense for a big company but for a little company, it's quite expensive.
Buyer's Guide
ForgeRock
April 2025

Learn what your peers think about ForgeRock. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
849,190 professionals have used our research since 2012.
For how long have I used the solution?
I have been using ForgeRock for around six to seven years.
What do I think about the stability of the solution?
The stability is quite good. As an IDM system, it's not so stressed. We create five or six users per month.
What do I think about the scalability of the solution?
I heard that it's good for big companies, with thousands of users use it but our company only has a few hundred users. We use little bits of the database. Scalability isn't a problem for us.
How are customer service and support?
I have contacted their support. It's quite good. Out of ten, I would rate it a seven.
What other advice do I have?
I would rate it a seven out of ten.
I would recommend trying it. Do a proof of concept. Every company is different. Management is different, you have to find a local company that can support you.
The interface is quite lively but I don't think that it's possible to have UI that's compatible with the rest of the company's. We only use the core of OpenIDM.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
ForgeRock Consultant at a tech services company with 11-50 employees
Very easy to customize and adaptable to any environment
Pros and Cons
- "Easy to customize and adaptable to any environment."
- "As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively."
What is our primary use case?
There are multiple use cases including multi-factor authentication that enable more integration on the application stack. There's also the CIAM methodology with the single sign-on, the SAML integration and the federation for business to business. We are partners with ForgeRock and I'm an SME.
What is most valuable?
The valuable feature of the product is that it's easy to customize and adaptable to any environment. We can use the leverage acknowledgment of an intellectual capture and make an out-of-the-box complex solution.
What needs improvement?
Steep learning curve: As with any complex software platform, there is a learning curve to using ForgeRock, and it may require specialized expertise to implement and manage effectively.
For how long have I used the solution?
I've been using ForgeRock Access Manager for 22 years since Sun Microsystems released the source code of OpenAM from Iplanet-DSAME.
What do I think about the scalability of the solution?
The solution is very scalable and offers three kinds of architecture; small, medium and large. That means you can start with one million users, and scale up to 10 million. The only limitation is the platform.
How was the initial setup?
The deployment is straightforward and doesn't take a lot of time. There's a lot of documentation available. It's a matter of defining the process.
What's my experience with pricing, setup cost, and licensing?
Once you know your needs, licensing is very flexible and adaptable with any kind of solution and works with any size of organization.
What other advice do I have?
This is a good product with good technology that's easy to integrate. Follow the best practice and it works well.
I rate this product 10 out of 10.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Buyer's Guide
ForgeRock
April 2025

Learn what your peers think about ForgeRock. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
849,190 professionals have used our research since 2012.
QA Analyst at a comms service provider with 501-1,000 employees
Prompt support, reliable, and scalable
Pros and Cons
- "The support is good and prompt."
- "The solution could improve by adding more advertising and marketing."
What is our primary use case?
We are using ForgeRock for our CRM system.
How has it helped my organization?
In our company, we had some SQL legacy databases but with ForgeRock there is much more integration, including outside the system.
What needs improvement?
The solution could improve by adding more advertising and marketing.
For how long have I used the solution?
I have been using ForgeRock for approximately one and a half years.
What do I think about the stability of the solution?
The solution is stable.
I rate the stability of ForgeRock an eight out of ten.
What do I think about the scalability of the solution?
You are able to build on ForgeRock, it is scalable.
I rate ForgeRock an eight out of ten.
How are customer service and support?
The support is good and prompt.
How was the initial setup?
The initial setup of ForgeRock can be complex based on what kind of integration nodes we are connecting.
What about the implementation team?
We did the deployment of ForgeRock in-house.
What other advice do I have?
I rate ForgeRock a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Technology Architect at a tech services company with 10,001+ employees
Flexible customisation and provides out-of-the-box support for almost all authentication mechanisms/products
What is most valuable?
- Flexibility in the customisation.
- Out-of-the-box support for almost all authentication mechanisms/products.
- Hassle-free support to federation protocols (SAML can be enabled and configured in a few mouse clicks).
How has it helped my organization?
This is not directly applicable to me, as I work in the consulting service industry. However, I have seen how it's brought about improvements at our client locations. One of our clients wanted to have a solution with complicated authentication requirements (authenticate users from multiple sources and even from non-standard sources), and they approached several product vendors. ForgeRock was the only solution they found which fit their budget and time frame.
What needs improvement?
It has a promising roadmap and strategy. However, the product still needs to refactor and get rid of the dirty coding from its predecessor. I hope it will improve over time.
For how long have I used the solution?
More than 10 years. I worked on its predecessor, Sun Java System Access Manager, as well.
What do I think about the stability of the solution?
Not with the version I’m reviewing. There were issues in previous versions but they were fixed over time.
What do I think about the scalability of the solution?
I have never had any issues with scalability. It depends upon how we spec the environment as well.
How are customer service and technical support?
It's awesome. Instant responses on support calls.
Which solution did I use previously and why did I switch?
I used Oracle AM a little bit. Its configuration is a bit confusing and takes a long time.
How was the initial setup?
As I said before, you can install and configure the product in a matter of a few minutes; it’s that easy.
What's my experience with pricing, setup cost, and licensing?
I know it’s cheap compared to other leading AM products. You can even go for the Open Source version of the product if you are building it by yourself and don’t need the support and regular patches.
Which other solutions did I evaluate?
As I said, I work in the consulting/service industry, hence this is not directly applicable to me.
What other advice do I have?
Just try it and get a feel for the product.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Head Of Service Management at a financial services firm with 501-1,000 employees
Scalable, stable, but complex installation
Pros and Cons
- "The solution is very scalable. We have a lot of users that have been increasing over the years that we have been using it. We have approximately 20,000 users."
- "In an upcoming release, the solution could improve by limiting the need to do customizations."
What is our primary use case?
We use the solution for the authorization and authentication of various applications.
What is most valuable?
The solution has the ability to handle a lot of users.
What needs improvement?
In an upcoming release, the solution could improve by limiting the need to do customizations.
For how long have I used the solution?
I have been using the solution for more than three years.
What do I think about the stability of the solution?
I find the solution to be stable, it has been working well. However, we have encountered some stability issues when we tried to upgrade. Normally we would have to reboot the server and occasionally have performance and tunning issues. The solution's stability during the upgrade should be improved.
What do I think about the scalability of the solution?
The solution is very scalable. We have a lot of users that have been increasing over the years that we have been using it. We have approximately 20,000 users.
How are customer service and technical support?
Whenever we experience an incident, we call everyone in the breach and the system owner expert will call the support of the solution. The support could improve because we sometimes have to repeat ourselves since the support is across different time zones.
How was the initial setup?
The initial setup of the solution was quite complex because we tried to use it as a Single Sign-On with multiple applications or customers.
What about the implementation team?
The solution requires a vendor consultant for the implementation to make the right choices.
What's my experience with pricing, setup cost, and licensing?
The pricing of the solution is fair but I do not have the full details.
What other advice do I have?
My advice to other users is to be careful about customizing the solution. If you customize the solution you will need good documentation and information that will have to be retained otherwise, there will be a knowledge gap. Especially if you use it for Single Sign-On or federated authentication and authorization. The more you customize it the more it will cause some issues when you are trying to upgrade. We have found in this particular instance if you do the customization you should have certain consistent standards. If you have this solution across multiple teams, there is no single party that has an overview of the code, and what ends up happening is there is too much customization making the upgrades difficult. However, this all depends on the business.
If we are using the solution in a certain way, especially the authorization with customization can cause problems. Every application might have a different way to authorize its functions in the area. However, the authentication is very straightforward. You have to be careful about customizing the solution, and how to sustain it across your teams. Every three to five years you will need to do an upgrade. Otherwise, you will not be supported. Most of us just treat it as a project, then we move on, and we do not use it until a few years later and then we run into large issues.
I rate ForgeRock a six out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Architecture Practice Lead at SKY TV New Zealand
The integration has been smooth and the costs have been significantly reduced.
What is most valuable?
Integration with Identity repository and managing SAML2.0 SSO & Federation; provides a simple upgrade from Sun OpenSSO to OpenAM and ForgeRock OpenIDM; runs seamlessly with the Sun Identity Connector Framework; Unified Platform; lightweight Infrastructure; Connected Security; Developer-friendly AM solution.
How has it helped my organization?
The product was used mainly to migrate from Sun IAM suite. The integration has been smooth and the costs have been significantly reduced.
What needs improvement?
Reporting and Analysis capabilities seem to be less mature.
Business strategic partnership model with multiple parties across marketing and sales needs improvement.
Implementation, integration capabilities and support model are still evolving and posing a risk of poor quality.
For how long have I used the solution?
3 years
What was my experience with deployment of the solution?
Nothing significant.
What do I think about the stability of the solution?
I did, but I would rather blame my LDAP infrastructure. No significant issues with the product had been encountered that are worth mentioning.
What do I think about the scalability of the solution?
No significant issues.
How are customer service and technical support?
3; on a scale from 1-5 (1=worst, 5=best).
Which solution did I use previously and why did I switch?
The key driver had been the migration from Sun IAM.
How was the initial setup?
Migration involved analysis and solution design. The setup was of medium complexity.
What about the implementation team?
The solution was implemented by a vendor. Level of required expertise was 3 on a scale from 1-5 (1=worst, 5=best).
What was our ROI?
Cost, increased time to market.
Which other solutions did I evaluate?
I evaluated Oracle Identity suite, TIM/TAM.
What other advice do I have?
It may not have a complete suite of best-in-class IAM capabilities compared to some of the market leaders; however, they are maturing steadily and rapidly expanding the portfolio with OpenDJ and OpenIDM. It’s easy to configure and yes, it’s open source!
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Manager at a consultancy with 10,001+ employees
A stable and scalable solution but it requires better technical support
Pros and Cons
- "The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent."
- "The identity management model needs a bit of improvement."
What is our primary use case?
The solution is primarily used for the consumers, for their registration and other applications.
How has it helped my organization?
For our client, which we are deploying for, the solution seems to be offering them really great value.
What is most valuable?
The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent.
What needs improvement?
The identity management model needs a bit of improvement.
The solution should work on offering more automation.
For how long have I used the solution?
I've been using the solution for almost four years.
What do I think about the stability of the solution?
The stability of the solution is good. They are coming up with good solutions and features. However, I think they should focus more on how they can automate things or make it simpler when it comes to the implementation of cloud solutions.
What do I think about the scalability of the solution?
The solution is extremely scalable. We are implementing this for around 10 million customer records.
How are customer service and technical support?
Technical support needs improvement. We have raised many cases but every time I call, they don't support. You need to buy their professional services.
How was the initial setup?
When you are deployed on these standalone servers, the initial setup is very straightforward. However, when you are talking about the cloud solution, deployment can be a bit tricky.
Deployment took around two to three months.
What about the implementation team?
We handled the implementation ourselves.
What's my experience with pricing, setup cost, and licensing?
You need to negotiate the pricing, so how expensive or affordable it ends up being depends on each individual contract.
What other advice do I have?
Currently, we are working under the Agile model.
I would advise others to assess the product first based on their requirements. There are multiple models, so they need to be sure to choose the best option for them. Otherwise, they will end up purchasing everything and they might not utilize that product.
I'd rate the solution seven out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
Managing Director at I'curity Solutions
Integrates well, keeps up with market trends, and priced well
Pros and Cons
- "The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it."
- "The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution."
What is our primary use case?
My clients use the solution primarily for customer identity management, access management, customer onboarding, data management, and authentication.
What is most valuable?
The solution integrates well and it is important for them to keep up with the current trends in the market quickly enough, and they have been doing a good job at it.
What needs improvement?
The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution.
The reports could be more customizable in an upcoming release, and the overall customization could be simplified by making drag-and-drop functionality.
For how long have I used the solution?
I have been using this solution within 12 months.
What do I think about the stability of the solution?
I have found the solution stable.
What do I think about the scalability of the solution?
There is a lot of options for scalability in this solution.
How are customer service and technical support?
ForgeRock was born out of the open souced technology and users can use the community support without a license. Users with a commercial license can talk directly with the support agents that can immediately assist them with their problems.
How was the initial setup?
The installation is very simple.
What's my experience with pricing, setup cost, and licensing?
The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end.
What other advice do I have?
My advice to those wanting to implement ForgeRock is if they are looking for a strong customizable identity management solution that strikes the balance between convenience and security then this is probably a good choice for you.
I rate ForgeRock an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner

Buyer's Guide
Download our free ForgeRock Report and get advice and tips from experienced pros
sharing their opinions.
Updated: April 2025
Product Categories
Access Management Identity Management (IM) Customer Identity and Access Management (CIAM)Popular Comparisons
Microsoft Entra ID
Cloudflare One
Okta Workforce Identity
Auth0
Ping Identity Platform
F5 BIG-IP Access Policy Manager (APM)
CyberArk Identity
Amazon Cognito
Symantec Siteminder
OneLogin by One Identity
IBM Security Verify Access
Oracle Access Manager
Gluu Flex
SecureAuth Identity Platform
Buyer's Guide
Download our free ForgeRock Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Which one is best: Quest One Identity Manager or Forgerock Identity Management
- What are the Top 5 cybersecurity trends in 2022?
- What are some tips for effective identity and access management to prevent insider data breaches?
- What are your best practices for Identity and Access Management (IAM) in the Cloud?
- What are security features to look out for when choosing a Customer Identity and Access Management solution?
- Why is identity and access management (IAM) so important in preventing data breaches?
- What access management tools would you recommend to help with GDPR compliance?
- Which is the best choice of Zero Trust Network Access (ZTNA)?
- When evaluating Access Management, what aspect do you think is the most important to look for?
- What are some tips for managing the identity lifecycle securely and effectively?
Hi Doug, did you receive some feedback from Sam. What is the status of your project now?