We use it to lock down the interface between helpdesks and Active Directory.
Identity Senior Analyst at a consumer goods company with 10,001+ employees
Gives us attribute-level control and the AD management features work very well
Pros and Cons
- "It gives us attribute-level control and the AD management features work very well."
- "Most of the time it just works."
What is our primary use case?
How has it helped my organization?
It's improved things because we don't have "cowboy changes" being made to AD without us knowing about it. People still have to do the things they need to do, but we can now make sure that they don't inadvertently do something they shouldn't.
It hasn't saved us time in terms of what needs to be done, but it has saved us time in terms of not having to go back and fix stuff when people have made mistakes.
What is most valuable?
It gives us attribute-level control and the AD management features work very well.
What needs improvement?
For what we use it for, there are no additional features it would need.
Buyer's Guide
One Identity Active Roles
October 2024
Learn what your peers think about One Identity Active Roles. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,763 professionals have used our research since 2012.
What do I think about the stability of the solution?
Most of the time it just works.
What do I think about the scalability of the solution?
It works at the scale we use it at. I can't say whether it would work in much bigger enterprises or not.
How are customer service and support?
I, personally, have never had cause to use technical support. My guys have interacted with them a few times and have been happy with the support they've received.
Which solution did I use previously and why did I switch?
Previously, people were able to update AD directly. We have reduced that by pushing everything through Active Roles. Our decision to go with this solution was part of the need to lock things down, make things more secure.
What about the implementation team?
We did the deployment ourselves.
What other advice do I have?
My advice would be to certainly consider Active Roles and, depending on the size of the organization, consider integrating it with Starling as well.
I know the solution is extensible through cloud-delivered services but we don't use those currently.
I would rate Active Roles a nine out of ten, based on the convenience it's given us.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Director Identity & Access Management at a tech services company with 1,001-5,000 employees
Easy to use and Provides granular control from a single pane of glass
Pros and Cons
- "Having a tool to manage all changes to AD from a single pane of glass is awesome."
- "The ability to send logs to a SIEM would be very beneficial."
What is our primary use case?
We use ARS to manage multiple domains. Our organization owns over thirty companies and we needed a tool that would give us the ability to apply consistent access rules across all of the businesses.
How has it helped my organization?
ARS gives us the ability to provide granular control that AD just doesn't offer. Having a tool to manage all changes to AD from a single pane of glass is awesome. It also allows Help Desk personnel to get up to speed very quickly without having a strong technical background.
What is most valuable?
The built-in templates within ARS allow you to create security groups without having to construct them on your own. It greatly simplifies the process and is also makes it much easier to review if you ever need to make changes.
What needs improvement?
The ability to send logs to a SIEM would be very beneficial.
For how long have I used the solution?
We have been using this solution for five years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
One Identity Active Roles
October 2024
Learn what your peers think about One Identity Active Roles. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,763 professionals have used our research since 2012.
Solution Architect at a tech services company with 51-200 employees
Offers automatic provisioning for multiple applications/systems and a virtual directory structure
How has it helped my organization?
- Automation of manual identity management operations (provisioning and deprovisioning).
- Solving security and compliance issues is easy.
- Operational issues are much easier and more reliable with Quest ActiveRoles's directory layer and portal.
What is most valuable?
It provides automatic provisioning for many applications and systems, including in-house applications and cloud applications. Also, it offers a virtual directory structure and a new directory layer between users and physical directories. Management and monitoring become easier.
What needs improvement?
Scripting options in different languages.
For how long have I used the solution?
Under four years.
What do I think about the stability of the solution?
Not yet.
What do I think about the scalability of the solution?
No.
How are customer service and technical support?
It is excellent. Quick and useful answers.
They also have a large community portal where you can find a lot of information.
Which solution did I use previously and why did I switch?
I didn't use any other solution, but I evaluated many solutions.
How was the initial setup?
It was simple. I didn't have a problem. It took half a day.
What's my experience with pricing, setup cost, and licensing?
There is a simple user-based licensing model. Not complicated.
Which other solutions did I evaluate?
Yes. NetIQ, FIM, Oracle, CA, IBM, and SailPoint.
What other advice do I have?
Choose your project team well. Remember that analysis of all processes is very important. Don't forget that testing is also very important after each development.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free One Identity Active Roles Report and get advice and tips from experienced pros
sharing their opinions.
Updated: October 2024
Popular Comparisons
Microsoft Entra ID
Cisco Identity Services Engine (ISE)
CyberArk Privileged Access Manager
SailPoint Identity Security Cloud
Omada Identity
Okta Workforce Identity
One Identity Manager
Oracle Identity Governance
OneLogin by One Identity
ManageEngine ADManager Plus
NetIQ Identity Manager
Netwrix Auditor
ManageEngine ADAudit Plus
Symantec Identity Governance and Administration
Buyer's Guide
Download our free One Identity Active Roles Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Why should one choose One Identity Safeguard and One Identity Active Roles for the banking and insurance industry?
- When evaluating User Provisioning, what aspect do you think is the most important to look for?
- Why is Identity Governance and Administration (IGA) important?
- Which one is best: Quest One Identity Manager or Forgerock Identity Management
- Why is User Provisioning Software important for companies?