IAM CONSULTANT at a tech services company with 10,001+ employees
Real User
Top 10
Feb 16, 2026
I wish the JavaScript part could be improved, as not everyone is proficient in JavaScript, so automating that or reducing the reliance on it could be beneficial. Additionally, having only one realm in the cloud version, the alpha realm, feels limiting, and I would prefer having more than one realm as we had in the on-premise version of ForgeRock. I do not have any other improvements needed for ForgeRock that I have not mentioned.
Software Engineer at a financial services firm with 10,001+ employees
Real User
Top 5
Feb 14, 2026
I wish we had used ForgeRock's adaptive risk-based authentication, which allows dynamic adjustment of authentication requirements based on user behavior. This could have helped us further strengthen our security. Another hidden gem is the built-in support for custom authentication modules and scripting, which gives a great deal of flexibility to tailor authentication flows. The self-service capabilities for password resets and account recovery have been very helpful in reducing support overhead and improving user experience. Discovering and utilizing these features would have definitely made our integration even smoother and would have provided additional value for both our users and our security team. One area of improvement would be the user interface for policy and workflow configuration, which can become complex and sometimes unintuitive, especially for new administrators. A more streamlined and user-friendly UI would help reduce the learning curve. Enhanced out-of-the-box analytics and reporting would also be valuable, as our current options often require custom development or integration with external tools. While extensibility is a strength, documentation for advanced customizations and integrations could be more comprehensive and easier to follow. Improved support for seamless upgrades and backward compatibility would also help minimize downtime. In terms of performance, optimizing the platform for high concurrency environments would be beneficial, especially for organizations with large user bases or peak usage periods. Enhanced scalability features such as more granular or horizontal scaling options would provide better support for distributed deployments. For integrations, having more pre-built connectors and easy integration with modern cloud-native services would accelerate adoption. Improved monitoring and real-time health dashboards would help proactively identify and resolve performance bottlenecks.
There are some areas I want ForgeRock to improve. These areas include policy configuration, documentation clarity, UI complexity, and debugging token flow. I want ForgeRock to improve in documentation clarity, UI complexity, debugging token flow, policy configuration, and DevOps automation support.
iam enginee at a university with 10,001+ employees
Real User
Top 5
Feb 13, 2026
ForgeRock is very powerful, but there are areas where it could be improved. The main area is complexity. ForgeRock is extremely flexible, but the learning curve can be steep. Authentication trees, policy configurations, and integration settings can become very complex quickly, especially for those new to the platform or in a very large organization. More simplified onboarding templates or guided configuration options could help new users significantly. Another area is the UI and administrative experience. While the platform is functionally strong, some parts of the admin console feel less refined. For example, debugging authentication flows or troubleshooting tokens sometimes requires digging into logs rather than having more visual tools built in. The deployment and operational setup could also be streamlined further. In larger-scale or cloud-native environments, containerization and CI/CD integration are very important. While ForgeRock supports this, the configuration and upgrade process can sometimes feel heavier compared to more SaaS-native identity providers.
In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required.
Devops Engineer and Trainer at a tech vendor with 1-10 employees
Real User
Top 5
Jun 12, 2024
The product's customization is a bit complicated. The tool is customized by exporting config files to Git and bundling them as images. It is hard for the developers to maintain it as it requires training. Kubernetes deployment for ForgeRock which is called ForgeOps is not included in product support. The company does not officially support ForgeOps as a product feature but they support it on a best effort basis. It would be better to have ForgeOps as a part of product support.
ForgeRock does not provide support for issues related to SCIM connectors as their engineers or developers do not know exactly about it. The solution's documentation is not very good, and they do not give more details.
The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable. Likewise, ForgeRock is not very user-friendly.
Information Security Associate Manager at a tech services company with 10,001+ employees
Real User
Sep 8, 2022
ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant. There are some limitations and some issues. It requires you to create a code ticket and then work on it with ForgeRock. In a future release, we would like to add additional security to our environment. We would also like to have identity and access management technology for passwordless logins.
Technology Security Analyst at a tech services company with 10,001+ employees
Real User
Aug 23, 2022
ForgeRock can be a complex product that requires a lot of time to learn and understand its real value. The issue is that when we're working in real-time scenarios for real-time projects, we might face challenges that we're not able to figure out ourselves. By the time we have real-time interaction with the customer, it can be awkward to go back to the documentation and try to figure it out. I'd like the solution to include ways of customizing or achieving our scenarios more simply. That could include simplified documentation within the tool rather than having to use a separate portal. If something were available within the tool, I would be happy.
There are many issues with the latest version, so we've raised many tickets. They added new features, but that also needs some improvement. It may be related to some standards like requirements and specific settings that need to be improved. We are using OIDC and SAML Federation standards, and I think SAML things also need some improvement. It is a known issue that's already in their release notes. So I guess that is already there.
Identity Architect at a financial services firm with 10,001+ employees
Real User
Aug 12, 2022
The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI. Secondly, the customization could be improved. You cannot develop customizations quickly. For example, if you want to add a custom attribute, you need to use other tools. You have to write the code and deploy it as a JAR in the server. 30 minutes of work takes five to six hours and you need specialized skills to write the JAR file.
Product Manager at a financial services firm with 1,001-5,000 employees
Real User
Aug 4, 2022
We would like this solution to be developed for use with mobile applications. We would also like to be able to customize the default modules that are available, to include some of our specific requirements.
The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution. The reports could be more customizable in an upcoming release, and the overall customization could be simplified by making drag-and-drop functionality.
It should have a better user interface. Its flexibility should also be improved. It is not about simplifying; it is more about flexibility. Each company has its own requirements, and ForgeRock can provide more flexibility in terms of the use of existing modules to implement features for the customers.
Technology Solutions Leader at a outsourcing company with 10,001+ employees
Real User
Dec 8, 2020
We need some more time with the solution to really note if there are specific features that are missing. Currently, it's doing a good job of covering what we need. We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced. We've signed the contract and yet we're still not going through the typical process, which is worrying.
President at a tech services company with 11-50 employees
Reseller
Jul 19, 2020
Automatic Deployment needs improvement. It could be made easier. In the next release, I would like it to be easier to use, easier to deploy, and more implementation-friendly.
It's hard to speak with ForgeRock. It's very expensive. I find that it's quite expensive for just an open-source system. Support is quite expensive. We are only 300 users. It would make sense for a big company but for a little company, it's quite expensive.
Solution Architect at a tech services company with 51-200 employees
Consultant
Nov 7, 2019
They should improve the solution by including functionality for reporting. There are several log sites, but many are very difficult. In the next release of this solution, I would like to see reporting features added, and also they can simplify their log-site because it's very difficult to manage.
ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.
With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy...
I wish the JavaScript part could be improved, as not everyone is proficient in JavaScript, so automating that or reducing the reliance on it could be beneficial. Additionally, having only one realm in the cloud version, the alpha realm, feels limiting, and I would prefer having more than one realm as we had in the on-premise version of ForgeRock. I do not have any other improvements needed for ForgeRock that I have not mentioned.
I wish we had used ForgeRock's adaptive risk-based authentication, which allows dynamic adjustment of authentication requirements based on user behavior. This could have helped us further strengthen our security. Another hidden gem is the built-in support for custom authentication modules and scripting, which gives a great deal of flexibility to tailor authentication flows. The self-service capabilities for password resets and account recovery have been very helpful in reducing support overhead and improving user experience. Discovering and utilizing these features would have definitely made our integration even smoother and would have provided additional value for both our users and our security team. One area of improvement would be the user interface for policy and workflow configuration, which can become complex and sometimes unintuitive, especially for new administrators. A more streamlined and user-friendly UI would help reduce the learning curve. Enhanced out-of-the-box analytics and reporting would also be valuable, as our current options often require custom development or integration with external tools. While extensibility is a strength, documentation for advanced customizations and integrations could be more comprehensive and easier to follow. Improved support for seamless upgrades and backward compatibility would also help minimize downtime. In terms of performance, optimizing the platform for high concurrency environments would be beneficial, especially for organizations with large user bases or peak usage periods. Enhanced scalability features such as more granular or horizontal scaling options would provide better support for distributed deployments. For integrations, having more pre-built connectors and easy integration with modern cloud-native services would accelerate adoption. Improved monitoring and real-time health dashboards would help proactively identify and resolve performance bottlenecks.
There are some areas I want ForgeRock to improve. These areas include policy configuration, documentation clarity, UI complexity, and debugging token flow. I want ForgeRock to improve in documentation clarity, UI complexity, debugging token flow, policy configuration, and DevOps automation support.
ForgeRock is very powerful, but there are areas where it could be improved. The main area is complexity. ForgeRock is extremely flexible, but the learning curve can be steep. Authentication trees, policy configurations, and integration settings can become very complex quickly, especially for those new to the platform or in a very large organization. More simplified onboarding templates or guided configuration options could help new users significantly. Another area is the UI and administrative experience. While the platform is functionally strong, some parts of the admin console feel less refined. For example, debugging authentication flows or troubleshooting tokens sometimes requires digging into logs rather than having more visual tools built in. The deployment and operational setup could also be streamlined further. In larger-scale or cloud-native environments, containerization and CI/CD integration are very important. While ForgeRock supports this, the configuration and upgrade process can sometimes feel heavier compared to more SaaS-native identity providers.
In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't think ForgeRock directly supports integrations with Slack, making it an area where improvements are required.
The product's customization is a bit complicated. The tool is customized by exporting config files to Git and bundling them as images. It is hard for the developers to maintain it as it requires training. Kubernetes deployment for ForgeRock which is called ForgeOps is not included in product support. The company does not officially support ForgeOps as a product feature but they support it on a best effort basis. It would be better to have ForgeOps as a part of product support.
The solution's deployment should be made easier.
Customization can be a difficult job.
ForgeRock does not provide support for issues related to SCIM connectors as their engineers or developers do not know exactly about it. The solution's documentation is not very good, and they do not give more details.
The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable. Likewise, ForgeRock is not very user-friendly.
The solution could improve by adding more advertising and marketing.
The technical team could be better.
ForgeRock is an open source solution and is available to everyone but it is not freeware. If you need support, you need a subscription for ForgeRock. Many of its functionalities need to be built up with the help of a consultant. There are some limitations and some issues. It requires you to create a code ticket and then work on it with ForgeRock. In a future release, we would like to add additional security to our environment. We would also like to have identity and access management technology for passwordless logins.
ForgeRock can be a complex product that requires a lot of time to learn and understand its real value. The issue is that when we're working in real-time scenarios for real-time projects, we might face challenges that we're not able to figure out ourselves. By the time we have real-time interaction with the customer, it can be awkward to go back to the documentation and try to figure it out. I'd like the solution to include ways of customizing or achieving our scenarios more simply. That could include simplified documentation within the tool rather than having to use a separate portal. If something were available within the tool, I would be happy.
There are many issues with the latest version, so we've raised many tickets. They added new features, but that also needs some improvement. It may be related to some standards like requirements and specific settings that need to be improved. We are using OIDC and SAML Federation standards, and I think SAML things also need some improvement. It is a known issue that's already in their release notes. So I guess that is already there.
The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI. Secondly, the customization could be improved. You cannot develop customizations quickly. For example, if you want to add a custom attribute, you need to use other tools. You have to write the code and deploy it as a JAR in the server. 30 minutes of work takes five to six hours and you need specialized skills to write the JAR file.
I think the upgrade process is sometimes a little complicated and there are failures that occur.
We would like this solution to be developed for use with mobile applications. We would also like to be able to customize the default modules that are available, to include some of our specific requirements.
In an upcoming release, the solution could improve by limiting the need to do customizations.
The solution requires more simplified customization. However, part of the problem is my clients determining their own preferences. Technology can help and do many things, but you have to define your own policies to ensure that the solution or service works within those parameters. Helping customers understand their business and different processes is another issue not relating to the functionality of this solution. The reports could be more customizable in an upcoming release, and the overall customization could be simplified by making drag-and-drop functionality.
It should be a little bit easier to implement. It is user-friendly, but there is always scope for improvement.
It should have a better user interface. Its flexibility should also be improved. It is not about simplifying; it is more about flexibility. Each company has its own requirements, and ForgeRock can provide more flexibility in terms of the use of existing modules to implement features for the customers.
We need some more time with the solution to really note if there are specific features that are missing. Currently, it's doing a good job of covering what we need. We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced. We've signed the contract and yet we're still not going through the typical process, which is worrying.
Automatic Deployment needs improvement. It could be made easier. In the next release, I would like it to be easier to use, easier to deploy, and more implementation-friendly.
It's hard to speak with ForgeRock. It's very expensive. I find that it's quite expensive for just an open-source system. Support is quite expensive. We are only 300 users. It would make sense for a big company but for a little company, it's quite expensive.
They should improve the solution by including functionality for reporting. There are several log sites, but many are very difficult. In the next release of this solution, I would like to see reporting features added, and also they can simplify their log-site because it's very difficult to manage.
The identity management model needs a bit of improvement. The solution should work on offering more automation.