Best Identity Management Software83Identity Management (IdM) is essentially about creating, maintaining, and retiring individual enterprise accounts for IT security. Identity and Access Management (IAM) systems encompass this but also provide a framework that goes beyond digital identities to providing access to users in various roles in a relatively automated fashion for cost and efficiency, while yet presenting minimal risk to sensitive data or equipment, simultaneously creating an audit trail for lawful compliance. Depending on the implementation needed by the enterprise (i.e. who is logging in and to what largely determines this) these concerns can be somewhat, highly, or totally overlapping areas. Making comparisons across suites of software and their vendors can be difficult as this apparently singular body of needs is serviced by vendors in this area in a highly modular fashion who bridge gaps with strategic or technical partnerships and integrations. But here "Identity Management" Software is defined as software which handles all or some of the tasks related to all of the above, which may be divided into: -- Identity governance or provisioning (basically role management with workflow controls). -- Access (authorization or restriction of access to certain information to certain persons across locations and systems). ...and the various methods of enabling rapid yet secure access like: -- Single sign-on (SSO, describes the ability to login to the system once and only once, gaining access to all systems without need for logging in again via help from a server). -- Multi-factor authentication (using multiple, independent components to gain access, a simple step to increase security, though at a cost of efficiency for each additional step). -- Password management and self-help for password users. -- Identity federation, related to SSO, access spanning system boundaries (e.g. cloud access). -- Directory / User Repository Management for tracking of users with access, and -- Security Analytics for auditing and compliance... ...and more. IAM software is most usually sold in a modular, configurable pieces-sold-separately fashion, where each module handles some but not all of these needs. Some of the strongest vendors in this area offer high specialization and strategic partnerships with other specializers while other established vendors, via both acquisitions and development, manage to cobble together comprehensive portfolios and subsume all the various needs under one grand suite of comprehensive IAM capabilities. Enterprises have gone both ways. A later arriving area of identity management software that greatly up-prioritizes speed and ease of access over security is called by the vendors who specialize in it Customer Identity Management, which provides simple customer registration most often via Social Sign-On capability. This allows a user to instantaneously set up an account with a service provider merely by logging in via their preferred social network account; voila, the customer has (safe, limited) access, and the enterprise gains useful information about the potential customer in less than five seconds. While traditional Identity Management Systems offer the capability to do this, smaller vendors who specialize in customer access, with its high-efficiency / low-security demands, sometimes bundle the feature with other common marketing capabilities to leverage the instantly acquired customer data (e.g. email marketing, segmentation, landing pages, etc.), thus creating a (growing) niche of customer-facing identity management systems in the process.Okta Workforce Identity1https://media.trustradius.com/product-logos/lp/6M/XZVJG3Z9WVSS.PNGLastPass for Business2https://media.trustradius.com/product-logos/pj/H6/3TPTE2MFEL1P.PNGIdaptive Next-Gen Access (formerly Centrify)3https://media.trustradius.com/product-logos/l2/cm/X6S7STATKRXE.JPEGRSA SecurID Suite4https://media.trustradius.com/product-logos/DM/pf/J9NUOOJ4LT2P.JPEGOneLogin5https://media.trustradius.com/vendor-logos/B1/Q8/EO2P4K6DFDS7-180x180.PNGIdentityIQ6https://media.trustradius.com/vendor-logos/dq/Gy/OW0I6JENK03Z-180x180.JPEGSolarWinds Access Rights Manager7https://media.trustradius.com/product-logos/K9/OY/DI903HA5JF0Q.PNGCyberArk Privileged Account Security8https://media.trustradius.com/vendor-logos/Zq/xO/OFRI13T14IB9-180x180.JPEGKaseya AuthAnvil9https://media.trustradius.com/vendor-logos/wL/TK/Q78Z6I6AR6BK-180x180.JPEGForefront Identity Manager (Discontinued)10https://media.trustradius.com/vendor-logos/tf/J4/RTX1AO2GSVNS-180x180.JPEGVaronis Data Security Platform11https://media.trustradius.com/vendor-logos/we/Tp/C8UBIDF7D32L-180x180.PNGOracle Identity Governance12https://media.trustradius.com/vendor-logos/VC/02/T4E108T4IWP2-180x180.PNGIBM Cloud App ID13https://media.trustradius.com/product-logos/Uv/Xp/77N37PEPH17Z-180x180.PNGAzure Active Directory14https://media.trustradius.com/vendor-logos/tf/J4/RTX1AO2GSVNS-180x180.JPEGAuth015https://media.trustradius.com/vendor-logos/tm/Jr/PFZPLC1OE644-180x180.JPEGBeyondTrust Endpoint Privilege Management, powered by PowerBroker and Avecto16https://media.trustradius.com/vendor-logos/oY/99/9C3PBM0AMI36-180x180.JPEGIBM Security Identity and Access Manager17https://media.trustradius.com/vendor-logos/yf/sf/DNSXTG99HOK3-180x180.JPEGAvatier Identity Management Software Suite18https://media.trustradius.com/product-logos/1J/2x/BOZC8HN91JB0.PNGHypersocket19https://media.trustradius.com/vendor-logos/LV/cE/JOU6DQHSU9JG-180x180.JPEGLoginRadius20https://media.trustradius.com/product-logos/yC/Te/0GB9L4C6SL49.JPEGFischer Identity as a Service21https://media.trustradius.com/product-logos/e6/Vf/E2MJWSCCJVDH.jpegPing Identity Platform22https://media.trustradius.com/product-logos/tt/tc/VZWP9DPA7AJ5.pngVMware Identity Manager23https://media.trustradius.com/vendor-logos/7h/Vv/BNEOJTDVNDTJ-180x180.JPEGWSO2 Identity Server24https://media.trustradius.com/vendor-logos/vo/A1/7MGNR8VZMGMW-180x180.JPEGNetIQ Identity Manager25https://media.trustradius.com/vendor-logos/Zm/IY/D5DAJSH3LPPI-180x180.GIF

Identity Management Software

Best Identity Management Software

TrustMaps are two-dimensional charts that compare products based on satisfaction ratings and research frequency by prospective buyers. Products must have 10 or more ratings to appear on this TrustMap.

Identity Management Software Overview

What is Identity Management Software?

Identity management software manages information about the identity of software users and controls access to corporate resources. The overall goal of identity management software is to improve security and employee productivity. It should also lower costs while managing user identities and credentials.

Identity Management Features & Capabilities

  • Access (authorization or restriction of access to certain information to certain persons across locations and systems).

  • Single sign-on (SSO, describes the ability to login to the system once and only once, gaining access to all systems without the need for logging in again via help from a server).

  • Multi-factor authentication (using multiple, independent components to gain access, a simple step to increase security)

  • Password management and self-help for password users.

  • Identity federation, related to SSO, access spanning system boundaries (e.g. cloud access).

  • Directory / User Repository Management for tracking of users with access, and

  • Security Analytics for auditing and compliance...

The IT Environment

The modern IT environment is highly complex with large numbers of users accessing a tangle of on-premise and cloud applications. This makes compliance especially difficult. Each application essentially has its own proprietary identity store. Consequently, there is no directory federation, which burdens users with having to remember multiple logins. It burdens IT administrators with having to manage multiple different tools, procedures, and policies to manage user identities.

How Identity Management Software Helps

Identity management tools make it much easier to manage provisioning while ensuring compliance. In other words, providing and revoking access to applications in accordance with policies. The tools also supply self-service capabilities for end users, so that they can get the application access they need with no delays. They can also be automatically de-provisioned on the day they leave.

Pricing Information

Identity Management software vendors usually price per month per user. Some vendors sell tiers of functionality with enterprise-level pricing which can be as much as $35 per user per month. Others provide unbundled pricing allowing customers to buy capabilities such as multi-factor authentication or API access management as individual capabilities for specific users.

Identity Management Products

Listings (1-25 of 117)

Okta Workforce Identity

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>
136 Ratings

Okta is an enterprise grade identity management service, built in the cloud. IT can manage access across any application, person or device. Whether the people are employees, partners or customers or whether the applications are in the cloud, on premises or on a mobile device, Okta helps IT become...

LastPass for Business

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>
79 Ratings

LastPass, a LogMeIn company, is a password management application to simplify access to enterprise applications for users but also increase centrality and ease of management of access for administrators with task automation, convenient and secure password sharing, and other features.

41 Ratings

The RSA SecurID Suite is an identity management, authentication and user provisioning offering supported by EMC's security division, RSA. The SecurID Suite includes SecurID Access 2FA and multi-factor authentication solutions and RSA Identity Governance & Lifecycle products.

30 Ratings

OneLogin is the eponymous identity and access management (IAM) product from the company in San Francisco featuring single sign-on (SSO), multi-factor authentication, provisioning, cloud directory, and more.

10 Ratings

SailPoint's IdentityIQ provides enterprise-level cloud-based or installed identity and access management (IAM) software featuring single sign-on (SSO), password management, provisioning, role management, and identity intelligence for audit purposes.

7 Ratings

SolarWinds Access Rights Manager (ARM) is designed to assist IT and security admins to quickly and easily provision, deprovision, manage and audit user access rights to systems, data, and files. By analyzing user authorizations and access permission you get visualization of who has access to what...

8 Ratings

IBM Cloud App ID helps developers who are not security experts to easily add authentication to their apps, and protect their APIs and app back-ends running on IBM Cloud. Developers can add a variety of login-in types: Email or username and passwordEnterpriseSocial App ID includes a cloud user ...

38 Ratings

Microsoft Azure Active Directory (Azure AD) is a cloud-based identity and access management (IAM) solution supporting restricted access to applications with Azure Multi-Factor Authentication (MFA) built-in, single sign-on (SSO), B2B collaboration controls, self-service password, and integration w...

4 Ratings

Auth0 is an Identity Management platform containing Single Sign On (SSO), Breached Password detection, Multi-Factor Authentication and many other related capabilities.

2 Ratings

Hypersocket (formerly Nervepoint) enables organizations to efficiently manage and administer end users and their access to disparate systems by empowering end users to manage their own accounts across multiple systems both on-premise and in the cloud, while allowing IT to gain control over user ...

3 Ratings

LoginRadius is a customer identity platform that helps companies deliver a streamlined login process while protecting digital accounts and complying with data privacy regulations. The vendor says LoginRadius serves over 3,000 businesses with a monthly reach of 700 million users worldwide. Key pla...

4 Ratings

The Next-Gen Identity Platform from Ping Identity in Denver, Colorado is an identity management and access solution (IAM) for enterprises. Features of the products include single sign-on, multi-factor authentication, user management with directory, provisioning and deprovisioning, and more. Ping...

2 Ratings

WSO2 Identity Server provides security and identity management of enterprise web applications, services, and APIs. The most recent version of Identity Server acts as an Enterprise Identity Bus (EIB) — a central backbone to connect and manage multiple identities regardless of the standards on whic...