My organization is using OIG for user provisioning and governance . We use it for enterprise use cases like user onboarding and application provisioning to expedite manual fulfillments.
Pros
Cost-saving.
Provisioning.
Governance.
Cons
The cost could be lower.
Support.
Identity.
Likelihood to Recommend
I would recommend Oracle Identity Governance for provisioning and onboarding resources.
We use OIM across the entire organization. We generally use it for our provisioning and deprovisioning process. We also use it for access controls and do generate and fulfill access requests within the organization. At a future time we are looking to implement segregation of duties functionality as well as attestation and certification
Pros
Provisioning and Deprovisioning from HR System PeopleSoft into OIM and downstream systems
Access Requests and SOA Workflows
Active Directory and Exchange Connnectors also work great
Cons
Custom Event Handler Generation
Integration functionality and the custom Connectors
Upgrade Process is clunky
Enterprise Role Based Build Out is strenous
Likelihood to Recommend
OIM is very good for onboarding and off boarding users from the HR Systems into the other Applications. I love the fact that users can get provisioned once the clear HR Processing and Managers can go in and create Access Requests for the staff so that it's provisioned so the can hit their first on speed.
Oracle Identity Manager(OIM) being used by the organization to identity lifecycle management of employees, contractors, and partners. It’s being used across the whole organization as a number of applications rely on OIM for automated provisioning and requests based provisioning of user accounts. OIM not only automates identity lifecycle across multiple applications but it also helps the organization to reduce related admin costs. At the same time, it ensures minimum entitlements to users' accounts, which is the backbone of identity management.
Pros
Very well defined connector framework, which enables us to connect with industry-leading applications, either as a trusted source or targets.
Very much customizable and scalable as per organisational needs.
Always a preferable choice when you have an Oracle applications ecosystem in place as it's easy to configure and maintain when coupled.
Cons
Very high cost compared to its competitors in the market, not suitable for medium or small businesses
There are a lot of known bugs and a constant need to patch [them]
Heavy on hardware, at least 8GB of RAM is needed!! There are much lighter products available with comparable features.
Need skilled professionals to configure and maintain, which leads to additional cost.
Likelihood to Recommend
Well suited for:
1. Large and medium organisations who have the capacity to invest in IAM roadmap for long term.
2. Organisations with and existing oracle and partner applications ecosystem.
3. Scenario where the user base is on the higher side and organisations looking to scale up in near future.
4. Organisation with complex workflow need in identity management process.
Not well suited for
1. Small organisations or even medium ones which have a lesser number of applications
2. Scenarios where custom connectors need to be developed but at the same time turnaround should be quick.
3. Scenarios when features you are looking for are missing, getting them added could take a lot of effort.
4. UI is not very user-friendly and needs to be customised.
It is used as a centralised access control and security system for the custom web application/mobile application developed for one of the government websites used by a little over 800 thousand active users. The main purpose of introducing OIM was to centralise the access control, reduce tickets by enabling self-service and have a proven and secured system in place.
Pros
It has a very well-defined and scalable framework (LDAP directory).
It scales particularly well, going from a basic platform to a complex one using customisation and extensions.
It integrates well with other components like SSO and Access Manager to provide comprehensive a one stop identity management solution.
Cons
It is NOT meant for a small or medium size business because it has a huge implementation cost to it.
Terrible UI which is extremely confusing.
The documentation provided by Oracle is as good as useless because it is written in an extremely complex manner. More often than not, you'll end up hiring a consultant or a dedicated person to take care of product and maintenance.
Likelihood to Recommend
Oracle Identity Manager (OIM) is great if you have a huge organisation and a lot of users to support. It integrates particularly well if you want SSO and already use Oracle's business suit applications such as Oracle Business Intelligence. One of the most important things to keep in mind while deciding to go ahead with OIM is whether or not you have enough time, money and resources for its implementation because it can be very challenging and expensive.
VU
Verified User
Consultant in Professional Services (501-1000 employees)
