ForgeRock vs IBM Security Verify Access comparison

Ping Identity and IBM are both solutions in the Identity Management (IM) category. Ping Identity is ranked #13 with an average rating of 8.5, while IBM is ranked #25 with an average rating of 8.0. Ping Identity holds a 4.5% mindshare in IAM, compared to IBM’s 0.9% mindshare. Additionally, 92% of Ping Identity users are willing to recommend the solution, compared to 100% of IBM users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 11, 2024

ForgeRock and IBM Security Verify Access are two leading products in identity and access management. ForgeRock has the upper hand in pricing and support, while IBM Security Verify Access stands out due to its extensive features, making it a preferred choice for users willing to invest for advanced capabilities.

Features: Users praise ForgeRock for its scalability, integration capabilities, and ease of deployment. IBM Security Verify Access receives high marks for its robust security features, flexibility, and comprehensive security solution.

Room for Improvement: ForgeRock users suggest improvements in documentation, customization options, and support. IBM Security Verify Access users point out the need for a simpler configuration process, better mobile support, and usability enhancements.

Ease of Deployment and Customer Service: ForgeRock users appreciate its straightforward deployment model but seek better customer support. IBM Security Verify Access is considered more complex to deploy but benefits from strong customer service, making it favorable for larger enterprises.

Pricing and ROI: ForgeRock is generally viewed as more cost-effective initially, offering a quicker ROI. IBM Security Verify Access, while perceived as expensive, promises substantial long-term benefits, justifying the initial investment given its comprehensive feature set and reliability.

To learn more, read our detailed ForgeRock vs. IBM Security Verify Access Report (Updated: February 2025).

Buyer's Guide

ForgeRock vs. IBM Security Verify Access

February 2025

Download the complete report

Helped 845,040 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Omada Identity

Mindshare comparison

As of April 2025, in the Identity Management (IM) category, the mindshare of Omada Identity is 3.3%, down from 3.4% compared to the previous year. The mindshare of ForgeRock is 4.5%, down from 5.4% compared to the previous year. The mindshare of IBM Security Verify Access is 0.9%, down from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Identity Management (IM)

Featured Reviews

Pernilla Hulth

IAM Project Manager (Independent) at a retailer with 10,001+ employees

The interface is easy to use and gives you a solid overview

The cloud-based deployment was straightforward, but the on-prem deployment was in a highly complex ecosystem. Omada has matured since then. I wouldn't say that it isn't straightforward, but it depends on the customer. A standard deployment is relatively easy, but it can be more painful if you need a lot of customization. We deployed the cloud solution in around four months, nearly meeting the 12-week benchmark. The on-prem deployment took three years. It was a highly complex ecosystem that was dependent on other systems. Depending on the size of your environment, you need a product owner and some specialists for maintenance. My last customer was a university with a complex environment. They had around 12 people involved in maintenance at that organization. Typically, it's between 2-5 people.

Read full review

Trisha Bhola

Senior Associate at Cognizant

It's easier to customize and maintain our code

I worked on two different projects based on ForgeRock, and both are automated deployments. One is a UI-based deployment. It's an automated process using some scripts. The deployments are done through Octopus, so it's also automated. We first deploy the essential components of AM and then implement additional configurations like Amster Imports. After that, we import all the SAML Federation data and add some certificates. We have two teams of five and three team members working on the different deployment processes. One is working on the dev side, another is looking at the higher environment, and one is managing the data. In another project, I'm the only developer. We also deploy on the dev environments so that anyone can test new features, configurations, and client requirements. They can test it on the dev environment, but a team of four people manages higher environments. The Access Management component involves the most customization, which takes around 15 to 20 minutes because of the need to import the Amster configuration. If another deployment is simultaneously happening, it may be a little slower and take around 30 minutes. The other components, like the user data stores, take about five to seven minutes. It's another five to 10 minutes for Identity Management. After deployment, the maintenance is mostly checking for security vulnerabilities. If ForgeRock shares security vulnerabilities or advisories, we check to see if there is something inside we need to maintain. Other than that, we just install updates when they add features each month.

Read full review

AsifIqbal

Chief Information Security Officer at a financial services firm with 1,001-5,000 employees

Has good scalability and is stable with no glitches; has a multi-factor authentication feature

What we'd like improved in IBM Security Access Manager is its onboarding process as it's complex, particularly when onboarding new applications. We need to be very, very careful during the onboarding. We have no issues with IBM Security Access Manager because the solution works fine, apart from the onboarding process and IBM's involvement in onboarding issues. If we need support related to the onboarding, we've noticed a pattern where support isn't available, or they don't have much experience, or we're not getting a response from them. We're facing the same issue with IBM Guardium. As we're just focusing on the multi-factor authentication feature of IBM Security Access Manager and we didn't explore any other features, we don't have additional features to suggest for the next release of the solution, but we're in discussion about exploring ID management and access management features, but those are just possibilities because right now, we're focused on exploring our domain.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"You can make resources. You can import them from Azure or Active Directory and put them in an application. For example, if there is an application that uses a lot of Active Directory groups, you can make the groups available for people. If they need to access that application, you can tell them the resource groups you have for that application. People can do everything by themselves. They do not need anybody else. They can just go to the Omada portal, and they can do it all by themselves. That is terrific."

"User-friendly solution."

"Its best feature is definitely the process design. It is quite easy and straightforward to design a process."

"Our customers have benefited from Omada Identity automating the certification process. Most of our customers were using manual methods for user access certification. With Omada Identity, you can automate almost all of it, which means that certification now becomes on demand. You don't have to wait for two or three months to execute a certification timeframe. Instead, you can do certifications as often as you want."

"The most valuable feature for us is the ability to set up connectors to various IT systems and offer a wide range of supported connectors."

"Omada's most valuable aspect is its usability."

"For me, the best feature of Omada Identity is its web interface because it's really easy for users to understand."

"As an administrator, we benefit from a lot of functionality that is available out of the box, but it is also configurable to meet our specific needs."

More Omada Identity pros

"I like the way it is handling authentication and authorization."

"In terms of the tool's operational efficiency, ForgeRock Access Management is used in a lot of environments, different regions, and in different stages of production environments."

"The most valuable features of ForgeRock are social login and data protection."

"ForgeRock products are customizable, and the out-of-the-box features are solid, too. I primarily use the OIDC compliance features. It's just a configuration. it's easy to set up and customize trees. We can add our own features if necessary. Banks and corporations have different standards and specific validations."

"I like the intelligent authentication feature."

"We have found the identity and access management tools in the solution to be particularly useful for our organization."

"Easy to navigate, handle and manage the applications."

"ForgeRock has CIAM, which other products didn't have, and they have DevOps ready."

More ForgeRock pros

"From the integration point of view, it supports SAML, OIDC, and OAuth. For legacy applications that don't have support for SAML and other new protocols, it provides single sign-on access to end-users. From the integration compatibility point of view, it is highly capable."

"I have found this solution to be really practical and when a user wants to log in, it is effortless and runs smooth."

"The most valuable feature of IBM Security Access Manager, at least for my company, is multi-factor authentication. That's the only feature my company is using. The solution works well and has no glitches. IBM Security Access Manager is a very good solution, so my company is still using it."

"Its stability and UI are most valuable."

"The solution has powerful authentification and authorization. It offers a good way to increase security."

"It's a good solution for identification and access management."

"The tool provides a password vault, single sign-on, and multifactor authentication. It offers various authentication methods like fingerprint integration, one-time passwords, or tokens sent via email or SMS. This ensures secure access to your accounts by providing multiple authentication options."

Cons

"Improved traceability would be helpful for administrators. For example, let's say a user's permission is being revoked. We can only see the system that has carried out a particular action but not what triggered it. If an event definition or something has changed in the criteria for the permission being removed or something like that, we don't have immediate access to that information. It takes a little detective work."

"The backend is pretty good but the self-service request access screen, the GUI, needs improvement. It's an old-fashioned screen. Also, Omada has reports, but I wouldn't dare show them to the business because they look like they're from 1995. I know they are working on these things and that’s good, because they’re really needed."

"The Omada support response time has room for improvement."

"The reporting and importing have room for improvement."

"Omada could make it a bit more convenient to send emails based on events automatically. Having that functionality is critical for us to maintain transparency."

"There is room for improvement in Omada's integration capabilities, particularly in streamlining complex integrations and enhancing programming logic for better rule management."

"We are still on Omada on-prem, but I understand that when Omada is in the cloud, you cannot send an attachment via email. We have some emails with attachments for new employees because we have to explain to them how to register and do their multi-factor authentication. All that information is in the attachment. People have to do that before they are in our system. We cannot give them a link to our Intranet and SharePoint because they do not yet have access. They have to register before that, so I need to send the attachments, but this functionality is not there in the cloud."

"I would like more training. As someone who is new to this world, I don't feel that the courses Omada provides are good enough. They should also improve the documentation. It is difficult to learn how to use the solution by yourself"

More Omada Identity cons

"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."

"In future releases, I would like to see easier integration with other solutions, like facial recognition and KYC solutions with biometric onboarding."

"The user interface could be improved as it is cumbersome and outdated. It doesn't have a responsive UI."

"In an upcoming release, the solution could improve by limiting the need to do customizations."

"It should be a little bit easier to implement. It is user-friendly, but there is always scope for improvement."

"Lacks simplified documentation within the tool that requires use of a separate portal."

"The identity management model needs a bit of improvement."

"The solution could improve by adding more advertising and marketing."

More ForgeRock cons

"What we'd like improved in IBM Security Access Manager is its onboarding process as it's complex, particularly when onboarding new applications. We need to be very, very careful during the onboarding. We have no issues with IBM Security Access Manager because the solution works fine, apart from the onboarding process and IBM's involvement in onboarding issues. If we need support related to the onboarding, we've noticed a pattern where support isn't available, or they don't have much experience, or we're not getting a response from them. We're facing the same issue with IBM Guardium. As we're just focusing on the multi-factor authentication feature of IBM Security Access Manager and we didn't explore any other features, we don't have additional features to suggest for the next release of the solution, but we're in discussion about exploring ID management and access management features, but those are just possibilities because right now, we're focused on exploring our domain."

"The user interface for users and administrators could be improved to make it easier. Automating some functions could also be beneficial."

"Configuration could be simplified for the end-user."

"There are a lot of areas that can be improved, but the main area is the lack of customization. You cannot easily customize anything in the product. It is not easy to tweak the functionality. It is challenging to change the out-of-the-box functionality."

"They can improve the single sign-on configuration for OIDC and OAuth. That is not very mature in this product, and they can improve it in this particular area. OIDC is a third-party integration that we do with the cloud platforms, and OAuth is an authorization mechanism for allowing a user having an account with Google or any other provider to access an application. Organizations these days are looking for just-in-time provisioning use cases, but IBM Security Access Manager is not very mature for such use cases. There are only a few applications that can be integrated, and this is where this product is lagging. However, in terms of configuration and single sign-on mechanisms, it is a great product."

"The solution could be classified as a hilt system. There are a lot of resources being used and it is suitable for very large enterprises or the public sector."

"The user interface needs to be simplified, it's complex and not user-friendly."

Pricing and Cost Advice

"The initial total cost of ownership to implement Omada Identity is not small. The TCO for the implementation is as high as any other solution. However, the cost of maintaining the solution is at par or lower than competitors, including adding more features or maintaining the system after the initial deployment or installation to make sure that they are available for users to use or extending the functionalities of those activities. Those maintenance costs are lower than other vendors, but the initial cost of getting the system installed is still high."

"While Omada Identity carries a premium price tag, it proves to be cost-effective."

"My client deals directly with the Omada Identity team in terms of licensing. I never look at pricing, so I'm not aware of how much the solution costs, but it's worth the money. Often, when you begin to use Omada Identity and it takes a while to set up, it'll be irreversible, and you'd depend on and focus more on the functionality of the solution, rather than its price tag."

"It's a fair price for the on-premises system. Compared with what we had before, it's much cheaper and we get all the modules in one. We tried to go with the cloud, but it was far too expensive."

"It is fairly priced for an on-premise environment, but for the cloud environment, I am not that happy with the pricing."

"It is not cheap. It is expensive, but compared to what we did almost three years ago, it is value for money. It is worth it."

"The pricing is okay."

"They are positioned at a good price point. They are lower than some of their competitors."

More Omada Identity pricing and cost advice

"It's a bit pricey and could be more competitive."

"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."

"Its price is comparable to other products in the market."

"ForgeRock's pricing is more competitive than other products."

"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."

"The pricing of the solution is fair but I do not have the full details."

"The license is purchased annually per user. However, you can negotiate if you are signing for a longer period of time. When comparing this solution to others on the market it is priced fair, it is not at the top of the price range or at the bottom end."

"ForgeRock is an expensive solution."

"The product is not expensive. It depends on the number of users."

"It costs about 300K AED for a year. Its pricing is a bit on the higher end, but in comparison to other products in the market, its price is still better. There are lots of other products that are very costly."

"The license and costs depend on the amount range of users you have. For just approximately 2,000 users, the price is practical and fair. However, when you have 20,000 users, it starts to become really expensive, and the discount per user is not attractive enough to go ahead and purchase."

See which vendors are best for you

Use our free recommendation engine to learn which Identity Management (IM) solutions are best for your needs.

See recommendations

845,040 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

16%

Computer Software Company

13%

Manufacturing Company

Government

Financial Services Firm

24%

Computer Software Company

12%

Insurance Company

Government

Financial Services Firm

23%

Insurance Company

17%

Computer Software Company

10%

Government

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Omada Identity Cloud?

As an administrator, we benefit from a lot of functionality that is available out of the box, but it is also configur...

See all answers

What is your experience regarding pricing and costs for Omada Identity Cloud?

They are positioned at a good price point. They are lower than some of their competitors.

See all answers

What needs improvement with Omada Identity Cloud?

The biggest issue, which is the reason why we are transitioning from their product to SailPoint, is the overall user ...

See all answers

What do you like most about ForgeRock?

The most valuable features of ForgeRock are social login and data protection.

See all answers

What is your experience regarding pricing and costs for ForgeRock?

Our company was considering switching back to Keycloak from ForgeRock, so as to not pay any license fees. ForgeRock a...

See all answers

What needs improvement with ForgeRock?

In the past, I saw that Splunk was integrated with a testing portal, and then it was integrated with Slack. I don't t...

See all answers

What do you like most about IBM Security Access Manager?

The tool provides a password vault, single sign-on, and multifactor authentication. It offers various authentication ...

See all answers

What needs improvement with IBM Security Access Manager?

The user interface for users and administrators could be improved to make it easier. Automating some functions could ...

See all answers

What advice do you have for others considering IBM Security Access Manager?

I rate the product an eight out of ten.

See all answers

Comparisons

SailPoint Identity Security Cloud vs Omada Identity

Compared 30% of the time

Microsoft Entra ID vs Omada Identity

Compared 23% of the time

Saviynt vs Omada Identity

Compared 17% of the time

One Identity Manager vs Omada Identity

Compared 7% of the time

SAP Identity Management vs Omada Identity

Compared 6% of the time

More Omada Identity Competitors

Microsoft Entra ID vs ForgeRock

Compared 19% of the time

SailPoint Identity Security Cloud vs ForgeRock

Compared 13% of the time

Ping Identity Platform vs ForgeRock

Compared 9% of the time

Symantec Siteminder vs ForgeRock

Compared 8% of the time

CyberArk Privileged Access Manager vs ForgeRock

Compared 2% of the time

More ForgeRock Competitors

Oracle Access Manager vs IBM Security Verify Access

Compared 25% of the time

Ping Identity Platform vs IBM Security Verify Access

Compared 13% of the time

Microsoft Entra ID vs IBM Security Verify Access

Compared 10% of the time

F5 BIG-IP Access Policy Manager (APM) vs IBM Security Verify Access

Compared 9% of the time

Auth0 vs IBM Security Verify Access

Compared 8% of the time

More IBM Security Verify Access Competitors

Product Reports

Buyer's Guide

Omada Identity

March 2025

Download Omada Identity product report

Buyer's Guide

ForgeRock

March 2025

Download ForgeRock product report

Buyer's Guide

Identity and Access Management as a Service (IDaaS) (IAMaaS)

March 2025

Download IBM Security Verify Access product report

Also Known As

Omada Identity Suite, Omada Identity Cloud

ForgeRock Identity Platform, ForgeRock OpenIDM

IBM Security Verify Access (SVA), IBM Security Access Manager, ISAM

Overview

Omada Identity is an identity governance and administration (IGA) solution designed to help organizations manage and secure digital identities and access across their IT environments. It focuses on enhancing security, compliance, and efficiency by automating identity management processes.

Omada Identity offers a robust set of features that streamline identity lifecycle management, access governance, and compliance reporting. It integrates with a wide range of IT systems, applications, and data sources, providing a centralized platform for managing user identities and access rights. The solution enables organizations to enforce security policies, ensure regulatory compliance, and reduce the risk of unauthorized access.

What are the critical features of Omada Identity?

Identity Lifecycle Management: Automates the process of creating, updating, and deactivating user identities throughout their lifecycle.
Access Governance: Ensures that users have appropriate access rights, enabling continuous monitoring and recertification of access.
Compliance Reporting: Provides comprehensive reporting capabilities to demonstrate compliance with regulatory requirements.
Role-Based Access Control (RBAC): Simplifies the assignment and management of access rights based on user roles within the organization.
Self-Service Access Requests: Empowers users to request access to resources through a user-friendly portal, reducing administrative burden.
Integration Capabilities: Seamlessly integrates with various systems, applications, and data sources for unified identity and access management.

What benefits or ROI items should users look for in the reviews when evaluating Omada Identity?

Improved Security: By ensuring that only authorized users have access to sensitive information, Omada Identity enhances overall security posture.
Regulatory Compliance: Helps organizations meet compliance requirements by providing detailed audit trails and reporting features.
Operational Efficiency: Automates routine identity management tasks, reducing manual effort and freeing up IT resources for strategic initiatives.
User Productivity: Streamlines access management processes, enabling users to quickly obtain the resources they need to perform their jobs.
Reduced Risk: Minimizes the risk of data breaches and insider threats by enforcing strict access controls and continuous monitoring.

Omada Identity is widely adopted across various industries, including healthcare, finance, and manufacturing. In healthcare, it helps protect patient data and comply with regulations like HIPAA. In finance, it ensures compliance with SOX and other financial regulations. In manufacturing, it secures access to sensitive production data and intellectual property.

Pricing and licensing for Omada Identity are typically based on the number of users and the specific features required. Customer support is available through various channels, including online resources, support tickets, and professional services for implementation and customization.

In summary, Omada Identity is a comprehensive IGA solution that enhances security, compliance, and efficiency in managing digital identities and access.

Omada

ForgeRock is a comprehensive open-source identity and access management solution designed to meet the unique needs of your users and workforce. With ForgeRock you can orchestrate, manage, and secure the complete lifecycle of identities in any cloud or hybrid environment. ForgeRock allows you to set up bot detection, identity proofing, and risk-based authentication.

With ForgeRock, you can define access policies and automate the management of the identity lifecycle all from a central, easy to use, and graphical dashboard. ForgeRock Access Management allows you to build safe authentication using options like passwordless and usernameless logins, single sign-on, biometrics, contextual analytics, and behavioral authentication. When threats appear, you can swiftly change how your users access your most sensitive applications and provide users with secure access to the applications, systems, and resources they need on demand.

ForgeRock Benefits and Key Features

Elevate your security and efficiency: Consolidating your legacy systems under one single platform provides reliable, unified control over all your user identities and access-related policies. ForgeRock Access Management also supports scaling existing policies for application onto new setups.
Passwordless authentication: Implementing passwordless authentication is simple with ForgeRock Access Management. You can easily replace user-selected passwords with other options, such as easy multi-factor authentication, biometrics, and SSO.
Identity governance: ForgeRock Identity Governance is a modern, AI-driven identity governance solution. By leveraging ForgeRock generated analysis reports, you can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low-risk accounts, and review high-risk and inappropriate user access privileges. In addition, you can grant and enforce access to systems, applications, and infrastructure according to established policies.

Reviews from Real Users

ForgeRock stands out among its competitors for a number of reasons. Two major ones are its robust identity and access tools and its being easy to manage and scale with one central dashboard.

PeerSpot users note the effectiveness of these features. A technology solutions leader at an outsourcing company writes, “We need it for multiple clients, multiple implementations. Not all of them are necessarily a multi-tenant solution. We need a very versatile solution that can do a lot of work, but from a single instance that we can centralize authentications and we don't duplicate the efforts and that's where ForgeRock seems to do better.”

Mohamed B., a cyber security consultant at a tech company, writes, "Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users. ForgeRock secured our system so that it is accessed only by authorized people, and it implemented the SSO."

Ping Identity

IBM Security Verify Access is a complete authorization and network security policy management solution. It provides end-to-end protection of resources over geographically dispersed intranets and extranets.Provides a wide range of built-in authenticators and supports external authenticators.Provides permit and deny decisions for protected resources requests in the secure domain through the authorization API.Manages secure access to private internal network-based resources by using the public Internet's broad connectivity and ease of use with a corporate firewall system.

IBM

Sample Customers

Bayer, ECCO Shoes, Vattenfall, NuStar Energy, Unicredit, Schiphol Group, BMW Group, Deutsche Leasing

Geico, Thomson Reuters, Salesforce, McKesson, Trinet, SKY, BNP Paribas, Deloitte, Capgemini, North Western University

POST Luxembourg

Buyer's Guide

ForgeRock vs. IBM Security Verify Access

February 2025

Free Report: ForgeRock vs. IBM Security Verify Access

Find out what your peers are saying about ForgeRock vs. IBM Security Verify Access and other solutions. Updated: February 2025.

DOWNLOAD NOW

845,040 professionals have used our research since 2012.

See our ForgeRock vs. IBM Security Verify Access report.

See our list of best Identity Management (IM) vendors and best Access Management vendors.

We monitor all Identity Management (IM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.