No more typing reviews! Try our Samantha, our new voice AI agent.

Microsoft Bhold Forefront Identity Manager [EOL] vs OneLogin comparison

Microsoft and One Identity are both solutions in the User Provisioning Software category. Additionally, 75% of Microsoft users are willing to recommend the solution, compared to 99% of One Identity users who would recommend it.
OneLogin
Read 95 OneLogin reviews
  • 9,442 Views
  • 1,416 Comparison Views
99% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Mar 15, 2026

Microsoft Bhold Forefront Identity Manager and OneLogin are products competing in the identity and access management category. OneLogin seems to have the upper hand due to its advanced features and ease of use, despite some users finding Microsoft's pricing and support appealing.

Features: Microsoft Bhold Forefront Identity Manager provides identity lifecycle management, sophisticated policy control, and comprehensive reporting. OneLogin offers single sign-on, multifactor authentication, and integration with a wide range of apps and services, emphasizing a seamless user experience.

Room for Improvement: Microsoft can benefit from simplifying its resource-heavy deployment process and enhancing scalability. It could also refine the user interface to be more intuitive. OneLogin could improve by expanding its API capabilities, enhancing adaptive access controls, and increasing customization options in its interface.

Ease of Deployment and Customer Service: Microsoft offers a comprehensive but complex deployment process that can be resource-heavy. OneLogin provides a more straightforward deployment process, supported by efficient customer service, which contributes to faster overall implementation.

Pricing and ROI: Microsoft Bhold Forefront Identity Manager typically involves higher initial costs with a longer ROI timeline due to its infrastructure requirements. In contrast, OneLogin's cloud-based model offers predictable pricing and quicker ROI with lower upfront costs, making it more cost-effective for modern business needs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed User Provisioning Software Report (Updated: June 2026).
Buyer's Guide
User Provisioning Software
June 2026
Download the complete report
Helped 900,644 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Bhold Forefront I...
Average Rating
7.4
Number of Reviews
8
Ranking in other categories
No ranking in other categories
OneLogin
Average Rating
8.6
Reviews Sentiment
6.9
Number of Reviews
95
Ranking in other categories
Single Sign-On (SSO) (4th), User Provisioning Software (4th), Identity Management (IM) (4th), Identity and Access Management as a Service (IDaaS) (IAMaaS) (3rd), Access Management (4th)
 

Featured Reviews

it_user185919 - PeerSpot reviewer
it_user185919
Microsoft Practice Lead at Unify Solutions
The SharePoint-hosted web UI lacks the features one would normally expect but it does have a PowerShell-aware web API.
The biggest limiting factor is that the sync engine cannot be configured for load balancing or redundancy, followed closely by the through-put limitations that apply to the FIM Service connector (management agent) when dealing with high volumes of objects under synchronization. Nonetheless, FIM has been successfully deployed to manage the entire identity life-cycle for very large sites, such as well over one million staff/student identities under management for the Queensland Education Department in Australia. Also, when the "declarative" sync rules requiring "expected rule entries" (EREs) are employed, the sync overhead is further exacerbated. As such this type of sync approach should be avoided in lieu of a code-based rules extension or the "scoped" sync rule capability released with R2.
Read full review
Amit Rathod - PeerSpot reviewer
Amit Rathod
Senior Analyst - IDAM at Toll Holdings Limited
Unified sign-in has simplified access control and has supported end-to-end identity lifecycle
The authentication process is good, but sometimes the responsiveness to requests for enhancement is very slow. I sometimes face issues with platform stability, flexibility in configuration, and limited API availability. I experience downtimes two to three times per year. OneLogin's support team is sometimes very slow to respond. There is a feature limitation with mapping, as OneLogin does not provide one-to-all mapping. For client deployment, we need to create separate mappings for each request, and we cannot use the same mapping for multiple requests. Other areas that have room for improvement are related to API limitations. If a client requires more APIs, such as 5,000 or 6,000, OneLogin charges more. The API rate limits by default or the standard limit should provide more than 5,000. Additionally, OneLogin could provide more flexibility in configuration. These are the main limitations I have identified with OneLogin.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Using FIM 2010 other features are available like DL management through the portal, End User FIM Portal, and also FIM SSPR, which provide a good improvement in functions to our organization."
"The product is helping the organization to use this as a request based service through which access also gets placed after approval from the portal itself, without human intervention being required."
"It enabled managing the content of multiple Active Directory, keeping content consistently in-sync with each other and with external HR and card management solutions."
"Extensible and reliable identity provisioning and synchronisation Extensible workflow and policy engine Extensible delegated access management platform with web UI PowerShell-aware web API"
"For me the most valuable feature is being able to create a single source of truth between the ICT Department and Human Resources."
"By far FIM has been the easiest to deploy and support."
"The sync engine is key, and the ability to have it up and running in full in a very short time."
"It will improve productivity, reduce the administrative cost and help-desk by automating the identity management tasks (provisioning, de-provisioning, access management) for an organization."
"OneLogin has definitely impacted positively and saved time, it has also strengthened security because we mostly use it for MFA, and it also made onboarding easier because you can automatically onboard multiple users."
"OneLogin is efficient."
"OneLogin has greatly improved efficiency because I can quickly access all the applications without wasting so much time with passwords."
"OneLogin has positively impacted my organization because it gives me audit logs and compliance, both of which are very important for many of my clients, especially for this oncology hospital."
"My impressions of the user identity synchronization across directories functionality are that OneLogin is used for secure access to campus resources including data and apps, ensures fast access and easy authentication while blocking regular or unauthorized access, allows third-party integration, and is a comprehensive identity and access management solution designed to streamline workplace authentication and authorization."
"Overall, there is satisfaction with OneLogin, and based on the current experience with the product, it would be recommended to other users."
"OneLogin helps improve security posture, increases user productivity by allowing access to multiple applications with a single password, and has reduced support tickets once users fully learned how to use the tool."
"OneLogin has been a reliable and user-friendly IAM platform that can simplify access with SSO and strengthen MFA adoption without creating too much complexity for users or administrators."
More OneLogin pros
 

Cons

"If you have nothing else, great, but if you have other stuff already, it's going to be painful."
"I was not so impressed by the SharePoint based portal/workflow/policy server part, especially with the way it was integrated with the synchronization server, I'd rate this function 6/10."
"SQL Deadlock issues for performances and internal application bugs."
"The BHOLD suite, which is an optional extension for RBAC modelling, should not be implemented without substantial budget being set aside for investment in additional training and understanding, and ensuring access to specialist resources is available when required."
"Our current FIM infrastructure suffers from stability issues."
"It needs improvement on its reporting. Default reporting is not meeting client requirements."
"Customisation of the Portal interface (limited customisation available)."
"Overall, OneLogin is solid, but we can implement some improvements with Active Directory connectors."
"However, if there were multiple documentations about the technical points and what each tab on the GUI is used for, it would be very helpful for others who want to learn, because I did not find a lot of resources about it on the internet."
"I think one area for improvement would be more granular reporting, such as custom dashboards or more detailed audit logs."
"OneLogin could improve its admin interface and troubleshooting experience because some configuration and error logs can be difficult to track during complex integrations or provisioning issues."
"OneLogin can be improved by making the initial setup and configuration process simpler, especially for teams like mine that are new to identity and access management."
"I would like better reporting from SmartFactor Authentication when a user is not able to sign in due to a new location, new IP, new device, et cetera."
"I'm a cybersecurity guy and I found that the two-factor authentication offering they have (if you don't buy one of their other products) is pretty basic."
"I believe support response time and troubleshooting for complex integrations could be improved in some cases for OneLogin."
More OneLogin cons
 

Pricing and Cost Advice

Information not available
"It was cheap in the beginning, and then it became very expensive. We were initially charged $2 per user per month, which was fine, but by the second year, they increased it to $5 per user. That became very expensive for us because we had about 1,500 users. At $2 per user, it comes out to be $3,000 a month, which is $36,000 a year. If we move to $5 per user, it comes out to be $7,500 a month. That made its cost so high. That is why we removed the product because the cost was high."
"The price of the licensing is fine."
"Surprisingly expensive given the price of on-premise solutions."
"OneLogin's pricing, from the perspective of the education sector, seems quite reasonable for the value it delivers."
"The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it."
"We were happy with the price we got when we signed up, but I don't know what will happen when the time comes to renew because it is a different company now. We haven't seen any pricing models or had that discussion yet. My renewal is a year and a half away. It's worth what we're paying for it. There's no way we could provide the level of service for cheaper or try to do the same in-house."
"While I wish OneLogin's pricing was more affordable, their licensing model, which is based on per user, is acceptable."
"The pricing and licensing are reasonable. It is much cheaper than other products."
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
900,644 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Outsourcing Company
19%
Computer Software Company
9%
Manufacturing Company
8%
University
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise3
By reviewers
Company SizeCount
Small Business127
Midsize Enterprise28
Large Enterprise66
 

Questions from the Community

Ask a question
Earn 20 points
What needs improvement with OneLogin by One Identity?
During implementation, there were not many features that I remember not using in practice. Mostly, there were certain APIs that we were experimenting with earlier but did not use, so we created cus...
See all answers
What is your primary use case for OneLogin by One Identity?
My main use case for OneLogin is to enforce workforce identity, and we implemented this in Malaysia's biggest retail client, so all of their employees' applications can be securely accessed through...
See all answers
What advice do you have for others considering OneLogin by One Identity?
When I am working in OneLogin on a normal day or week, the first thing I typically do in the platform is handling SSO configurations, so I add applications and interact with application stakeholder...
See all answers
 

Comparisons

No data available
Okta Platform vs OneLogin Logo
Okta Platform vs OneLogin
Compared 8% of the time
Auth0 Platform vs OneLogin Logo
Auth0 Platform vs OneLogin
Compared 7% of the time
Microsoft Entra ID vs OneLogin Logo
Microsoft Entra ID vs OneLogin
Compared 5% of the time
LastPass Business vs OneLogin Logo
LastPass Business vs OneLogin
Compared 5% of the time
SailPoint Identity Security Cloud vs OneLogin Logo
SailPoint Identity Security Cloud vs OneLogin
Compared 4% of the time
More OneLogin Competitors
 

Product Reports

Buyer's Guide
Microsoft Bhold Forefront Identity Manager [EOL]
June 2026
Microsoft Bhold Forefront Identity Manager [EOL] reportDownload Microsoft Bhold Forefront Identity Manager [EOL] product report
Buyer's Guide
OneLogin
June 2026
OneLogin reportDownload OneLogin product report
 

Also Known As

Bhold Forefront Identity Manager, MS Bhold Forefront Identity Manager [EOL]
OneLogin Workforce Identity
 

Overview

Microsoft Forefront Identity Manager (FIM 2010) enables organizations to manage the entire lifecycle of user identities and their associated credentials. It can be configured to synchronize identities, centrally manage certificates and passwords, and provision users across heterogeneous systems. With FIM IT organizations can define and automate the processes used to manage identities from creation to retirement.
Microsoft

OneLogin offers organizations a user-friendly platform for single sign-on, multifactor authentication, and seamless access management. It enhances security and streamlines processes, making it vital for application management.

Designed for ease of integration, OneLogin helps organizations efficiently manage access and improve cybersecurity through centralized application management. It simplifies onboarding and offboarding, enhancing remote work capabilities and offering robust user mapping. Users appreciate seamless integration and reliable logs. However, it could improve with enhanced technical support, more out-of-box connectors, and better customization options. Challenges with device management and system integrations have been noted, with legacy application support and infrastructure stability needing attention.

What are the key features of OneLogin?
  • Single Sign-On: Provides centralized access to applications.
  • Multifactor Authentication: Enhances security with multiple verification steps.
  • Self-Service Password Resets: Empowers users to manage their passwords.
  • Ease of Integration: Connects seamlessly with cloud and on-premises systems.
What benefits can users expect?
  • Improved Time Management: Streamlines user access processes.
  • Reduced Security Incidents: Strengthens authentication measures.
  • Efficient Interface: Facilitates smooth user navigation.
  • Enhanced Remote Work: Supports flexible workforce needs.

Organizations employ OneLogin for single sign-on and identity management, connecting users to applications like CRM and Slack. It supports role-based access control and seamless cloud transition, integrating with Active Directory to enhance user management in industries demanding strong security and efficiency.

One Identity
 

Sample Customers

Ministry of Health (MoH) in Saudi Arabia, Vocational Training Council, PKP S.A., Arysta LifeScience, Wiltshire Council, Sats Elixia, MANN+HUMMEL Group, ViveICA, Kotak Group, Sun International, Anel
OneLogin has thousands of customers across multiple industries and from around the globe such as Uber, Airbnb, Noom, Petco, Sony, Lucky Brand, Tesco, Airbus, Japan Airlines, Aetna, Compass, Kaplan, Susan G. Komen, AAA and PennyMac.
Buyer's Guide
User Provisioning Software
June 2026
Download Free Report
Find out what your peers are saying about One Identity, SailPoint, Omada and others in User Provisioning Software. Updated: June 2026.
DOWNLOAD NOW
900,644 professionals have used our research since 2012.
See our list of best User Provisioning Software vendors and best Identity Management (IM) vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.