Try our new research platform with insights from 80,000+ expert users

One Identity Active Roles vs Saviynt comparison

One Identity and Saviynt are both solutions in the User Provisioning Software category. One Identity is ranked #5 with an average rating of 8.5, while Saviynt is ranked #3 with an average rating of 7.2. One Identity holds a 5.4% mindshare in UP, compared to Saviynt’s 15.0% mindshare. Additionally, 100% of One Identity users are willing to recommend the solution, compared to 79% of Saviynt users who would recommend it.
One Identity Active Roles
Read 25 One Identity Active Roles reviews
  • 4,048 Views
  • 1,619 Comparison Views
100% willing to recommend
Saviynt
Read 25 Saviynt reviews
  • 6,356 Views
  • 2,733 Comparison Views
79% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 6, 2024

One Identity Active Roles and Saviynt compete in the identity and access management space. Saviynt appears to have an upper hand in offering robust access governance and flexible deployment models.

Features: One Identity Active Roles stands out for its active directory management, dynamic group handling, and extensive integration capabilities. The workflows support comprehensive user management. Saviynt excels in role-based access, identity lifecycle management, and offers user-friendly application onboarding and certification features. Built-in reporting and database utilities add significant value.

Room for Improvement: One Identity Active Roles could benefit from improved web console customization, support for multiple scripting languages, and the reintroduction of the attestation feature. Additionally, its workflows could include more templates for ease of modification. Saviynt needs better customization options, improved documentation, and more adept technical support. Simplification of its complex integration process is also needed.

Ease of Deployment and Customer Service: One Identity Active Roles is mainly on-premises, while Saviynt offers cloud and hybrid deployment options, providing more flexibility. Active Roles is praised for its knowledgeable support, though there are some limitations in first-call resolution. Saviynt's support is recognized, but users call for better technical assistance and improved documentation.

Pricing and ROI: One Identity Active Roles is perceived as expensive but offers a competitive user-based licensing model that delivers ROI through automation and risk reduction. Saviynt, slightly costlier, provides extensive features for the price and a pay-as-you-go model with multiple plans. Its ROI is tied to comprehensive access management and security features, ensuring compliance and data protection.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed One Identity Active Roles vs. Saviynt Report (Updated: July 2025).
Buyer's Guide
One Identity Active Roles vs. Saviynt
July 2025
Download the complete report
Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Active Roles
Ranking in User Provisioning Software
5th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
25
Ranking in other categories
Active Directory Management (1st), Non-Human Identity Management (NHIM) (5th)
Saviynt
Ranking in User Provisioning Software
3rd
Average Rating
7.4
Reviews Sentiment
6.7
Number of Reviews
25
Ranking in other categories
Identity Management (IM) (5th), Privileged Access Management (PAM) (11th), Identity Threat Detection and Response (ITDR) (8th), Identity and Access Management (2nd)
 

Mindshare comparison

As of August 2025, in the User Provisioning Software category, the mindshare of One Identity Active Roles is 5.4%, up from 4.7% compared to the previous year. The mindshare of Saviynt is 15.0%, up from 13.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Provisioning Software
 

Featured Reviews

Grzegorz Kosela - PeerSpot reviewer
Task automation simplifies user and delegation management while offering a customizable interface
Currently, task automation, like provisioning, deprovisioning, and reprovisioning, is very effective. When a user moves from one organization to another, it automatically changes their group membership and performs similar functions. Secondly, the granular delegation feature is very nice and much simpler and easier than it is natively in Microsoft. Two years ago, One Identity Active Roles was under Dell. It was quite poor. However, now, there have been notable improvements, such as faster system processing, better logging, enhanced information, and a more user-friendly interface. Once it was sold by Dell, things got better. The interface became a bit more user-friendly. The Angular user interface is much more flexible for adjusting to customer needs, and a completely new and customizable one can be created, aligning with all settings and scripts required by a customer. The ease of managing on-prem and cloud-based directories through a single pane of glass is good. I'd rate it nine out of ten. The solution's ability to provision and deprovision resources and directories like Azure AD is very simple, especially when you can integrate with the HR system and grab some data from HR. It's actually fully automatic. I don't need to even touch it. It's helped increase operational efficiency by 50%. It's helped decrease security problems around privileged accounts. We were able to decrease the number of privileged accounts and have been able to delegate more effectively. We decreased the number of high-level permissions that administrators had. For example, if someone is a DNS administrator, he has access only as far as the specific actions he needs to handle. We don't need to give away such high privileges for such a daily job. It's helped clarify roles and access. It's helped reduce identity-based breaches. If someone leaves a company, we can easily undo provisioning and close accounts. We can generate reports to see which people have which permissions and at what times. We've just integrated with our HR system. It helps us follow activated and deactivated users. I'd rate the granular controls on offer ten out of ten. We've saved on manpower in terms of the work of the administrators. There's good reporting and functionality, and it's very transparent. You can connect more than one directory and manage everything from one pane. You can do many things from one interface.
Read full review
VinayM - PeerSpot reviewer
Used for IAM, IGA, MFA, SSO, and access management
The technical support team's response time could be improved. After the implementation, Saviynt should provide good support to their customers. While migrating from legacy applications to the cloud, Saviynt has many bugs. The lift and shift are not very seamless. There are a lot of customizations to be done and some development is required. From the migration point of view, the solution is a little buggy.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It gives us attribute-level control and the AD management features work very well."
"With the use of the sync service we were able to import information from multiple external systems and populate them within our space and leverage them for downstream systems."
"It's valuable to us in that it resembles the native tools that most people have grown accustomed to... Active Roles resembles traditional tools, such as from Microsoft. That is really good because it eases the way people interact with the tool."
"The solution improved our organization's security posture by framing the end users and ensuring that capabilities that could cause mistakes are hidden from the web interface."
"Because of Active Roles, we're able to synchronize on an even more regular basis. It enables us to provide even more information to the Active Directory, which helped us to group our users in a more consistent manner."
"It is very intuitive and close to the native tools. Since it is web-based, it does not require extensive training for our end users."
"Another good feature is the change history. It's centralized in a single place and allows us to manage people's Active Directory domains from a central location. We can also drill down into individual objects in a troubleshooting or even an auditing situation. We can show evidence to auditors by drilling down into the individual history. It gives you all the history of what happened around an individual object. That is something that would be almost impossible to do in Active Directory, or extremely complicated."
"The most valuable features include auditing, dynamic grouping, and creating dynamic groups based on AD attributes."
More One Identity Active Roles pros
"The product is flexible to use."
"Saviynt is used for the greenfield implementation for the whole IAM, IGA, MFA, SSO, and access management."
"This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool."
"It gives very good and in-depth knowledge about a particular identity. Everything is through a single click. We get to know the workflows related to a particular identity with a single click."
"The product has a great attestation feature."
"The most valuable aspect of Saviynt is its market acceptance."
"It is very easy to use. It addresses most of the trends in identity governance and risk management."
"Saviynt is easy to configure and manage."
More Saviynt pros
 

Cons

"There are some features that we think should be included in their next release. We think these things would take them to the next level: the ability to completely force or limit any dynamic group processing to specific servers, change-tracking reporting of virtual attributes, and the ability to use files as inputs to automation workloads. These things have also been talked about. Knowing them, they're probably working on them."
"The solution needs an attestation process that includes certification and recertification attestation."
"I know they have increased support for Entra ID and mentioned providing support for AWS. A way to connect to various directories and integrate with cloud directories would be beneficial."
"When doing a workflow, we would like a bit better feedback on the screen, as we're trying to get it to work. For example, there is a "Find" function that you need set up in a workflow to do some of the automation. It is not the easiest to get a result from those finds when you're trying to do that. In the MMC, they have a couple different types of workflows. In this particular case, we use their workflow functionality to find all of X within the environment, then if you find it, do X, Y, and Z. You can have multiple steps. When you do that search function within that workflow, it's really hard to find out, "Is my search working?" It would be nice if there was some feedback on the screen so you could see if your search is working properly within the workflow."
"For mid-sized to small companies, I do not know if it would be that useful, considering the tool's purpose."
"Another issue we have with the product is that we run a lot of custom tasks. You have to program them to run on one particular host and there's no automatic failover to a second host. If that host is down when a task is supposed to run, it has to wait until the next time it runs when that host is up."
"Active Roles could add more options for web customization. Our requirements are exceedingly specific. We'd like to get the web interface down to just five buttons, but in some cases, we can only get to six. The web interface in the current version is less customizable than in the previous one."
"The user and group management in Azure AD could be better. Our focus these days is dynamic sharing with several on-prem Microsoft applications like SharePoint."
More One Identity Active Roles cons
"The main difficulty was the integration process itself. But we were able to kind of work through it and fix it. We tried integrating with our HR system and other IBM solutions, like Microsoft Identity Management."
"The UI doesn’t enhance the user experience."
"Saviynt cannot customize based on customer needs."
"Both SailPoint IdentityNow and Saviynt have some bugs, but SailPoint is considered more mature with fewer bugs due to its longer establishment in the market since around 2005. SailPoint had its share of bugs in the early days, but they have resolved them over time, resulting in a stable product. Saviynt, on the other hand, was launched around 2013 or 2014 and is actively working to improve its product. Despite having some bugs, Saviynt is making progress and aims to build a stable product, but it is not there yet."
"The configuration process at the beginning can be difficult, depending on the complexity of the company."
"UI and support could be improved. The frequent updates and version changes can be disruptive for large organizations. Not every month, a large organization can go with the changes. Saviynt needs to consider this carefully."
"While one product performed excellently, another was quite complex with code dating back 15 years."
"We sometimes experience performance issues when the solution fails to process the data between two different applications."
More Saviynt cons
 

Pricing and Cost Advice

"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"It's expensive."
"The pricing is on the higher end."
"It's fairly priced."
"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
"The licensing model is a simple user-based model, not that much complicated."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"Saviynt's pricing is reasonable."
"If you are investing in securing your data and avoiding any non-compliance issues, then yes, it is certainly recommended. To put it plainly, if you're willing to pay fines and aren't concerned about the misuse of data, then there might not be a problem. However, if you intend to safeguard the data of your employees, vendors, and customers, it becomes crucial. In this context, managing data security requires preventive and detective measures, such as enforcing segregation of duties and regularly reviewing permissions. Throughout an individual's life cycle within an organization or customer life cycle, various access permissions are granted. Without taking action on these permissions, there is a risk of exposure later on. If individuals retain access after leaving the organization, it poses a serious security threat. Implementing solutions like Saviynt can address these challenges, ensuring continuous access review, generating reports, alerts, and identifying potential risks."
"Saviynt has a competitive price."
"Saviynt's pricing is acceptable and licensing costs are yearly."
"The solution has a pay-as-you-go licensing model, and you can subscribe monthly or yearly."
"If you need to make any changes then there are additional fees."
"The pricing is comparable to Azure Entra ID. Kind of the same"
"The price of the license for this product is quite expensive."
More Saviynt pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
865,384 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
9%
Healthcare Company
8%
Government
8%
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about One Identity Active Roles?
The solution is stable.
See all answers
What is your experience regarding pricing and costs for One Identity Active Roles?
The product is expensive, but if you want to save money, the delegation set-up process is quite easy. After setting up Active Roles once, defining the delegation model, it is very efficient, almost...
See all answers
What needs improvement with One Identity Active Roles?
One area for improvement would be the Entra ID side, including better delegation for Entra ID objects and more granular permissions. We would also like to see better Entra ID license management usi...
See all answers
What do you like most about Saviynt?
It is very easy to use. It addresses most of the trends in identity governance and risk management.
See all answers
What is your experience regarding pricing and costs for Saviynt?
Saviynt is very affordable compared to its competitors. It is cloud-based, making it significantly cheaper than on-premises solutions. This cost-effectiveness aligns well with the Saudi market, whe...
See all answers
What needs improvement with Saviynt?
One area for improvement is Saviynt's training platform. They could enhance their training arrangements for partners and build a stronger partnership environment. When discussing Azure or AWS-relat...
See all answers
 

Comparisons

ManageEngine ADManager Plus vs One Identity Active Roles Logo
ManageEngine ADManager Plus vs One Identity Active Roles
Compared 13% of the time
One Identity Manager vs One Identity Active Roles Logo
One Identity Manager vs One Identity Active Roles
Compared 12% of the time
SailPoint Identity Security Cloud vs One Identity Active Roles Logo
SailPoint Identity Security Cloud vs One Identity Active Roles
Compared 9% of the time
Active Administrator vs One Identity Active Roles Logo
Active Administrator vs One Identity Active Roles
Compared 6% of the time
Microsoft Entra ID vs One Identity Active Roles Logo
Microsoft Entra ID vs One Identity Active Roles
Compared 5% of the time
More One Identity Active Roles Competitors
SailPoint Identity Security Cloud vs Saviynt Logo
SailPoint Identity Security Cloud vs Saviynt
Compared 38% of the time
Microsoft Entra ID vs Saviynt Logo
Microsoft Entra ID vs Saviynt
Compared 16% of the time
Okta Workforce Identity vs Saviynt Logo
Okta Workforce Identity vs Saviynt
Compared 8% of the time
Omada Identity vs Saviynt Logo
Omada Identity vs Saviynt
Compared 5% of the time
CyberArk Privileged Access Manager vs Saviynt Logo
CyberArk Privileged Access Manager vs Saviynt
Compared 5% of the time
More Saviynt Competitors
 

Product Reports

Buyer's Guide
One Identity Active Roles
August 2025
One Identity Active Roles reportDownload One Identity Active Roles product report
Buyer's Guide
Saviynt
June 2025
Saviynt reportDownload Saviynt product report
 

Also Known As

Quest Active Roles
No data available
 

Overview

One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.

Using One Identity Active Roles, users can:

  • Easily increase and strengthen native attributes of Active Directory (AD) and Azure AD.

  • Quickly unify and automate group and account management while protecting and securing critical administrative access.

  • Free up valuable resources to concentrate on other IT tasks, fully confident that your user permissions, critical data, and privileged access are safe and secure.

Managing accounts in AD and Azure AD can be tremendously challenging; continually keeping these important systems safe and secure presents an even greater challenge. Traditional tools can be inefficient, error-prone, and very disjointed. In today’s robust marketplace, organizations are finding it somewhat difficult to keep pace with the constant access changes in a hybrid AD ecosystem. Additionally, there are significant security issues to consider (government compliance, employee status/access changes, and other confidential business requirements). And, of course, there is a requirement to properly manage Active Directory and Azure Active Directory access in addition to managing all the other numerous SaaS and non-Windows applications that organizations use today.

Users can easily automate all of these tedious, mundane administrative tasks, keeping their systems safe and error-free. Active Roles ensures users can perform their job responsibilities more effectively, more efficiently, and with minimal manual intervention. Active Roles was created with a flexible design, so organizations can easily scale to meet your organizational needs, today, tomorrow, and in the foreseeable future.

Reviews from Real Users

A PeerSpot user who is a Network Analyst at a government tells us, “It has eliminated admin tasks that were bogging down our IT department. Before we started using Active Roles, if one of our frontline staff members deleted a user or group, it could take several hours to try to reverse that mistake. Whereas now, the most our frontline staff can do is a deprovision, which just disables everything in the background, but it's still there. We can go in and have it back the way it was two minutes later. Instead of it taking two hours, it only takes two minutes.

Becky P., Sr Business Analyst at George Washington University, shares, “In addition, with the use of workflows and the scheduled tasks, we were able to automate and centrally manage a number of the processes as well as utilize them to work around other product limitations. Those include, but are not limited to syncing larger groups, which have 50,000 plus members, to Azure AD. We sync up to Azure AD using ARS. If we had not already had ARS in place, it would have been impossible for us to have done so in the time period we did it in. We did it in under six months. ARS probably saves us at least two weeks out of every month. It's reduced our workload by 50 percent, easily.”

One Identity

Saviynt is an intelligent, cloud-first identity governance & access management solution. The solution is designed to help organizations quickly scale cloud initiatives and solve security and compliance challenges. Saviynt offers identity governance, granular application access, cloud security, and privileged access to secure your company’s ecosystem and provide a seamless user experience.

Saviynt Features

Saviynt has many valuable key features. Some of the most useful ones include:

  • Mobile enablement: Saviynt provides a powerful mobile app to manage business operations such as initiating a request, managing approvals, completing certifications, viewing dashboards, and taking actions in a timely manner.
  • Scalability and Flexibility: Saviynt is built for enterprise scale & flexibility with an industry-leading cloud architecture.
  • Cloud-based: Saviynt provides you with the ability to quickly deploy and seamlessly integrate with multiple critical applications within your environment to manage risks effectively.
  • Rapid application & identity onboarding: With Saviynt application and identity onboarding is easy. Saviynt offers pre-built templates and discovery of unmanaged assets & applications to help speed up the process.
  • AI & ML powered identity analytics: By leveraging the power of AI and machine learning, Saviynt is able to identify risk and duplicate identities, and can also close access gaps.
  • Actionable insights: Saviynt provides actionable insights for identity management, compliance, and security via the Control Center.

Saviynt Benefits

There are several benefits to implementing Saviynt. Some of the biggest advantages the solution offers include:

  • Frictionless access requests: With Saviynt you can request access from anywhere, at any time.
  • Policy violation and SoD conflict detection: Saviynt helps your organization prevent risky access by understanding violations and conflicts for any request.
  • Governance: Saviynt provides governance for all human and machine identities – including third parties.
  • Easier provisioning: Saviynt enables you to automate lifecycle tasks in order to make cross-application provisioning easier and more efficient.
  • Out-of-the-box rulesets: With Saviynt’s out-of-the-box rulesets, you can automatically connect security roles to security tasks.
  • User friendly: Saviynt is designed with a modern web interface and has a mobile app and browser plug-in along with a ServiceNow app to make it easy to use.

Reviews from Real Users

Below are some reviews and helpful feedback written by Saviynt users.

An Identity and Access Management Specialist at a non-tech company states, "The dedicated Freshdesk platform is a user community and a step in the right direction for offering learning resources. Saviynt has a lot of potential with many features available for users."

A Principal Consultant at a tech services company says, "It's a highly functional system and a very well rounded solution. The onboarding of applications is solid. Their user access reviews are very good. Their role-based model and their identity life cycle stuff are solid.”

PeerSpot user Amimesh A., Senior Associate at a tech services company, mentions, “The most valuable feature is the ease of implementation. This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool. The reporting features are good.”

Irappa H., Manager at a computer software company, comments, “The most valuable features are the workflows and certification.”


Saviynt
 

Sample Customers

City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
Shell, McKesson, Kimberly-Clark, Ingram Micro, Intermountain Health Care, Forterra, CoreLogic
Buyer's Guide
One Identity Active Roles vs. Saviynt
July 2025
Free Report: One Identity Active Roles vs. Saviynt
Find out what your peers are saying about One Identity Active Roles vs. Saviynt and other solutions. Updated: July 2025.
DOWNLOAD NOW
865,384 professionals have used our research since 2012.
See our One Identity Active Roles vs. Saviynt report.
See our list of best User Provisioning Software vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.