Try our new research platform with insights from 80,000+ expert users

One Identity Active Roles vs Saviynt comparison

One Identity and Saviynt are both solutions in the User Provisioning Software category. One Identity is ranked #5 with an average rating of 8.7, while Saviynt is ranked #3 with an average rating of 7.5. One Identity holds a 5.6% mindshare in UP, compared to Saviynt’s 12.4% mindshare. Additionally, 100% of One Identity users are willing to recommend the solution, compared to 80% of Saviynt users who would recommend it.
One Identity Active Roles
Read 29 One Identity Active Roles reviews
  • 4,303 Views
  • 1,721 Comparison Views
100% willing to recommend
Saviynt
Read 27 Saviynt reviews
  • 6,301 Views
  • 2,583 Comparison Views
80% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 6, 2024

One Identity Active Roles and Saviynt compete in the identity and access management space. Saviynt appears to have an upper hand in offering robust access governance and flexible deployment models.

Features: One Identity Active Roles stands out for its active directory management, dynamic group handling, and extensive integration capabilities. The workflows support comprehensive user management. Saviynt excels in role-based access, identity lifecycle management, and offers user-friendly application onboarding and certification features. Built-in reporting and database utilities add significant value.

Room for Improvement: One Identity Active Roles could benefit from improved web console customization, support for multiple scripting languages, and the reintroduction of the attestation feature. Additionally, its workflows could include more templates for ease of modification. Saviynt needs better customization options, improved documentation, and more adept technical support. Simplification of its complex integration process is also needed.

Ease of Deployment and Customer Service: One Identity Active Roles is mainly on-premises, while Saviynt offers cloud and hybrid deployment options, providing more flexibility. Active Roles is praised for its knowledgeable support, though there are some limitations in first-call resolution. Saviynt's support is recognized, but users call for better technical assistance and improved documentation.

Pricing and ROI: One Identity Active Roles is perceived as expensive but offers a competitive user-based licensing model that delivers ROI through automation and risk reduction. Saviynt, slightly costlier, provides extensive features for the price and a pay-as-you-go model with multiple plans. Its ROI is tied to comprehensive access management and security features, ensuring compliance and data protection.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed One Identity Active Roles vs. Saviynt Report (Updated: December 2025).
Buyer's Guide
One Identity Active Roles vs. Saviynt
December 2025
Download the complete report
Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Active Roles
Ranking in User Provisioning Software
5th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
29
Ranking in other categories
Active Directory Management (1st), Non-Human Identity Management (NHIM) (4th)
Saviynt
Ranking in User Provisioning Software
3rd
Average Rating
7.4
Reviews Sentiment
6.2
Number of Reviews
27
Ranking in other categories
Identity Management (IM) (5th), Privileged Access Management (PAM) (7th), Identity Threat Detection and Response (ITDR) (8th), Identity and Access Management (1st), Identity Security and Posture Management (ISPM) (1st)
 

Mindshare comparison

As of January 2026, in the User Provisioning Software category, the mindshare of One Identity Active Roles is 5.6%, up from 4.5% compared to the previous year. The mindshare of Saviynt is 12.4%, down from 14.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Provisioning Software Market Share Distribution
ProductMarket Share (%)
Saviynt12.4%
One Identity Active Roles5.6%
Other82.0%
User Provisioning Software
 

Featured Reviews

Grzegorz Kosela - PeerSpot reviewer
Grzegorz Kosela
solution architect/ engineer at APEX.IT Sp. z o.o.
Task automation simplifies user and delegation management while offering a customizable interface
Currently, task automation, like provisioning, deprovisioning, and reprovisioning, is very effective. When a user moves from one organization to another, it automatically changes their group membership and performs similar functions. Secondly, the granular delegation feature is very nice and much simpler and easier than it is natively in Microsoft. Two years ago, One Identity Active Roles was under Dell. It was quite poor. However, now, there have been notable improvements, such as faster system processing, better logging, enhanced information, and a more user-friendly interface. Once it was sold by Dell, things got better. The interface became a bit more user-friendly. The Angular user interface is much more flexible for adjusting to customer needs, and a completely new and customizable one can be created, aligning with all settings and scripts required by a customer. The ease of managing on-prem and cloud-based directories through a single pane of glass is good. I'd rate it nine out of ten. The solution's ability to provision and deprovision resources and directories like Azure AD is very simple, especially when you can integrate with the HR system and grab some data from HR. It's actually fully automatic. I don't need to even touch it. It's helped increase operational efficiency by 50%. It's helped decrease security problems around privileged accounts. We were able to decrease the number of privileged accounts and have been able to delegate more effectively. We decreased the number of high-level permissions that administrators had. For example, if someone is a DNS administrator, he has access only as far as the specific actions he needs to handle. We don't need to give away such high privileges for such a daily job. It's helped clarify roles and access. It's helped reduce identity-based breaches. If someone leaves a company, we can easily undo provisioning and close accounts. We can generate reports to see which people have which permissions and at what times. We've just integrated with our HR system. It helps us follow activated and deactivated users. I'd rate the granular controls on offer ten out of ten. We've saved on manpower in terms of the work of the administrators. There's good reporting and functionality, and it's very transparent. You can connect more than one directory and manage everything from one pane. You can do many things from one interface.
Read full review
reviewer2774067 - PeerSpot reviewer
reviewer2774067
Software Engineer at a tech consulting company with 11-50 employees
Has reduced manual work and shortened project timelines through faster deployment and intuitive workflows
One of the challenges regarding Saviynt is the lack of material available on the web, as searching on Google or YouTube often yields little information. Advertising Saviynt is necessary because I was not aware of it a couple of months ago, and it is a very helpful product for many organizations. In India, IGA solutions are not widely recognized, and Saviynt can utilize this point by promoting itself in the cybersecurity field. A significant challenge is the lack of people discussing Saviynt in the open market, as the forums provide slower responses compared to platforms like Reddit. Advancements related to AI would be very helpful. Saviynt should provide pricing for their university certifications, which is currently not publicly available. Information about enrolling requires an ID that is not easily obtained, as it can only be acquired through an organization. Some small wishlist features are related to APIs. As I work on projects, I find certain features to be much needed, but at a glance, they may not seem necessary. As I continue working with Saviynt, these small API-related features become apparent and would greatly enhance the experience.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution improved our organization's security posture by framing the end users and ensuring that capabilities that could cause mistakes are hidden from the web interface."
"The most valuable features include auditing, dynamic grouping, and creating dynamic groups based on AD attributes."
"The ease of managing on-prem and cloud-based directories through a single pane of glass is good."
"It has helped increase operational efficiency in our organization."
"The best part of this Active Roles is the workflow engine. It features an industry-leading workflow automation feature. It's a visual PowerShell that allows task interruption."
"It is very intuitive and close to the native tools. Since it is web-based, it does not require extensive training for our end users."
"Another good feature is the change history. It's centralized in a single place and allows us to manage people's Active Directory domains from a central location. We can also drill down into individual objects in a troubleshooting or even an auditing situation. We can show evidence to auditors by drilling down into the individual history. It gives you all the history of what happened around an individual object. That is something that would be almost impossible to do in Active Directory, or extremely complicated."
"In comparison to native Active Directory tools, using Active Roles for delegation is so much better. It uses an access template and that makes it easy to see who can access what. In fact, you can do that for many objects as well."
More One Identity Active Roles pros
"The feature that we use the most is the global, third-party user management."
"This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool."
"Saviynt has positively impacted my organization by significantly reducing the time for a project where we previously used a spreadsheet for manual work to keep the data, reducing that time from around two weeks to two to three days or even less and decreasing the joiner-leaver lifecycle time to a couple of days, benefiting them significantly."
"Saviynt risk-based access requests and intelligent access controls have made a significant impact on our company."
"It gives very good and in-depth knowledge about a particular identity. Everything is through a single click. We get to know the workflows related to a particular identity with a single click."
"The most valuable aspect of Saviynt is its market acceptance."
"Saviynt is used for the greenfield implementation for the whole IAM, IGA, MFA, SSO, and access management."
"The most valuable features of Saviynt are database utility and report generation. These two features have a major impact, particularly when you are trying to create a report because, in other systems, you need to use a third-party utility such as a BI tool or any other reporting tool to fetch the data and send out the report to a third party team. In Saviynt, it's a system within a system, so you don't have to use any third-party tool because you can directly do your query and write that code on Saviynt and then send that report to the team."
More Saviynt pros
 

Cons

"The solution needs an attestation process that includes certification and recertification attestation."
"Active Roles could add more options for web customization. Our requirements are exceedingly specific. We'd like to get the web interface down to just five buttons, but in some cases, we can only get to six. The web interface in the current version is less customizable than in the previous one."
"For the AAD management feature, it needs to improve the objects that we can manage and the security."
"The third area for improvement, which is the weakest portion of ARS, is the workflow engine, which was introduced a few years ago. It's slow and not very intuitive to use, so I would like to see improvement there."
"Most of the time it just works."
"There are some features that we think should be included in their next release. We think these things would take them to the next level: the ability to completely force or limit any dynamic group processing to specific servers, change-tracking reporting of virtual attributes, and the ability to use files as inputs to automation workloads. These things have also been talked about. Knowing them, they're probably working on them."
"We don't get a lot of communication from the One Identity side. I don't know who our account representative is, and that is kind of not good since we have had some turnover there."
"The possibility to request group membership, similar to the past, was disabled and moved to Identity Manager."
More One Identity Active Roles cons
"The custom application integration is a little complex, and this tool doesn't provide so many plugins or additional applications."
"It is time-consuming to troubleshoot issues."
"The main difficulty was the integration process itself. But we were able to kind of work through it and fix it. We tried integrating with our HR system and other IBM solutions, like Microsoft Identity Management."
"The product's stability is not easy to maintain."
"An area for improvement in Saviynt is that there's a limitation on the number of logs you can get from the past twenty-four hours. For example, if the data is huge, the tool can only give you a maximum of one hundred logs. You can't get any further than that. In the next version of Saviynt, however, you can get more logs and you'll see them inside the log rotation. For example, when you're trying to search inside the log, you can select a date range, and then you can search for a particular log. We haven't used that new log rotation feature yet, but it's included in the next release of Saviynt. Another area for improvement in the tool is that it doesn't have a server monitoring feature, so if your server has a high load, it should give you a warning. You're supposed to get an alert similar to what's being done in WebLogic. In WebLogic, we had a separate facility, but in Saviynt, that feature's missing."
"We sometimes experience performance issues when the solution fails to process the data between two different applications."
"One of the challenges regarding Saviynt is the lack of material available on the web, as searching on Google or YouTube often yields little information."
"The solution is hosted on AWS cloud, and there is some dependency that affects our bottom line."
More Saviynt cons
 

Pricing and Cost Advice

"The licensing model is a simple user-based model, not that much complicated."
"It's fairly priced."
"It's expensive."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"The pricing is on the higher end."
"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
"If you need to make any changes then there are additional fees."
"The pricing is comparable to Azure Entra ID. Kind of the same"
"Saviynt's pricing is reasonable."
"Saviynt's pricing is acceptable and licensing costs are yearly."
"The solution has a pay-as-you-go licensing model, and you can subscribe monthly or yearly."
"If you are investing in securing your data and avoiding any non-compliance issues, then yes, it is certainly recommended. To put it plainly, if you're willing to pay fines and aren't concerned about the misuse of data, then there might not be a problem. However, if you intend to safeguard the data of your employees, vendors, and customers, it becomes crucial. In this context, managing data security requires preventive and detective measures, such as enforcing segregation of duties and regularly reviewing permissions. Throughout an individual's life cycle within an organization or customer life cycle, various access permissions are granted. Without taking action on these permissions, there is a risk of exposure later on. If individuals retain access after leaving the organization, it poses a serious security threat. Implementing solutions like Saviynt can address these challenges, ensuring continuous access review, generating reports, alerts, and identifying potential risks."
"We are not into the licensing part. The clients take care of the licensing part."
"The product is less expensive than one of the competitors."
More Saviynt pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
881,082 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
Manufacturing Company
9%
Healthcare Company
9%
Financial Services Firm
9%
Financial Services Firm
16%
Computer Software Company
8%
Manufacturing Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise4
Large Enterprise19
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise5
Large Enterprise15
 

Questions from the Community

What is your experience regarding pricing and costs for One Identity Active Roles?
Regarding the pricing of One Identity Active Roles, it is definitely on the expensive side compared to solutions for what it does. It is a necessary need for us. I don't know One Identity Active Ro...
See all answers
What needs improvement with One Identity Active Roles?
One of the things I would like to see more robust is the change history. One Identity Active Roles can only monitor changes that happen in the console, and the logs don't go back longer than thirty...
See all answers
What is your primary use case for One Identity Active Roles?
One Identity Active Roles is used for delegated access. It helps with RBAC controls and allows us to manipulate across our facilities which OUs in Active Directory they can manage, along with dynam...
See all answers
What do you like most about Saviynt?
It is very easy to use. It addresses most of the trends in identity governance and risk management.
See all answers
What is your experience regarding pricing and costs for Saviynt?
Saviynt is very affordable compared to its competitors. It is cloud-based, making it significantly cheaper than on-premises solutions. This cost-effectiveness aligns well with the Saudi market, whe...
See all answers
What needs improvement with Saviynt?
One of the challenges regarding Saviynt is the lack of material available on the web, as searching on Google or YouTube often yields little information. Advertising Saviynt is necessary because I w...
See all answers
 

Comparisons

ManageEngine ADManager Plus vs One Identity Active Roles Logo
ManageEngine ADManager Plus vs One Identity Active Roles
Compared 13% of the time
One Identity Manager vs One Identity Active Roles Logo
One Identity Manager vs One Identity Active Roles
Compared 9% of the time
Active Administrator vs One Identity Active Roles Logo
Active Administrator vs One Identity Active Roles
Compared 8% of the time
SailPoint Identity Security Cloud vs One Identity Active Roles Logo
SailPoint Identity Security Cloud vs One Identity Active Roles
Compared 8% of the time
Softerra Adaxes vs One Identity Active Roles Logo
Softerra Adaxes vs One Identity Active Roles
Compared 3% of the time
More One Identity Active Roles Competitors
SailPoint Identity Security Cloud vs Saviynt Logo
SailPoint Identity Security Cloud vs Saviynt
Compared 26% of the time
Microsoft Entra ID vs Saviynt Logo
Microsoft Entra ID vs Saviynt
Compared 11% of the time
Okta Platform vs Saviynt Logo
Okta Platform vs Saviynt
Compared 9% of the time
CyberArk Privileged Access Manager vs Saviynt Logo
CyberArk Privileged Access Manager vs Saviynt
Compared 7% of the time
More Saviynt Competitors
 

Product Reports

Buyer's Guide
One Identity Active Roles
January 2026
One Identity Active Roles reportDownload One Identity Active Roles product report
Buyer's Guide
Saviynt
January 2026
Saviynt reportDownload Saviynt product report
 

Also Known As

Quest Active Roles
No data available
 

Overview

One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.

Using One Identity Active Roles, users can:

  • Easily increase and strengthen native attributes of Active Directory (AD) and Azure AD.

  • Quickly unify and automate group and account management while protecting and securing critical administrative access.

  • Free up valuable resources to concentrate on other IT tasks, fully confident that your user permissions, critical data, and privileged access are safe and secure.

Managing accounts in AD and Azure AD can be tremendously challenging; continually keeping these important systems safe and secure presents an even greater challenge. Traditional tools can be inefficient, error-prone, and very disjointed. In today’s robust marketplace, organizations are finding it somewhat difficult to keep pace with the constant access changes in a hybrid AD ecosystem. Additionally, there are significant security issues to consider (government compliance, employee status/access changes, and other confidential business requirements). And, of course, there is a requirement to properly manage Active Directory and Azure Active Directory access in addition to managing all the other numerous SaaS and non-Windows applications that organizations use today.

Users can easily automate all of these tedious, mundane administrative tasks, keeping their systems safe and error-free. Active Roles ensures users can perform their job responsibilities more effectively, more efficiently, and with minimal manual intervention. Active Roles was created with a flexible design, so organizations can easily scale to meet your organizational needs, today, tomorrow, and in the foreseeable future.

Reviews from Real Users

A PeerSpot user who is a Network Analyst at a government tells us, “It has eliminated admin tasks that were bogging down our IT department. Before we started using Active Roles, if one of our frontline staff members deleted a user or group, it could take several hours to try to reverse that mistake. Whereas now, the most our frontline staff can do is a deprovision, which just disables everything in the background, but it's still there. We can go in and have it back the way it was two minutes later. Instead of it taking two hours, it only takes two minutes.

Becky P., Sr Business Analyst at George Washington University, shares, “In addition, with the use of workflows and the scheduled tasks, we were able to automate and centrally manage a number of the processes as well as utilize them to work around other product limitations. Those include, but are not limited to syncing larger groups, which have 50,000 plus members, to Azure AD. We sync up to Azure AD using ARS. If we had not already had ARS in place, it would have been impossible for us to have done so in the time period we did it in. We did it in under six months. ARS probably saves us at least two weeks out of every month. It's reduced our workload by 50 percent, easily.”

One Identity

Saviynt is an intelligent, cloud-first identity governance & access management solution. The solution is designed to help organizations quickly scale cloud initiatives and solve security and compliance challenges. Saviynt offers identity governance, granular application access, cloud security, and privileged access to secure your company’s ecosystem and provide a seamless user experience.

Saviynt Features

Saviynt has many valuable key features. Some of the most useful ones include:

  • Mobile enablement: Saviynt provides a powerful mobile app to manage business operations such as initiating a request, managing approvals, completing certifications, viewing dashboards, and taking actions in a timely manner.
  • Scalability and Flexibility: Saviynt is built for enterprise scale & flexibility with an industry-leading cloud architecture.
  • Cloud-based: Saviynt provides you with the ability to quickly deploy and seamlessly integrate with multiple critical applications within your environment to manage risks effectively.
  • Rapid application & identity onboarding: With Saviynt application and identity onboarding is easy. Saviynt offers pre-built templates and discovery of unmanaged assets & applications to help speed up the process.
  • AI & ML powered identity analytics: By leveraging the power of AI and machine learning, Saviynt is able to identify risk and duplicate identities, and can also close access gaps.
  • Actionable insights: Saviynt provides actionable insights for identity management, compliance, and security via the Control Center.

Saviynt Benefits

There are several benefits to implementing Saviynt. Some of the biggest advantages the solution offers include:

  • Frictionless access requests: With Saviynt you can request access from anywhere, at any time.
  • Policy violation and SoD conflict detection: Saviynt helps your organization prevent risky access by understanding violations and conflicts for any request.
  • Governance: Saviynt provides governance for all human and machine identities – including third parties.
  • Easier provisioning: Saviynt enables you to automate lifecycle tasks in order to make cross-application provisioning easier and more efficient.
  • Out-of-the-box rulesets: With Saviynt’s out-of-the-box rulesets, you can automatically connect security roles to security tasks.
  • User friendly: Saviynt is designed with a modern web interface and has a mobile app and browser plug-in along with a ServiceNow app to make it easy to use.

Reviews from Real Users

Below are some reviews and helpful feedback written by Saviynt users.

An Identity and Access Management Specialist at a non-tech company states, "The dedicated Freshdesk platform is a user community and a step in the right direction for offering learning resources. Saviynt has a lot of potential with many features available for users."

A Principal Consultant at a tech services company says, "It's a highly functional system and a very well rounded solution. The onboarding of applications is solid. Their user access reviews are very good. Their role-based model and their identity life cycle stuff are solid.”

PeerSpot user Amimesh A., Senior Associate at a tech services company, mentions, “The most valuable feature is the ease of implementation. This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool. The reporting features are good.”

Irappa H., Manager at a computer software company, comments, “The most valuable features are the workflows and certification.”


Saviynt
 

Sample Customers

City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
Shell, McKesson, Kimberly-Clark, Ingram Micro, Intermountain Health Care, Forterra, CoreLogic
Buyer's Guide
One Identity Active Roles vs. Saviynt
December 2025
Free Report: One Identity Active Roles vs. Saviynt
Find out what your peers are saying about One Identity Active Roles vs. Saviynt and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
See our One Identity Active Roles vs. Saviynt report.
See our list of best User Provisioning Software vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.