Try our new research platform with insights from 80,000+ expert users

One Identity Active Roles vs Saviynt comparison

One Identity and Saviynt are both solutions in the User Provisioning Software category. One Identity is ranked #5 with an average rating of 8.5, while Saviynt is ranked #4 with an average rating of 7.3. One Identity holds a 4.3% mindshare in UP, compared to Saviynt’s 16.4% mindshare. Additionally, 100% of One Identity users are willing to recommend the solution, compared to 78% of Saviynt users who would recommend it.
One Identity Active Roles
Read 25 One Identity Active Roles reviews
  • 1,523 Views
  • 564 Comparison Views
100% willing to recommend
Saviynt
Read 24 Saviynt reviews
  • 2,966 Views
  • 1,939 Comparison Views
78% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 6, 2024

One Identity Active Roles and Saviynt compete in the identity and access management space. Saviynt appears to have an upper hand in offering robust access governance and flexible deployment models.

Features: One Identity Active Roles stands out for its active directory management, dynamic group handling, and extensive integration capabilities. The workflows support comprehensive user management. Saviynt excels in role-based access, identity lifecycle management, and offers user-friendly application onboarding and certification features. Built-in reporting and database utilities add significant value.

Room for Improvement: One Identity Active Roles could benefit from improved web console customization, support for multiple scripting languages, and the reintroduction of the attestation feature. Additionally, its workflows could include more templates for ease of modification. Saviynt needs better customization options, improved documentation, and more adept technical support. Simplification of its complex integration process is also needed.

Ease of Deployment and Customer Service: One Identity Active Roles is mainly on-premises, while Saviynt offers cloud and hybrid deployment options, providing more flexibility. Active Roles is praised for its knowledgeable support, though there are some limitations in first-call resolution. Saviynt's support is recognized, but users call for better technical assistance and improved documentation.

Pricing and ROI: One Identity Active Roles is perceived as expensive but offers a competitive user-based licensing model that delivers ROI through automation and risk reduction. Saviynt, slightly costlier, provides extensive features for the price and a pay-as-you-go model with multiple plans. Its ROI is tied to comprehensive access management and security features, ensuring compliance and data protection.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed One Identity Active Roles vs. Saviynt Report (Updated: April 2025).
Buyer's Guide
One Identity Active Roles vs. Saviynt
April 2025
Download the complete report
Helped 851,604 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Active Roles
Ranking in User Provisioning Software
5th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
25
Ranking in other categories
Active Directory Management (2nd), Non-Human Identity Management (NHIM) (5th)
Saviynt
Ranking in User Provisioning Software
4th
Average Rating
7.4
Reviews Sentiment
6.7
Number of Reviews
24
Ranking in other categories
Identity Management (IM) (5th), Privileged Access Management (PAM) (10th), Identity Threat Detection and Response (ITDR) (8th), Identity and Access Management (3rd)
 

Mindshare comparison

As of May 2025, in the User Provisioning Software category, the mindshare of One Identity Active Roles is 4.3%, up from 4.3% compared to the previous year. The mindshare of Saviynt is 16.4%, up from 14.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Provisioning Software
 

Featured Reviews

Grzegorz Kosela - PeerSpot reviewer
Task automation simplifies user and delegation management while offering a customizable interface
Currently, task automation, like provisioning, deprovisioning, and reprovisioning, is very effective. When a user moves from one organization to another, it automatically changes their group membership and performs similar functions. Secondly, the granular delegation feature is very nice and much simpler and easier than it is natively in Microsoft. Two years ago, One Identity Active Roles was under Dell. It was quite poor. However, now, there have been notable improvements, such as faster system processing, better logging, enhanced information, and a more user-friendly interface. Once it was sold by Dell, things got better. The interface became a bit more user-friendly. The Angular user interface is much more flexible for adjusting to customer needs, and a completely new and customizable one can be created, aligning with all settings and scripts required by a customer. The ease of managing on-prem and cloud-based directories through a single pane of glass is good. I'd rate it nine out of ten. The solution's ability to provision and deprovision resources and directories like Azure AD is very simple, especially when you can integrate with the HR system and grab some data from HR. It's actually fully automatic. I don't need to even touch it. It's helped increase operational efficiency by 50%. It's helped decrease security problems around privileged accounts. We were able to decrease the number of privileged accounts and have been able to delegate more effectively. We decreased the number of high-level permissions that administrators had. For example, if someone is a DNS administrator, he has access only as far as the specific actions he needs to handle. We don't need to give away such high privileges for such a daily job. It's helped clarify roles and access. It's helped reduce identity-based breaches. If someone leaves a company, we can easily undo provisioning and close accounts. We can generate reports to see which people have which permissions and at what times. We've just integrated with our HR system. It helps us follow activated and deactivated users. I'd rate the granular controls on offer ten out of ten. We've saved on manpower in terms of the work of the administrators. There's good reporting and functionality, and it's very transparent. You can connect more than one directory and manage everything from one pane. You can do many things from one interface.
Read full review
Prakash Mantha - PeerSpot reviewer
Needs to improve the customer support but is easy to learn
The product can improve the customer support offered to users since it is an area with shortcomings. The product also used to consider providing a free trial app for a month, especially if you are a normal user or if your organization likes the tool. For learning purposes, Saviynt also needs to provide users with some free trials. If I have a company, I can give the tool to my users for a free trial. If I don't have a company, but I want to learn about Saviynt and do some certifications or want some video of the tool, then at least for one month or fifteen days, a trial version should be provided to us to understand the tool, and how the front-end will be in the long run.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It provides automatic provisioning/update/deprovisioning workflows from a source system to a target system."
"Another good feature is the change history. It's centralized in a single place and allows us to manage people's Active Directory domains from a central location. We can also drill down into individual objects in a troubleshooting or even an auditing situation. We can show evidence to auditors by drilling down into the individual history. It gives you all the history of what happened around an individual object. That is something that would be almost impossible to do in Active Directory, or extremely complicated."
"The ease of managing on-prem and cloud-based directories through a single pane of glass is good."
"It is an easier way for me to manage Active Directory with more advanced features."
"We have eased the burden on the support desk and reduced the risk of them doing something they shouldn't."
"Instead of deleting accounts, we like the deprovision option so that we can reverse any accidental deletions. It also gives a higher level of quality control in terms of enforcing any number of variables, such as making sure that an account has a description entered before the account can be created. We can backtrack and know the history of it that way."
"The biggest thing for us is Active Roles saves a lot of man-hours in keeping groups up-to-date manually or trying to write some sort of script that you have to run, so we don't have to reinvent the wheel. Instead of when every time somebody joins a department, then somebody has to remember to put in a request to add "meet user Joe" to this group, the solution does it automatically for us. Therefore, it saves our business and IT staff time because they do not have to process requests since Active Role can do it for them."
"The provisioning and deprovisioning saves a lot of time and skips a lot of errors."
More One Identity Active Roles pros
"Saviynt is used for the greenfield implementation for the whole IAM, IGA, MFA, SSO, and access management."
"Saviynt has better integration with enterprise systems like SAP, Microsoft, Adobe, and AWS."
"It is very easy to use. It addresses most of the trends in identity governance and risk management."
"Considering the initial cost and the basic features, this is a good solution that provides integration with both on-premise and cloud applications."
"This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool."
"The feature that we use the most is the global, third-party user management."
"We have found the implementation process to be very easy."
"Saviynt provides built-in access recommendations, while SailPoint IdentityNow offers access recommendations through a separate AI integration that requires additional licensing. Saviynt functions as a unified platform for various business operations, consolidating user and access data from multiple sources into a single platform. This allows for leveraging the same user base and data across different business functions, including access governance, privileged access management, data access governance, and third-party access governance. In contrast, SailPoint is a decoupled tool, requiring separate integration for managing access and permissions, especially for unstructured data. Saviynt's approach is more integrated and streamlined, providing a unified platform for access recommendations and various business operations."
More Saviynt pros
 

Cons

"Another issue we have with the product is that we run a lot of custom tasks. You have to program them to run on one particular host and there's no automatic failover to a second host. If that host is down when a task is supposed to run, it has to wait until the next time it runs when that host is up."
"Active Roles could add more options for web customization. Our requirements are exceedingly specific. We'd like to get the web interface down to just five buttons, but in some cases, we can only get to six. The web interface in the current version is less customizable than in the previous one."
"There is always room to improve the user interface for increased clarity. I believe enhancements to the console are also necessary because it is more confusing than the web interface."
"For the AAD management feature, it needs to improve the objects that we can manage and the security."
"The solution needs an attestation process that includes certification and recertification attestation."
"The user interface needs to be more modern and scalable."
"The initial setup was quite easy, but it was time-consuming. It took about three months."
"Customer support is rated six. Sometimes having a fix for a bug takes too much time. While in production, issues tend to take a while to resolve."
More One Identity Active Roles cons
"The tool is difficult to migrate."
"In terms of improvement, it's really just a matter of them getting more mature. It's a relatively new solution and they probably need to streamline a few of the processes as they mature. But there are not too many problems."
"An area for improvement in Saviynt is that there's a limitation on the number of logs you can get from the past twenty-four hours. For example, if the data is huge, the tool can only give you a maximum of one hundred logs. You can't get any further than that. In the next version of Saviynt, however, you can get more logs and you'll see them inside the log rotation. For example, when you're trying to search inside the log, you can select a date range, and then you can search for a particular log. We haven't used that new log rotation feature yet, but it's included in the next release of Saviynt. Another area for improvement in the tool is that it doesn't have a server monitoring feature, so if your server has a high load, it should give you a warning. You're supposed to get an alert similar to what's being done in WebLogic. In WebLogic, we had a separate facility, but in Saviynt, that feature's missing."
"The solution is hosted on AWS cloud, and there is some dependency that affects our bottom line."
"The customer support and implementation services need to be improved."
"Both SailPoint IdentityNow and Saviynt have some bugs, but SailPoint is considered more mature with fewer bugs due to its longer establishment in the market since around 2005. SailPoint had its share of bugs in the early days, but they have resolved them over time, resulting in a stable product. Saviynt, on the other hand, was launched around 2013 or 2014 and is actively working to improve its product. Despite having some bugs, Saviynt is making progress and aims to build a stable product, but it is not there yet."
"The main difficulty was the integration process itself. But we were able to kind of work through it and fix it. We tried integrating with our HR system and other IBM solutions, like Microsoft Identity Management."
"UI and support could be improved. The frequent updates and version changes can be disruptive for large organizations. Not every month, a large organization can go with the changes. Saviynt needs to consider this carefully."
More Saviynt cons
 

Pricing and Cost Advice

"The pricing for Active Roles is expensive but not as expensive as other solutions like Okta."
"The pricing is high. I have not been involved with the renewal or cost aspect, but I know it is not cheap by any means. However, it is very useful for our environment."
"It's expensive."
"The price is reasonable. It costs us about 1 million Danish kroner annually, and we also spend about half as much on consultants."
"It's fairly priced."
"The pricing is on the higher end."
"The licensing model is a simple user-based model, not that much complicated."
"Saviynt's pricing is acceptable and licensing costs are yearly."
"The solution has a pay-as-you-go licensing model, and you can subscribe monthly or yearly."
"The price of the license for this product is quite expensive."
"If you need to make any changes then there are additional fees."
"We are not into the licensing part. The clients take care of the licensing part."
"If you are investing in securing your data and avoiding any non-compliance issues, then yes, it is certainly recommended. To put it plainly, if you're willing to pay fines and aren't concerned about the misuse of data, then there might not be a problem. However, if you intend to safeguard the data of your employees, vendors, and customers, it becomes crucial. In this context, managing data security requires preventive and detective measures, such as enforcing segregation of duties and regularly reviewing permissions. Throughout an individual's life cycle within an organization or customer life cycle, various access permissions are granted. Without taking action on these permissions, there is a risk of exposure later on. If individuals retain access after leaving the organization, it poses a serious security threat. Implementing solutions like Saviynt can address these challenges, ensuring continuous access review, generating reports, alerts, and identifying potential risks."
"The product is less expensive than one of the competitors."
"The pricing is comparable to Azure Entra ID. Kind of the same"
More Saviynt pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which User Provisioning Software solutions are best for your needs.
See recommendations
851,604 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
12%
Manufacturing Company
7%
Healthcare Company
7%
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about One Identity Active Roles?
The solution is stable.
See all answers
What is your experience regarding pricing and costs for One Identity Active Roles?
The product is expensive, but if you want to save money, the delegation set-up process is quite easy. After setting up Active Roles once, defining the delegation model, it is very efficient, almost...
See all answers
What needs improvement with One Identity Active Roles?
One area for improvement would be the Entra ID side, including better delegation for Entra ID objects and more granular permissions. We would also like to see better Entra ID license management usi...
See all answers
What do you like most about Saviynt?
It is very easy to use. It addresses most of the trends in identity governance and risk management.
See all answers
What is your experience regarding pricing and costs for Saviynt?
Saviynt is very affordable compared to its competitors. It is cloud-based, making it significantly cheaper than on-premises solutions. This cost-effectiveness aligns well with the Saudi market, whe...
See all answers
What needs improvement with Saviynt?
We are in the deployment stage, so it's too early to determine specific improvement areas. However, bringing more people on the ground could enhance Saviynt's market presence. While Saviynt has pot...
See all answers
 

Comparisons

SailPoint Identity Security Cloud vs One Identity Active Roles Logo
SailPoint Identity Security Cloud vs One Identity Active Roles
Compared 17% of the time
ManageEngine ADManager Plus vs One Identity Active Roles Logo
ManageEngine ADManager Plus vs One Identity Active Roles
Compared 14% of the time
Microsoft Entra ID vs One Identity Active Roles Logo
Microsoft Entra ID vs One Identity Active Roles
Compared 12% of the time
One Identity Manager vs One Identity Active Roles Logo
One Identity Manager vs One Identity Active Roles
Compared 10% of the time
More One Identity Active Roles Competitors
SailPoint Identity Security Cloud vs Saviynt Logo
SailPoint Identity Security Cloud vs Saviynt
Compared 37% of the time
Microsoft Entra ID vs Saviynt Logo
Microsoft Entra ID vs Saviynt
Compared 15% of the time
Okta Workforce Identity vs Saviynt Logo
Okta Workforce Identity vs Saviynt
Compared 8% of the time
CyberArk Privileged Access Manager vs Saviynt Logo
CyberArk Privileged Access Manager vs Saviynt
Compared 7% of the time
Omada Identity vs Saviynt Logo
Omada Identity vs Saviynt
Compared 5% of the time
More Saviynt Competitors
 

Product Reports

Buyer's Guide
One Identity Active Roles
May 2025
One Identity Active Roles reportDownload One Identity Active Roles product report
Buyer's Guide
Saviynt
April 2025
Saviynt reportDownload Saviynt product report
 

Also Known As

Quest Active Roles
No data available
 

Overview

One Identity Active Roles is a highly regarded solution for Active Directory (AD) security and account management. One Identity Active Roles will enhance group, account, and directory management while eradicating the need for manual processes. The end result is a significant increase in the overall speed, efficiency, and security of the organization.

Using One Identity Active Roles, users can:

  • Easily increase and strengthen native attributes of Active Directory (AD) and Azure AD.

  • Quickly unify and automate group and account management while protecting and securing critical administrative access.

  • Free up valuable resources to concentrate on other IT tasks, fully confident that your user permissions, critical data, and privileged access are safe and secure.

Managing accounts in AD and Azure AD can be tremendously challenging; continually keeping these important systems safe and secure presents an even greater challenge. Traditional tools can be inefficient, error-prone, and very disjointed. In today’s robust marketplace, organizations are finding it somewhat difficult to keep pace with the constant access changes in a hybrid AD ecosystem. Additionally, there are significant security issues to consider (government compliance, employee status/access changes, and other confidential business requirements). And, of course, there is a requirement to properly manage Active Directory and Azure Active Directory access in addition to managing all the other numerous SaaS and non-Windows applications that organizations use today.

Users can easily automate all of these tedious, mundane administrative tasks, keeping their systems safe and error-free. Active Roles ensures users can perform their job responsibilities more effectively, more efficiently, and with minimal manual intervention. Active Roles was created with a flexible design, so organizations can easily scale to meet your organizational needs, today, tomorrow, and in the foreseeable future.

Reviews from Real Users

A PeerSpot user who is a Network Analyst at a government tells us, “It has eliminated admin tasks that were bogging down our IT department. Before we started using Active Roles, if one of our frontline staff members deleted a user or group, it could take several hours to try to reverse that mistake. Whereas now, the most our frontline staff can do is a deprovision, which just disables everything in the background, but it's still there. We can go in and have it back the way it was two minutes later. Instead of it taking two hours, it only takes two minutes.

Becky P., Sr Business Analyst at George Washington University, shares, “In addition, with the use of workflows and the scheduled tasks, we were able to automate and centrally manage a number of the processes as well as utilize them to work around other product limitations. Those include, but are not limited to syncing larger groups, which have 50,000 plus members, to Azure AD. We sync up to Azure AD using ARS. If we had not already had ARS in place, it would have been impossible for us to have done so in the time period we did it in. We did it in under six months. ARS probably saves us at least two weeks out of every month. It's reduced our workload by 50 percent, easily.”

One Identity

Saviynt is an intelligent, cloud-first identity governance & access management solution. The solution is designed to help organizations quickly scale cloud initiatives and solve security and compliance challenges. Saviynt offers identity governance, granular application access, cloud security, and privileged access to secure your company’s ecosystem and provide a seamless user experience.

Saviynt Features

Saviynt has many valuable key features. Some of the most useful ones include:

  • Mobile enablement: Saviynt provides a powerful mobile app to manage business operations such as initiating a request, managing approvals, completing certifications, viewing dashboards, and taking actions in a timely manner.
  • Scalability and Flexibility: Saviynt is built for enterprise scale & flexibility with an industry-leading cloud architecture.
  • Cloud-based: Saviynt provides you with the ability to quickly deploy and seamlessly integrate with multiple critical applications within your environment to manage risks effectively.
  • Rapid application & identity onboarding: With Saviynt application and identity onboarding is easy. Saviynt offers pre-built templates and discovery of unmanaged assets & applications to help speed up the process.
  • AI & ML powered identity analytics: By leveraging the power of AI and machine learning, Saviynt is able to identify risk and duplicate identities, and can also close access gaps.
  • Actionable insights: Saviynt provides actionable insights for identity management, compliance, and security via the Control Center.

Saviynt Benefits

There are several benefits to implementing Saviynt. Some of the biggest advantages the solution offers include:

  • Frictionless access requests: With Saviynt you can request access from anywhere, at any time.
  • Policy violation and SoD conflict detection: Saviynt helps your organization prevent risky access by understanding violations and conflicts for any request.
  • Governance: Saviynt provides governance for all human and machine identities – including third parties.
  • Easier provisioning: Saviynt enables you to automate lifecycle tasks in order to make cross-application provisioning easier and more efficient.
  • Out-of-the-box rulesets: With Saviynt’s out-of-the-box rulesets, you can automatically connect security roles to security tasks.
  • User friendly: Saviynt is designed with a modern web interface and has a mobile app and browser plug-in along with a ServiceNow app to make it easy to use.

Reviews from Real Users

Below are some reviews and helpful feedback written by Saviynt users.

An Identity and Access Management Specialist at a non-tech company states, "The dedicated Freshdesk platform is a user community and a step in the right direction for offering learning resources. Saviynt has a lot of potential with many features available for users."

A Principal Consultant at a tech services company says, "It's a highly functional system and a very well rounded solution. The onboarding of applications is solid. Their user access reviews are very good. Their role-based model and their identity life cycle stuff are solid.”

PeerSpot user Amimesh A., Senior Associate at a tech services company, mentions, “The most valuable feature is the ease of implementation. This product works well out of the box and if you don’t want to do a lot of configuration then this is the best tool. The reporting features are good.”

Irappa H., Manager at a computer software company, comments, “The most valuable features are the workflows and certification.”


Saviynt
 

Sample Customers

City of Frankfurt, Moore Public Schools, George Washington University, Transavia Airlines, Howard County, MD. See all stories at OneIdentity.com/casestudies
Shell, McKesson, Kimberly-Clark, Ingram Micro, Intermountain Health Care, Forterra, CoreLogic
Buyer's Guide
One Identity Active Roles vs. Saviynt
April 2025
Free Report: One Identity Active Roles vs. Saviynt
Find out what your peers are saying about One Identity Active Roles vs. Saviynt and other solutions. Updated: April 2025.
DOWNLOAD NOW
851,604 professionals have used our research since 2012.
See our One Identity Active Roles vs. Saviynt report.
See our list of best User Provisioning Software vendors.

We monitor all User Provisioning Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.