One Identity Active Roles Reviews

One Identity Active Roles serves as my primary platform for centralized Active Directory administration and identity management automation.

In my day-to-day work, I use One Identity Active Roles for centralized Active Directory and identity management through access provisioning. When a new employee joins the organization, One Identity Active Roles handles the creation of the Active Directory account, group membership, mailbox-related configuration, and role-based access assignment through a centralized workflow.

This automation has significantly impacted my daily tasks and the onboarding process by reducing administrative effort, minimizing configuration errors, and accelerating the onboarding process, which saves considerable time. Before we implemented One Identity Active Roles, the administrator manually managed multiple accounts across different systems. After implementing One Identity Active Roles, the platform applies policies and templates to provision new accounts consistently and securely.

An additional benefit of my main use case is the consistent governance across identity management operations. Since many administrative tasks are automated and policy-driven, our teams spend less time handling repetitive manual account management activities and troubleshooting configuration inconsistencies.

One of the best features of One Identity Active Roles is its automated onboarding capability.

The feature that stands out most for me is the delegated administration combined with policy-based automation, which provides a strong balance between operational efficiency and security governance. One of the most valuable aspects is the ability to assign administrative responsibility to specific teams without granting full Active Directory administrative privilege. For example, Help Desk or regional IT teams can manage password resets, group membership, or user account updates within a controlled scope, while core security and directory administrators remain centrally governed.

A feature that stands out during daily operations is the centralized auditing and tracking capability. In enterprise Active Directory environments where multiple administrators and support teams are involved, having detailed visibility into account changes, group modifications, and administrative actions is extremely valuable.

One Identity Active Roles helps simplify troubleshooting, improve accountability, and support compliance and audit requirements because administrative activities can be tracked more efficiently from a centralized platform.

One Identity Active Roles has positively impacted our organization by improving operational efficiency, strengthening governance, and reducing manual administrative effort within Active Directory and identity management operations. One of the biggest improvements was the automation of routine identity lifecycle tasks such as user provisioning, account updates, group management, and deprovisioning, which reduced repetitive manual work for administrators and helped minimize configuration errors.

We observed noticeable operational improvements after implementing One Identity Active Roles, especially in user provisioning and administrative management processes. For example, onboarding and account provisioning tasks that previously required multiple manual activities and directory updates became significantly faster through policy-based automation and predefined templates, reducing the time required for runtime account management activities and improving consistency across the environment.

One Identity Active Roles is a strong platform for identity and administration and Active Directory management; however, I see a few areas where it could be improved. One area is the user interface and administrative experience. While the platform is feature-rich, some workflows and configuration screens can feel complex for new administrators, especially in large enterprise environments with extensive policy configurations.

Another area for improvement is reporting and analytics. More modern and customized dashboards with deeper operational insights would help administrators monitor identity management activities and governance metrics more efficiently. We also found that advanced workflow customization and integration scenarios can require significant expertise and planning, so simplifying some of the configuration and automation processes would improve usability and reduce the learning curve for administrators.

I have been working in my current field for more than four years.

One Identity Active Roles is stable.

My experience is that One Identity Active Roles scales well for enterprise Active Directory administration and Active Directory management environments. The platform has been able to support a growing number of users, administrative workflows, delegation management, operational tasks, and policy-based automation tasks without major performance concerns.

Customer support is good.

We have seen a positive return on investment from One Identity Active Roles, primarily through reduced administrative workload, improved operational efficiency, and stronger governance across Active Directory management. We also experienced fewer configuration and permission-related errors because automated workflows and approval controls reduce manual intervention.

My advice to organizations considering One Identity Active Roles would be to invest time in properly planning their identity governance model, delegation structure, and automation workflows before deployment. One Identity Active Roles provides powerful capabilities for Active Directory administration and identity lifecycle management, but careful planning helps maximize its long-term value. I would rate this product an 8 out of 10.

One Identity Active Roles is used primarily for managing Active Directory, including user provisioning and group management. When a new employee joins, I use One Identity Active Roles to automatically create their AD account, assign them to groups, and apply policies, all with proper approvals.

Apart from basic user provisioning, I use One Identity Active Roles daily for managing and controlling Active Directory permissions in a structured way.

The best features One Identity Active Roles offers are delegated administration and automation, which stand out the most because they reduce admin workload and improve security. Delegated administration and automation significantly reduce admin workload while improving security and control.

For example, HR or help desk can create or modify users, but only within defined limits - they cannot make critical changes outside their scope.

One Identity Active Roles reduces the risk of misuse or accidental changes, and a workflow benefit is that the centralizing IT team does not handle every request. One Identity Active Roles has had a very positive impact on the organization, especially in terms of security and control over Active Directory.

I have utilized the fine-grained permission control feature of One Identity Active Roles, and it has significantly helped implement least privilege principles. Instead of giving broad admin rights, very specific permissions are assigned based on roles, tasks, and need-to-know access. One Identity Active Roles has had a strong positive impact on the organization's compliance efforts. All changes in AD are logged and traceable, which helps during audits. Fine-grained permissions ensure users only have the access they need, while naming conventions, access roles, and security policies are automatically enforced.

One Identity Active Roles is very useful, though there are a few areas where it could be improved, such as the user interface, policy creation, and reporting - it requires good knowledge of Active Directory. The UI can feel outdated and not very intuitive for new users, and the learning curve is steep. Sometimes there can be slight delays when handling large-scale operations, and the reporting needs to be more helpful for audits.

I have been using One Identity Active Roles for around six months.

One Identity Active Roles is generally a stable and reliable solution based on my experience.

One Identity Active Roles is highly scalable and works well in both medium and large enterprise environments, as it can manage multiple AD domains, Azure AD tenants, and even hybrid environments from a single console.

Customer support for One Identity Active Roles is generally good, especially for standard issues and guidance. The support team is knowledgeable about the product and AD environments, being helpful for configuration issues, troubleshooting, and best practices.

Before implementing One Identity Active Roles, I was primarily managing AD using native tools from Microsoft Management Console, such as Active Directory Users and Computers. I switched because the manual effort was too high, and there was limited delegation and no centralized control.

Integrating One Identity Active Roles with the existing IT infrastructure and directory services was relatively smooth, especially since it is designed to work seamlessly with AD on-premise. It integrates natively with the AD, so the core setup is straightforward.

A strong return on investment has definitely been seen.

My experience with pricing and licensing for One Identity Active Roles has been reasonable for an enterprise solution, but it does require proper planning. The initial setup can involve some cost in terms of time and resources, especially for configuration, policy design, and integration, as skilled Active Directory or IAM professionals were required.

Before selecting One Identity Active Roles, I evaluated a few other options to compare features and fit for the requirements, such as Microsoft Identity Manager.

My impression of the automation capabilities provided by One Identity Active Roles is very positive - they significantly reduce manual effort and improve consistency. For example, when a new employee joins, I use a predefined template, and One Identity Active Roles automatically creates the user account, applies naming conventions, assigns the correct groups, and enforces policies; previously, this required multiple manual setups, but now it is done in a few clicks with consistent results.

One Identity Active Roles has significantly reduced both the complexity and workload of administrative tasks related to Active Directory. Many repetitive tasks are automated, so admins spend much less time on routine activities. Delegated administration allows other teams to handle common requests instead of escalating everything.

My experience with the delegation of administrative tasks through One Identity Active Roles has been very positive, as it has made the workflow much more efficient and controlled. It allows specific admin tasks to be assigned to different teams, so routine tasks such as user creation or password resets are handled by help desk teams, meaning requests do not need to be escalated, so turnaround time is much quicker.

My advice for organizations considering One Identity Active Roles would be to plan the implementation carefully; clearly define your requirements and decide who should have what level of access before implementing. I would rate this product an eight out of ten.

One Identity Active Roles is used in our environment primarily for managing Active Directory operations such as user provisioning, password reset, account locks, group management, and delegated administration access.

User provisioning is a heavily utilized function, where new employee onboarding includes automatic account creation, OU placement, group membership, and permission assignment based on department or role. The service desk team manages group membership requests and access changes through delegated administration without requiring full domain admin rights, which reduces manual efforts and improves security control.

After implementing One Identity Active Roles, clear operational improvements are evident, including user provisioning time reduction from hours to minutes, a 40 to 50% drop in service desk workload, faster resolution of password reset and account-related requests through delegated administration, and fewer manual errors in group assignment and permission management.

The best feature of One Identity Active Roles is automation combined with delegated administration, which reduces repetitive Active Directory work such as user provisioning, group assignment, and account management while allowing the service desk team to handle routine tasks without granting full domain admin access.

Automation simplifies daily operations by eliminating repetitive manual Active Directory tasks including user creation, group assignment, password reset, and account disablement. Onboarding and offboarding processes become much faster because account permissions and group membership are assigned automatically based on role or department.

One Identity Active Roles has positively impacted productivity and user satisfaction by reducing delays in account provisioning, password reset, and access requests. Previously, many AD-related tasks were manual and heavily dependent on senior administrators, but after implementing automation and delegated administration, requests are completed much faster and with fewer errors.

One area where One Identity Active Roles can improve is simplifying complex workflow and approval management in large enterprise environments. Troubleshooting permission inheritance, synchronization issues, or customized workflows can still require considerable time and experienced administrator involvement.

The UI experience, easier workflow customization, and better troubleshooting visibility for complex AD and hybrid identity environments require improvement. Identifying permission inheritance issues or synchronization problems still sometimes requires manual investigation.

Complex workflow management and troubleshooting simplification in large enterprise environments remains an area for improvement.

I have been using One Identity Active Roles for two years.

One Identity Active Roles has been very stable, with no major outages or performance problems experienced during normal operation.

One Identity Active Roles handles our large Active Directory environment efficiently as the number of users, groups, and delegated administration tasks increases.

Customer support for One Identity Active Roles is generally good, with the support team demonstrating strong technical knowledge, particularly regarding AD integration.

Before implementing One Identity Active Roles, native Active Directory tools, manual administration, and PowerShell scripting were primarily used.

A good ROI was achieved with One Identity Active Roles through measurable operational improvements, including a 40 to 50% reduction in routine service desk workload.

My experience with pricing, setup cost, and licensing is generally positive for an enterprise environment, as the initial investment can feel high but provides long-term value.

Before choosing One Identity Active Roles, Microsoft Identity Manager and other tools were evaluated, with One Identity Active Roles selected for its strong integration with our existing Active Directory environment.

Fine-grained permission control in One Identity Active Roles had a strong impact on least privilege implementation in our organization, as only specific tasks and privileges were delegated to users based on their job responsibilities.

Integration of One Identity Active Roles with our existing infrastructure is relatively smooth because our environment is already heavily based on Active Directory and Microsoft technology, although the main challenge came during complex workflow customization.

The automation capabilities of One Identity Active Roles are very positive, as they reduce repetitive tasks such as automatic user account creation during new employee onboarding.

One Identity Active Roles reduces the complexity and workload of Active Directory by automating repetitive administrative tasks including user provisioning, group management, password resets, and account maintenance.

Delegated administration through One Identity Active Roles is a very positive experience because it reduces dependency on senior administrators for routine tasks.

One Identity Active Roles was purchased through another channel.

I would rate this review a 9 out of 10.

One Identity Active Roles streamlines Active Directory operation and maintains better control over user accounts, groups, and administrative commissions on a day-to-day basis.

Whenever a new employee joins the organization, changes departments, or leaves the organization, One Identity Active Roles helps automate account updates and access changes without requiring any manual intervention, which is helpful to keep user access accurate and up to date.

The best features One Identity Active Roles offers are centralized Active Directory administration, access delegation, and user life cycle management.

Centralized administration is helpful because from different tools, I can get visibility from a single console, and the access delegation capability is very useful.

Since using this solution, there has been a great positive impact within the organization, achieving simplified user administration, faster execution of access changes for employees, and very good visibility into administrative actions.

The faster execution has reduced errors because access changes are automatically done by the solution instead of being changed manually, which saves significant time.

One Identity Active Roles provides strong governance and security through rule-based administration and approval workflows, which ensures changes and control are audited.

In terms of accuracy and reliability of output, One Identity Active Roles provides consistent output, and the automated workflow and access management process work very accurately, helping to reduce manual errors.

Fine-grained permission control is helpful for implementing the principle of least privilege; an administrator receives only the specific information that is required for the job function instead of assigning broad administrator rights.

The ease of integrating One Identity Active Roles with existing IT infrastructure and directory services is very smooth; it is a process-by-process step, so there are no issues with this integration.

My impression of the automation capabilities provided by One Identity Active Roles is very positive; it addresses repetitive administrative tasks and maintains consistency. For example, when new employees join, it can automatically create the user account, assign the appropriate group members, and apply naming standards.

The impact of One Identity Active Roles on compliance efforts is very positive; there is a compliance-ready environment because of good visibility, and every administrative action is tracked. Approval workflows help ensure that access changes follow established policies, making audits easier.

One Identity Active Roles has streamlined and simplified the complexity and workload of administrative tasks related to Active Directory because of its ability to automate routine tasks and provide dedicated administration.

My experience with the delegation of administrative tasks through One Identity Active Roles has made the process easier since most tasks are automated, allowing specific responsibilities to be assigned to different teams without giving them full Active Directory privilege, which has significantly improved security.

The initial setup of One Identity Active Roles could be simplified because it requires effort in designing workflows, delegation policies, and the administrative process, which necessitates expertise for this solution.

I have been using One Identity Active Roles for more than two years.

One Identity Active Roles is stable.

The scalability of One Identity Active Roles is very good; it is a very scalable solution.

The customer support for One Identity Active Roles has resolution within timeline.

One Identity Active Roles has been used since the beginning; there was no switch from a different solution.

The initial setup of One Identity Active Roles could be simplified because it requires effort in designing workflows, delegation policies, and the administrative process, which necessitates expertise for this solution.

There have been great money savings and time savings with One Identity Active Roles.

The experience regarding pricing, setup cost, and licensing is handled by a different team.

Other options were not evaluated before choosing One Identity Active Roles.

My advice for others looking into using One Identity Active Roles is to start with the POC, get hands-on experience with all feature sets, and after that, proceed with the solution. Before implementation, define Active Directory administration and delegation requirements, and start by automating repetitive tasks such as user provisioning and password resets. I would rate this product a 9.

One Identity Active Roles serves as my centralized Active Directory management and identity administration solution within our enterprise environment. The platform helps us streamline routing identity management tasks such as user creation, password management, account modification, and access governance, while reducing manual administrative effort.

One Identity Active Roles has positively impacted our organization by improving the efficiency, security, and consistency of identity and access management operations within the Active Directory environment. It also improves security and governance by enforcing role-based access control and provides better visibility into administrative activities through auditing and reporting capabilities.

We observed several operational improvements after implementing One Identity Active Roles, including user onboarding and administrative efficiency and access management consistency. One noticeable improvement was the reduction in onboarding and account provisioning time. Tasks such as creating user accounts, assigning group membership, and applying access permissions became much faster due to centralized management and workflow automation. This helped reduce delays for new employees and improved our overall productivity.

One Identity Active Roles offers several valuable features, but one of the best is centralized Active Directory management. Another strong feature is delegated administration, which allows our organization to assign specific administrative tasks to designated teams without granting full domain-level privilege.

When it comes to centralized Active Directory management, One Identity Active Roles simplifies user administration, group management, and access control from a single platform. This significantly reduces manual administrative effort in our enterprise environment.

One Identity Active Roles delivers role-based access control and auditing as additional strengths of the platform. Active Roles provides detailed visibility into administrative actions and helps support our compliance and governance requirements by maintaining audit trails and enforcing controlled access management.

One area of improvement is the user interface and overall usability. Some administrative functions and configuration can feel complex for new users, especially in large enterprise environments. A more modern and intuitive dashboard would make navigation and task management easier.

The other improvement would be better integration and support for hybrid and cloud-native identity environments, especially as our organization continuously moves towards cloud-based infrastructure and identity management solutions.

I have been using One Identity Active Roles for approximately one to two years.

One Identity Active Roles is stable.

The platform is capable of handling centralized administrative tasks across multi-user, group, organizational unit, and delegated administrative roles without significantly increasing operational complexity. As the environment grows, One Identity Active Roles helps maintain consistent identity governance and access management processes through automation and policy-based administration. One Identity Active Roles has demonstrated good scalability in our experience.

Customer support is good.

We did not use any previous solution before using One Identity Active Roles.

The initial deployment and integration process required proper planning around directory structure, administrative roles, permission, and policy configuration, but the overall implementation was straightforward for our structured enterprise environment. The platform integrates well with our existing Active Directory infrastructure and helps centralize our identity management operations effectively.

We have seen a positive return on investment using One Identity Active Roles, mainly through reduced administrative workload, improved operation, time-saving, and identity management. We also observed fewer manual configuration errors after the implementation of One Identity Active Roles because the policy-driven access management process became centralized. This improved consistency in user provisioning, group assignment, and permission management. The platform also improved our audit readiness and compliance visibility by providing centralized reporting and tracking of administrative activities, which simplifies our internal governance and access review processes.

The setup cost and pricing of One Identity Active Roles was generally positive for an enterprise identity and access management solution. The initial setup and licensing cost can be considerable depending on the size of the Active Directory environment. The setup process required proper planning around Active Directory integration. Licensing is typically based on organization environment and user requirement, so careful evaluation of scalability and future needs is important before deployment.

Before choosing One Identity Active Roles, we did not evaluate other options because what we wanted for Active Directory administrative management, One Identity Active Roles already had that feature in it, so we did not pursue other options.

My advice to organizations considering One Identity Active Roles would be to first clearly assess the structure, identity governance requirements, and administrative workflows. The platform provides the most value where user provisioning, access management, and Active Directory administration have become complex or difficult to manage manually. Proper planning around delegated administration, role-based access control, and workflow automation is very important for successful deployment. I would also recommend starting with a well-defined access governance strategy and reviewing existing administrative permission before implementation. I would rate this solution an 8 out of 10.

My main use case for One Identity Active Roles is delegations and limiting access based on least privilege principles.

A specific example of how I use delegations and least-based access in my environment is that for cases where people only need a password reset, I can grant that capability without granting the ability to unlock accounts, or I can grant the ability to unlock without granting people password reset permissions.

The best features One Identity Active Roles offers are that it can be used across multiple domains and forests.

In our company, we have 85 different domains, and it would be cumbersome to have a separate instance of One Identity Active Roles for each domain. One Identity Active Roles allows us to give people in one domain access through One Identity Active Roles to all these other domains without them needing an account in each of those other domains, even though there does not have to be a trust between those domains.

One Identity Active Roles has positively impacted my organization by helping speed up delegations and helping us find permissions and generate reports more quickly on who has what access where.

One Identity Active Roles takes us less time, probably half the time, to complete delegations that are very granular and complex, compared to having to use native tools and scripts.

One Identity Active Roles can be improved because schemas sometimes differ between domains, and One Identity Active Roles does not behave very well with that inconsistency. We have an open case with Quest on this issue, but so far they do not have a solution for it.

I would also like to request that their support be more detailed, as we are finding difficulties getting to the correct people.

I give it an eight mainly because if we have to undo it for a divestiture, it is very difficult to strip off just the permissions easily because they are done via domain groups. We have to go back and find them all and remove them individually, so there should be an easier way to do that.

I have been using One Identity Active Roles for six years.

One Identity Active Roles can be buggy at times, and we have to restart the server.

One Identity Active Roles can handle growth in my environment, but the downside is that when we have domains that are further away from the server, it takes longer to bring up the console.

I am not really satisfied with the customer support for One Identity Active Roles as the support is pretty limited.

Positive

We do run into challenges with managing upgrades and patches for One Identity Active Roles, but we have a test instance that we try to do it on first.

My advice to others looking into using One Identity Active Roles is to plan out in advance and think about the big picture before you dive in. I give One Identity Active Roles an overall rating of eight out of ten.

One Identity Active Roles simplifies and automates user and group management in Active Directory. It helps reduce manual work, manage permissions more securely, and ensure proper access control. Overall, it improves efficiency, reduces errors, and strengthens security in identity management.

A recent example of how we use One Identity Active Roles day-to-day is during user onboarding. Whenever a new employee joins, instead of manually creating accounts and assigning permissions, we use One Identity Active Roles to automate the process. We select the role or department, and it automatically creates the user, assigns the right groups, and provides correct access. This saves a lot of time and also avoids mistakes such as giving wrong permissions. It makes the process faster and more secure.

We have seen clear improvements after using One Identity Active Roles. For example, in user onboarding, what used to take around twenty to thirty minutes manually is now done in five minutes or less with automation. This represents roughly seventy to eighty percent time saved. We have also seen a big reduction in errors, especially in access assignments, since everything is role-based. I would say errors have dropped by around sixty to seventy percent. From a security point of view, we have not experienced issues such as over-permission or unauthorized access because access is controlled and audited properly. Overall, it has improved speed, reduced errors, and strengthened our security posture.

One Identity Active Roles offers several valuable features mainly around automation, security, and control. First, automation can automatically create users, assign groups, and manage access, which saves a lot of manual effort. Second, role-based access control ensures users only get the access they need. Third, delegation allows us to give limited admin rights to teams without giving full control, which reduces risks. Auditing and reporting is also very useful because we can track who made what changes, which helps in compliance. Finally, centralized management allows everything to be managed from a single console, even across multiple directories.

The feature we rely on the most in our day-to-day work is automation in One Identity Active Roles. It is very important for our team because we deal with frequent user onboarding, role changes, and access requests. Instead of doing everything manually, automation helps us complete these tasks quickly and consistently. It reduces human error, saves a lot of time, and ensures users always get the correct access based on their role. That is why it is the most valuable feature for us in our day-to-day work.

All the features in One Identity Active Roles work really well together. Automation saves time, role-based access control improves security, and auditing gives us visibility.

One Identity Active Roles is a strong tool, but there are a few areas where it can be improved. One area is the user interface, which can feel a bit complex or outdated. Making it more modern and user-friendly would reduce the learning curve. The initial setup and workflow configuration can be slightly complicated, especially for new users or smaller teams. Simplifying this would make adoption easier. Another improvement could be better cloud integration, especially with modern cloud environments to make it more seamless. Additionally, having more ready-made automation templates and better documentation would help teams implement use cases faster.

I have been using One Identity Active Roles for one point five years.

One Identity Active Roles has had a very positive impact on our organization, mainly in terms of efficiency and security. First, it has reduced manual work significantly by automating user provisioning and access management, which saves a lot of time for our IT team. Second, it has improved security by ensuring users only get the right access and reducing the risk of over-permission or errors.

One Identity Active Roles is a very reliable and powerful solution for identity and access management. It really stands out in terms of automation, security, and centralized control, especially in hybrid environments. It helps reduce manual effort, enforce policies, and maintain consistency across systems. At the same time, it has a slight learning curve and some areas of improvement, as with any enterprise tool. However, once properly implemented, it delivers strong value. I would definitely recommend One Identity Active Roles for organizations looking to improve efficiency and strengthen their identity and security.

Our main use case for One Identity Active Roles is centralized Active Directory management and user provisioning. It helps automate user account creation, group management, role-based access control, and administrative tasks while improving security and reducing the manual workload for IT teams.

One common use case for One Identity Active Roles is onboarding new employees. Our team uses it to automatically create Active Directory accounts, assign the correct groups and permissions based on their job roles, and apply standardized policies. This reduces manual configuration errors and speeds up the provisioning process for the IT teams.

The best features for One Identity Active Roles are automated user provisioning, role-based access control, delegated administration, and centralized Active Directory management. It also provides strong auditing and compliance capabilities, which help reduce manual administrative work, improve security, and maintain consistent access policies across the organization.

The feature we rely on the most in One Identity Active Roles is automated user provisioning. It has the biggest day-to-day impact because it streamlines employee onboarding and access management by automatically creating accounts, assigning groups, and applying permissions based on predefined roles. This saves time, reduces manual errors, and ensures users get the correct access quickly and consistently.

One Identity Active Roles has positively impacted our organization by simplifying Active Directory administration and reducing the amount of manual work required for user and access management. Automation improved onboarding efficiency, reduced configuration errors, strengthened access control, and helped maintain better compliance and auditing across the environment.

After implementing One Identity Active Roles, we saw a noticeable reduction in onboarding and account management time because many tasks became automated. It also helped reduce manual provisioning errors and improved consistency in access assignment. The auditing and reporting features made compliance review easier by providing better visibility into administrative changes and user access activity.

One Identity Active Roles could be improved with a modern and intuitive user interface, simpler configuration for complex workflows, and faster performance in large environments. Better cloud integration and easier customization for reporting and automation would also enhance the overall experience.

I have been using One Identity Active Roles for the last 1.2 years.

One Identity Active Roles is stable.

One Identity Active Roles scales very well for our organization with growing Active Directory environments and large user bases. It supports centralized management, delegated administration, and automation across complex enterprise infrastructure, making it effective for handling increasing numbers of users, groups, and access management tasks efficiently.

Customer support was good.

Integrating One Identity Active Roles with our existing IT infrastructure and Active Directory environment was relatively straightforward. Since it is designed to work closely with Microsoft environments, the core integration process was smooth. Though some planning and customization were needed for workflows, permissions, and integration with other enterprise tools. Overall, the deployment effort was manageable for our IT team.

We have seen a positive return on investment from One Identity Active Roles. Automation significantly reduced the time spent on user provisioning, onboarding, and access management tasks, which lowered the administrative workload and improved operational efficiency.

Our experience with pricing and licensing for One Identity Active Roles was positive overall. The setup required some initial planning and configuration, but the licensing and cost were justified by the automation, reduced administrative workload, and improved access management efficiency it provided.

My advice for organizations considering One Identity Active Roles is to plan the role structure, workflows, and delegation policies carefully before deployment. Taking time to align the automation and access controls with business processes helps to maximize efficiency, reduce administrative workload, and improve long-term identity management and security operations. I have given this review a rating of 10.