OneLogin Reviews

OneLogin acts as a centralized identity backbone for our fragmented enterprise stack and is a reliable workforce identity engine that simplifies lifecycle management of the work. Its structure, policy structure, and developer experience are flawless. We have used it for primary cases like automated lifecycle management, secure single sign-on (SSO) because centralizing access control with Smart Factor Authentication is very useful, and directory integration, which includes real-time synchronization with Active Directory and LDAP via lightweight connectors.

The best features OneLogin offers include Smart Factor Authentication, automated lifecycle management provision, and high availability directory connectors like lightweight active directory connectors (ADC) and LDAP bridges, which establish reliable, real-time synchronization with on-premises directories. It provides a clean, single source of truth without requiring heavy infrastructure modifications, which is advantageous because many tools have complex setups, but OneLogin gives us a seamless experience for setting it up, serving as a single source for everything without any complex synchronization scripts.

The biggest impact for us comes from automated contractor provisioning, specifically the automated lifecycle management via the Active Directory connector (ADC), which delivers the most significant operational impact. When deploying short-term, cross-domain contractors into our high-security staging environments bridging legacy on-premises networks and AWS, manual setup bottlenecks our engineering team for days. By leveraging OneLogin's pre-built application catalog, we completely automate the pipeline so that the moment any external account is created in the directory, access to the specific developer tools is provisioned instantly, slashing our team's onboarding administrative hurdles by roughly 70%.

The key strength I would suggest is the multi-tiered security policies, and the administrative UI is very crucial for helping our developers set things up and track everything together.

The core operational impact of OneLogin is eliminating access bottlenecks, and our biggest win comes from automating lifecycle management when spinning up the environments for 150 or more short-term, cross-domain contractors, which used to stall our engineering team for days. By leveraging OneLogin's pre-built application catalog and ADC, we automate that pipeline, which helps us significantly.

Additionally, its Smart Factor authentication method uses machine learning risk scoring to evaluate across any context, seamlessly bypassing MFA for low-risk internal developer logins while instantly triggering biometric challenges for anomalous remote connections, marking our biggest wins.

From a pure availability standpoint, OneLogin's core single sign-on engine is highly dependable. During high-traffic periods across our banking and logistic portals, the primary authentication path rarely drops while processing risk scores, maintaining consistent uptime without adding systematic latency.

There are some tweaks we could make to the administrative UI that could improve workflow administration, along with metrics that could be added to the dashboard which are already available in the platform.

I have been working in the artificial intelligence field for around three to three and a half years.

OneLogin remains stable across team usage. Our networking and engineering team uses OneLogin almost every day without any issues to date.

OneLogin support effectively maintains standard operations, while their enterprise tier engineering depth fosters good relations with high-velocity development teams during debugging of complex hybrid pipelines. For account holders, the SAML and OIDC configuration assistance, along with general billing inquiries, generally sees predictable and quick response times. The documentation almost answers every question and covers standard SaaS integrations well, allowing even a junior system administrator to navigate basic setups without needing to open a ticket.

Before standardizing on OneLogin, we relied heavily on Okta. While Okta boasts an extensive app ecosystem and mature API access management, we strategically switched to OneLogin to optimize our operational efficiency across a hybrid infrastructure.

OneLogin provides a highly seamless, low-friction end-user authentication experience. The single sign-on portal stands out as exceptionally clean for the end-user, and the standout feature is Smart Factor Authentication, which suppresses MFA prompts entirely. It only triggers strict biometric challenges when an anomaly or remote connection is detected. This ensures that the end-user does not face bottlenecks from a painful developer setup, resulting in a seamless experience.

Once actually configured, the sign-in SSO completely automates the user access pipeline, reducing onboarding login hurdles by 70%. It delivers a top-tier end-user experience, provided our engineering team handles the necessary backup setup required to deploy it.

There are multiple metrics to share. One is engineering time saved, as the 70% cut in the onboarding process brought it down from six days to about five to six hours. We also needed fewer employees to accomplish the work by replacing manual script maintenance, thereby avoiding the hiring of two full-time IAM and system admin engineers, saving us about 18 lakhs to 24 lakhs annually. Another significant metric is reduced help desk ticket volume, where centralized self-service password resets and Smart Factor Authentication for our low-risk internal network slashed login-related support tickets by 45%. The security ROI is undeniable, evidenced by zero credential stuffing breaches since deployment and zero alert fatigue due to context-aware gating.

From an AML infrastructure perspective, navigating OneLogin's licensing requires calculating operational cost taxes. The base seat cost is reasonable, typically scaling to around three dollars per user per month for a basic plan, while we used a ten dollars per user plan for enterprise, which was quite reasonable for us considering our on-premises setup. Although OneLogin brands itself as a cloud-first IAM backbone, our hybrid architecture across networking and logistics across different domains necessitated integrating with legacy infrastructure.

The Active Directory and LDAP bridged themselves on on-premises server licensing fees, making our life easier by flattening the standard per-user cost. Additionally, internal engineering hours are effectively bridged to the cloud control plane with the physical data center.

We evaluated Okta, and then we considered Microsoft Entra ID.

OneLogin is a highly pragmatic workforce identity engine that eliminates manual authentication debt across fragmented infrastructure securely. My strategic advice is to audit your API requirements early. If your architecture relies heavily on IAM driven entirely by code, especially for automatic complex event stream auditing or real-time webhooks, be ready to attach those securely. OneLogin's REST API handles basic CRUD operations well, with deep technical documentation addressing almost every potential question.

Be prepared to go through the documentation, and also leverage Smart Factor to avoid alert fatigue. Maximizing the Smart Factor Authentication system while properly configuring it allows you to suppress MFA prompts for standard and low-risk internal logins, ensuring the best-in-world protection while safeguarding the environment and infrastructure without burning out your team. This review has been given a rating of ten out of ten.

On-premises

OneLogin serves as our main identity and access management solution, particularly for centralized authentication, single sign-on, and secure access management across enterprise applications and systems.

One practical example of how we use OneLogin for centralized authentication and secure access management in our organization is for centralized access to multiple enterprise and cloud-based applications through single sign-on. Instead of maintaining separate credentials for different platforms, OneLogin allows authentication through a single centralized identity system. When employees log into the organization environment, they can securely access authorized applications using a single authentication process combined with MFA. This simplifies the login experience for users while improving security by enforcing centralized access policy and strong authentication control.

We also use OneLogin for role-based access management and user provisioning. When a user joins the organization or changes roles, access permissions can be managed centrally, helping ensure users only receive operational accesses based on business requirements.

We have used Smart Factor Authentication to adjust authentication flows based on login risk scores, and it has been very effective in balancing security and usability. What stood out most is that low-risk users can log in with minimum friction while suspicious login attempts automatically trigger additional MFA checks or access restrictions. This reduces unnecessary MFA prompts for regular users while still strengthening protection against risky access attempts, which improved both user satisfaction and overall security posture.

The integration of phishing-resistant Device Trust has strengthened our authentication process by ensuring that only verified and trusted devices can access company resources. It significantly reduces the risk of credential phishing and unauthorized access. Overall, it improves confidence in remote access security while supporting a smoother and more secure user experience for day-to-day logins.

We have used adaptive login flows with Vigilance AI, and they significantly improved our ability to detect risky behavior and respond dynamically during authentication. For example, low-risk logins usually proceed smoothly while suspicious items trigger stronger MFA challenges or access restrictions, helping us improve security without creating unnecessary friction for normal users.

In my experience, the best part of OneLogin is its seamless single sign-on, which makes accessing multiple apps very easy and saves lots of time. The MFA and adaptive security features also provide strong protection without making the login process complicated. I also appreciate its easy integration with Active Directory and cloud apps, along with the automated user provisioning that simplifies user management for IT teams.

For our team, the seamless single sign-on feature stands out the most because it significantly reduces the hassle of managing multiple passwords and logging into different applications every day. It improves productivity since employees can access all the required tools through one secure login, which saves time and reduces login-related support tickets. In daily workflow, it made onboarding new users much faster and created a smoother experience for both remote and in-office teams.

OneLogin provides the most value in environments where the organization needs centralized authentication, MFA, SSO, and simplified access management across multiple cloud and enterprise applications.

OneLogin has positively impacted our organization by improving both security and operational efficiency. Since implementation, we have noticed fewer password reset requests, faster onboarding and offboarding of employees, and smoother access management across multiple applications. It also helped enhance user experience for employees while giving the IT team better visibility and control over authentication and security policies.

We have seen a positive return on investment primarily through reduced administrative workload, improved authentication efficiency, and time saving for both users and the IT team.

One area that could be improved in OneLogin is the user interface and administrative dashboard experience.

OneLogin is a strong identity and access management platform, but there are a few areas where improvement could enhance the overall experience and functionality. One area is the user interface and the administrative dashboard experience. While the platform is generally manageable, some advanced configuration and policy management tasks can feel complex, especially for organizations managing large environments with multiple integrations. Another area of improvement is integration flexibility and support for certain third-party legacy applications where additional customization and configuration may sometimes be required.

I have been using OneLogin for the last one year.

OneLogin is stable.

The scalability of OneLogin is positive.

The customer support of OneLogin is positive.

Before choosing OneLogin, we did not evaluate or choose any other solutions.

Before choosing OneLogin, we did not evaluate any other options.

I have seen a return on investment from using OneLogin, primarily through reduced administrative workload, improved authentication efficiency, and time saving for both users and the IT team. We also experienced operational efficiency improvements through centralized authentication and automated user provisioning and de-provisioning processes, which improved visibility into login activity and reduced risk associated with weak or compromised credentials.

The experience with OneLogin's pricing, setup cost, and licensing was positive.

OneLogin is deployed in our organization on-premises.

My impression of OneLogin's user identity synchronization across directories functionality is very positive.

My impression of OneLogin's ability to provide a seamless end-user signing and authentication experience is very positive.

I recommend organizations first clarify and evaluate their authentication access requirements before implementation. OneLogin provides the most value in environments where organizations need centralized authentication, MFA, single sign-on, and simplified access management across multiple cloud and enterprise applications. Smart Factor Authentication provides a good balance between security and usability, especially in environments where organizations want strong authentication control without creating unnecessary friction for users.

I give this review a rating of ten out of ten.

On-premises

Our main use case for OneLogin is single sign-on, user authentication, and access management, which helps employees securely access multiple business applications with one set of credentials.

For example, our team uses OneLogin to secure access to Microsoft 365 and other internal business applications, allowing employees to sign in once through OneLogin and access all authorized applications.

We use OneLogin for user onboarding and offboarding, where access to required applications can be accessed quickly through OneLogin when a new employee joins, and access can be removed centrally when an employee leaves, improving security and reducing administrative efforts.

In my opinion, the best features OneLogin offers are single sign-in, multi-factor authentication, and centralized user management.

The multi-factor authentication feature adds an extra layer of security beyond password, requiring users to verify their identity via methods like Google Authenticator, significantly improving overall security.

OneLogin's user management and integrations are also very valuable, as it integrates with popular cloud applications and allows us to manage user access from a central location.

The integration of phishing-resistant device trust has strengthened our authentication processes by ensuring that only trusted devices can access company resources.

OneLogin has positively impacted our organization by improving both security and operational efficiency through centralized access management and SSO, which has reduced password-related support requests, saving time for both users and the IT team and enhancing overall security.

We don't track the exact figure, but based on our experience, OneLogin has reduced password-related support tickets by around 25 to 30% and has saved several hours of administrative work each month.

OneLogin is a strong platform overall, but the reporting and advanced configuration options could be more intuitive; some administrative tasks and policies configuration have a learning curve for new users, and improving the user interface and providing more detailed built-in reporting would make management more efficient.

OneLogin could improve some third-party integrations by making setup and troubleshooting more straightforward; while customer support is generally helpful, faster response times for complex issues would be beneficial.

To be honest, we don't use OneLogin for AI-driven features extensively, so I cannot comment deeply on its output accuracy or reliability.

At this point, we have covered the main areas of improvement; the only additional suggestion would be to continue enhancing the reporting dashboard and simplifying some advanced administrative workflows, as overall, OneLogin is a mature and reliable platform and the needed improvements are not major.

I have been using OneLogin for two years.

OneLogin has been stable in my experience, with no significant downtime or reliability issues.

OneLogin has scaled well with our organization's growth, handling an increased number of users and applications without any significant performance issues.

Customer support has generally met our expectations, as the support team is very knowledgeable and helpful, with most issues being resolved in a timely manner.

Before OneLogin, we had a directory application with a specific authentication method.

Our experience with pricing, setup costs, and licensing for OneLogin has been positive, with the licensing being straightforward and the setup process relatively smooth.

We have seen a positive ROI, estimating a 25 to 30% reduction in password-related support tickets and several hours saved for IT administration tickets each month, even though we don't track exact numbers.

We reviewed a few other identity and access management solutions, including Microsoft Entra ID and Okta, before choosing OneLogin for its balance of security, ease of administration, integration capabilities, and overall value for our requirements.

I rate OneLogin nine out of 10 for its strong security, reliable SSO, effective user management, and good overall user experience.

I chose nine out of 10 because OneLogin delivers very well on its core functions in MFA, user provisioning, and access management, improving security and simplifying administration for our team, but it doesn't attain a perfect 10 due to some advanced configurations being complex and the reporting capabilities needing to be more flexible.

The sign-in experience is very smooth and user-friendly; single sign-on allows users to access multiple applications with one login, reducing password management burdens and improving productivity while maintaining security.

Smart Factor Authentication applies additional verification when a login appears high-risk, such as from a new device or unfamiliar location, and it does a good job balancing security and usability.

The User Identity Synchronization across directories functionality has helped us by keeping user identities synchronized across systems automatically, which reduces manual efforts and improves accuracy, making user management more efficient.

Overall, OneLogin has been a reliable and effective identity management solution for our organization, with its MFA and user provisioning capabilities improving security and simplifying access management.

I recommend OneLogin to organizations looking for a secure and easy-to-manage identity and access management solution.

Public Cloud

Microsoft Azure

OneLogin's use case in my organization is for the entire infrastructure because it was very outdated, not secure, and it was built Windows heavy despite us being a Mac environment. I decided to go completely cloud-based instead. I rebuilt the whole school infrastructure into being fully cloud-based and software as a service most of the time, so we don't have any on-premise infrastructure for anything. OneLogin was one tool that I compared to two other tools, and it did everything I needed to do. It made our life much easier to switch to completely cloud-based authentication and everything.

In my opinion, the best features of OneLogin are mainly utilizing SSO connectors and SAML integrations. From that perspective, it already had pre-built a bunch of connectors that I find useful even for education, which is not always the case. On top of that, we can create our custom ones. As soon as we started involving quite a few open-source systems, we could still ensure the security over OneLogin SSO.

Regarding the connectors, we have our SIS connector, which is our student information system. We have our payroll system connected to it. We have our library system connected to it. We have Google Workspace, Microsoft accounts, pretty much anything. We connected our custom ticketing system, which is open source but customized. The same we did for our knowledge base and our documentation tool, which is also open source. We also use it with our MDM connected for authentication purposes. It's very good on that front.

The areas of OneLogin that have room for improvement include that AI is not for me. There are tools where AI does not belong, in my opinion, and this is one of them. I don't see any benefits of having AI touching this, especially with tons of private data involved. What would be the reason? Perhaps for a security and risk score basis, I would understand for this portion of the system, but other than that, there is no place for AI for normal basic operability of the system. The same applies to reporting. The reporting is the same from day one since we got the system. The UI is the same. It's very much a 2018 UI. The reporting and UI could be up to date, but it's not the core part of the system, so I don't really care how it looks as long as it functions well, and it does.

I can't really say for certain now if they fixed this or not, but I know when I was using their platform's desktop connector to give me functionality what we have now with the platform SSO and with the JumpConnect on our laptops, it did not work on day one and created me quite a lot of headache. From that standpoint, I don't know if they fixed that and have day one support for Mac. If not, I don't think that's a product that should be released for Mac because you can't do patching and postpone the patching just because they still haven't figured out their tool. It's bad practice in my opinion, but I don't know since it's been a while since I used that, so I don't know if they have day one support for new macOS systems or not.

I have been using OneLogin since 2019.

I would rate the stability of OneLogin as a nine out of ten. I don't have really many issues, and when there is something, at least the communication from them is very proper about any bugs or something that's happening. We don't have any downtimes that I can remember. I think the last downtime we had was also during COVID when everyone went online.

I would rate the scalability of OneLogin as a nine out of ten. It's very scalable. If I need more users tomorrow, I have more users tomorrow. That's not a problem.

I don't know how the technical support that OneLogin provides is now. The last time I used their support was four years ago, so I don't really have that much recent experience with their support. The last time I had experience with them, I would give them a seven. It was fine. I've definitely had much better support, and I've definitely experienced far worse support than that.

Positive

The deployment of OneLogin was fairly seamless. The documentation at the time was pretty good for this. I found some documentation that's pretty outdated, but that's between Meraki and OneLogin to sort out. Other than that, the documentation for basic setup and for connectors is very clear. People don't have to be super high-end techies to go in and manage to do it themselves. If someone can read, they can pretty easily follow the instructions.

The return on investment I have seen with OneLogin would go close to eighty percent if we combine time and money and everything, because it let us get rid of the servers, which was a quite high-cost item on our budget. The same, we don't have to spend time going through seven or eight different systems and create all the accounts for people. Now we just have one account and that's it, and even that is now automated. If people do their job correctly within HR and create correctly a record within our student information system, we've already tied it together over APIs. We made a different thing, a directory, and then OneLogin, and it works great. It saves us a lot.

The advice I would give others looking to implement OneLogin is that there are a lot of tools out there. If this is something where the basic package fits for people or they need all those extra bells and whistles, then absolutely, because for us, it does exactly what it needs to do. It's a marriage at this point. If we want to switch, switching the system would be a far bigger headache than just keeping it as is. People should choose very carefully. Compare two or three systems, do a proof of concept, and choose what they need. I can say OneLogin is pretty good. For the money within the base package, there are no complaints. It does everything. They focus on keeping it stable, which is good. I would rate this product an eight out of ten overall.

My main use case is centered around single sign-on and multi-factor authentication across all of our critical business apps. It allows our team to log in once and securely access everything they need, which boosts efficiency and security.

A specific example is that every morning when our team logs in, they use OneLogin to access our project management tools, email, and internal dashboards. For sensitive operations such as accessing financial reports, the adaptive MFA triggers, so they confirm with a push notification or a code. The customization options in OneLogin really let us tailor the security to our exact needs.

One of the best features is definitely the breadth of integrations. It works with so many applications out of the box. On top of that, adaptive MFA is really strong, and the admin console is incredibly intuitive. It gives us full visibility and control over user access.

The integrations really stand out because they cover both cloud apps and on-premises solutions seamlessly, which I haven't seen in other tools as comprehensively. The adaptive MFA compared to others is more dynamic. It adjusts based on risk or location, so it's really flexible.

It's had a huge impact. We've seen a big reduction in password fatigue since people only log in once. Security incidents have gone down because of the stronger authentication, and our IT team has saved a lot of time on access issues.

I think one area for improvement would be more granular reporting, such as custom dashboards or more detailed audit logs. Additionally, it would be beneficial if there were a few more out-of-the-box integrations with some niche tools we use.

Another area for improvement is that sometimes the user provisioning process can be a bit manual. If they could streamline bulk user updates or automate more workflows, that would really save us even more time.

I think one last improvement could be better customization options for the user dashboard, giving end users more control over their login experience. Overall, the platform is really strong.

I've been working in this field for about a year and three months. In that time, I've really focused deeply on identity and access management, especially using OneLogin.

I did evaluate a few other options. I looked at Okta, Azure AD, and also Duo. In the end, OneLogin was the most stable for us. There have been no major outages, and performance has been really consistent.

It's been really solid. As our team has grown, OneLogin has scaled effortlessly. I haven't had to make any major adjustments, and adding new users or apps is really easy. It scales quite well with our needs.

The customer support has been excellent. Whenever we've had questions or needed help with setup, their team responded quickly and really guided us step by step. It's been a really positive experience overall.

I was previously using Okta before OneLogin. I switched because OneLogin offered more flexible pricing and better integration with some of our custom tools. Additionally, the user experience was smoother for our team.

It was actually pretty straightforward. OneLogin offers a lot of pre-built connectors, so integrating with third-party providers just involved a few configuration steps. It was pretty seamless, and I didn't run into major roadblocks.

I didn't purchase it through the AWS Marketplace. I went directly through OneLogin's sales team, and then I configured the integration with our AWS environment after the fact.

I've definitely seen a return. I reduced the time spent on password resets by about 40%, and IT saved around 15 hours a month. By streamlining access, I avoided a few potential security incidents, which saved me quite a bit of risk-related cost.

Pricing was actually pretty transparent from the start. The setup costs were moderate. There was some initial consulting to get it configured, but the licensing is flexible. I pay per user, and that scales pretty well with my team size. Overall, it was pretty good.

I did evaluate a few other options. I looked at Okta, Azure AD, and also Duo. In the end, OneLogin was the most stable for me.

I'd recommend taking the time to map out your needs first, especially regarding integrations and MFA requirements. Make sure to take advantage of the trial so you can test it in your environment. Once you implement it, keep monitoring usage to fine-tune the settings for your team. My overall review rating for OneLogin is 8 out of 10.

Public Cloud

Amazon Web Services (AWS)

I work in a consultancy company where I provide OneLogin services to my local customers. I also sell the product licenses to customers, so we act as an intermediary between One Identity and the customer. Additionally, we provide professional services to configure OneLogin. My clients use OneLogin for identity management, which is all related to identity and access management.

The best features of OneLogin are probably the multi-region capabilities because for multinational companies that have offices around the world in different countries with different languages, OneLogin has native capabilities to help integrate all of that. Most of the competitors do not have that much functionality.

Another feature we use a lot and really like about OneLogin is the automations part because the API is really complete. Everything you can do in OneLogin, you can also do through the API. This helps a lot to automate things and any topic. The API in general and some of the automation configurations that OneLogin has are among the things that we use most.

Regarding areas for improvement in OneLogin, the customization of the login experience needs attention. The integrations for life cycle management, particularly all the provisioning capabilities regarding joiner-mover-leaver processes when you integrate an application with OneLogin, needs improvement. You can integrate the security and authentication parts really well, but regarding provisioning and life cycle management, there is room for improvement.

When I compare OneLogin with other solutions or vendors, I see that OneLogin struggles a bit with big companies that have totally different use cases. For example, if a big company has more context for their users where users have different access contexts and access behaviors, you cannot define these low-level policies or segregate security levels effectively. That is the main reason why I think big companies sometimes go for other access management products in the market instead of OneLogin because you cannot customize a lot and you cannot segregate security policies.

The user identity synchronization fits most use cases, but sometimes regarding life cycle management and identity synchronization, it cannot cover complex use cases. It covers the basics and is okay for most use cases, but if you need an advanced use case or something more complex, you struggle a bit there.

I have been using OneLogin since more or less 2021.

OneLogin is pretty much 100% stable. As it is a SaaS solution, it provides service all the time with no issues.

Regarding scalability, the answer is positive. As it is a SaaS solution, it rates as a 10 because you can scale pretty much everything based on the licenses.

I would rate the technical support as a three. It has improved a bit in the past. I rate it three because it is a mix of things. The knowledge level is an issue because we are specialized on the product and not a customer, so when we have an issue or a doubt, it is complex and support usually cannot help with that. We need to contact our channel engineers, but the support cannot usually help with our kind of topics. The response times are usually not the best as well. However, perhaps that is because we are a partner and not a customer, so for a customer it might be acceptable because they do not handle such complex topics. For us, it is not enough and I would like better support.

Neutral

The deployment is easy and that is also one of the good things about OneLogin because it is easy to deploy and get value quickly. However, it has a drawback because it lacks customization options, so you cannot develop something specific. The good part is that the deployment and integration are usually straightforward and pretty easy.

I am mainly comparing OneLogin to Okta, but also a bit of Ping Identity and Entra ID lately as well, because we also work with those solutions as partners, and those are the main competitors.

We usually try to recommend to our customers which different access typologies they have, and based on that, we recommend implementing policies that check the risk in real time, the context of the user, the behavior, and based on that, we apply MFA policies.

The sign-in and authentication process is simple in the way that it is a very intuitive login experience, but the main problem is that we cannot customize a lot, so we cannot provide a 100% seamless experience. Sometimes we cannot customize to adapt to the customer use case, for example, so I am not 100% happy about that.

The impact of the integration of phishing-resistant device trust on the authentication process is good because it adds a really good security layer. You can evaluate a lot of the context of the user login and you can integrate with security devices such as YubiKeys and hardware tokens. Therefore, you are adding a really good security layer for any authentication in any application.

I use the single sign-on feature and I would say it is easy to integrate because it has a really high catalog of predefined connectors. This is good and really easy to use.

I have used the adaptive login flows with Vigilance AI for some basic use cases. When we had the requirement to adapt the login process or customize the login experience, we need to use this to customize it. The main problem is that you sometimes cannot customize as much as desired, but we use that and it covers most use cases, although I would like it to be a bit more flexible.

The HR identity management plays a good role in streamlining identity handling for employees because it covers the joiner-mover-leaver flows in a company. We usually integrate that use case with the human resource tool, so we automate the process where a new employee joining in the human resource tool allows OneLogin to get that identity and propagate it. The basic use case is covered and is good enough. This is not a governance solution, so you cannot expect more, but it covers the identity synchronization with human resources.

The advice I would give others looking to implement OneLogin is that before trying to integrate and deploy OneLogin or any access management solution, you need to train your internal teams extensively and make them aware of what is coming and what this solution is about. You need all the teams in your company to be aware of why OneLogin is being implemented and what that means because once you start integrating applications and having people access and log into the product, you need to make them agile. I will focus on internal communications and internal trainings more than the technical part.

My overall rating for OneLogin is an 8.

Public Cloud

Other

OneLogin is mainly used for single sign-on, SSO as identity and access management, multi-factor authentication, MFA, and secure user authentication across cloud applications and internal systems.

OneLogin is used to provide employees with a secure sign-in to access multiple business applications through one centralized login. For example, a user can securely access tools like Microsoft 365, VPN services, and internal applications with MFA enabled, which improves security and reduces password-related support requests.

Another major benefit of the main use case with OneLogin is centralized identity management and automated access control, as it makes onboarding and offboarding much easier because user access can be managed from a single platform, improving efficiency and helping maintain security and compliance across the organization.

The best features OneLogin offers are single sign-on (SSO), multi-factor authentication (MFA), adaptive authentication, centralized identity management, and automated user provisioning. The large number of pre-integrated applications and the ease of managing user access policies from a single platform are also valuable.

The ease of managing user access policies and pre-integrated applications helps the team day-to-day by making onboarding and access management much faster. For example, when a new employee joins, access to required applications can be assigned quickly through predefined policies instead of configuring each application manually, which saves time, reduces errors, and improves security consistency across the environment.

OneLogin has positively impacted the organization by improving security, simplifying access management, and reducing password-related support issues. Single sign-on and MFA help provide a better user experience while strengthening authentication security across multiple applications, and it also improves onboarding and offboarding efficiency through centralized identity management and automated provisioning, which reduces manual administrative work and helps maintain better access control and compliance.

OneLogin could be improved with more flexible reporting and analytic options, especially for detailed access monitoring and compliance tracking. The admin interface for advanced configuration could also be simplified further to make management easier for new administrators. Faster support response times for complex technical issues and more customization options for the authentication workflow would also improve the overall experience.

Another improvement would be enhancing integration flexibility with some third-party and legacy applications. More detailed documentation and easier customization for advanced policies and workflows would also help administrators manage complex environments more efficiently. Overall, OneLogin has been reliable and easy to use for identity and access management.

Making some advanced policy and authentication settings easier to configure for new administrators would be beneficial, as troubleshooting integration and login issues with certain legacy applications can take extra time. A more streamlined diagnostic and troubleshooting tool would be helpful.

OneLogin has been in use for around one year plus.

OneLogin is stable.

OneLogin shows strong scalability, efficiently supporting growing numbers of user applications and authentication requests without major performance issues, making it suitable for both mid-sized and enterprise environments.

The experience with customer support has been positive overall. The support team is knowledgeable, responsive, and helpful during deployment, and the quality of support is good and easy to work with the OneLogin team.

Before OneLogin, the main reliance was on native automation tools and manual identity management processes. The switch to OneLogin was made because it provides centralized identity management, stronger MFA capabilities, sign-on integration, and better automation for user provisioning and access control.

Setup was straightforward because it is a cloud-based solution, and the licensing model was flexible, with advanced features increasing costs. However, the security and automation benefits provide good value.

The company has a partnership relationship with OneLogin.

A positive return on investment has been seen with OneLogin. Password-related support tickets were reduced significantly after implementing single sign-on and MFA, which saved time for both users and the IT team.

The experience with pricing and licensing was positive overall.

Before choosing OneLogin, other solutions such as Okta were evaluated.

Clearly understanding identity management, SSO, and MFA requirements before implementing OneLogin is important, as it delivers the most value when integrated properly with applications, directories, and security policies.

OneLogin provides a very smooth and user-friendly sign-in experience, allowing users to access multiple applications with one set of credentials, which reduces password fatigue and improves productivity. The automation process is generally fast and consistent across applications, and features such as adaptive authentication and MFA help maintain security without creating too much friction for end-users.

Smart Factor Authentication has been effective in balancing security and usability because lower-risk users can log in smoothly without unnecessary MFA prompts while higher-risk logins receive stronger authentication checks. This approach improves user experience and reduces authentication fatigue while still maintaining strong security control and better protection against unauthorized access attempts.

The integration of phishing-resistant device trust strengthens authentication processes by ensuring that only trusted and verified devices can access critical applications and systems. It adds an extra layer of security beyond passwords and standard MFA, which helps reduce the risk of phishing attacks and unauthorized access, while also improving the user experience because trusted devices can authenticate more smoothly without extensive verification steps, helping balance security with usability.

The user identity synchronization functionality in OneLogin has been reliable and useful. It helps keep user accounts, group membership, and access permissions synchronized across active directories, cloud applications, and other content systems automatically. This reduces manual administrative work, improves consistency in identity management, and ensures users have the correct access across different platforms in a timely manner.

HR-driven identity management plays an important role in streamlining employee identity handling by automating onboarding, role changes, and offboarding processes. When employee information is updated in the HR system, user accounts, access permissions, and group membership can be created or modified automatically based on predefined policies.

Enforcing MFA at the desktop level has significantly strengthened the security posture by ensuring users are authenticated even when devices are offline or disconnected from the network. It helps protect endpoints from unauthorized access, especially for remote or mobile users, and reduces the risks of compromised credentials being misused.

Adaptive login flows with Vigilance AI have been helpful for identifying risky login behavior such as unusual locations, unfamiliar devices, or abnormal access patterns. Based on the calculated risk level, the systems can automatically require additional authentication steps or restrict access when needed, which improves the ability to respond to potential threats in real time while still keeping the login experience smooth for normal low-risk user activity.

This review gives OneLogin an overall rating of eight out of ten.

Public Cloud

Amazon Web Services (AWS)

In my role, I use OneLogin mainly to connect users with different applications through a single login flow. OneLogin acts like a bridge between our directory and the cloud applications. This is really helpful to manage access without handling multiple credentials.

Our use cases include one portal for all applications, the Smart Factor Authentication, and the sync with directory services. In a real example, a user logs in from an office network and gets access without any issues. If the same user accesses or tries from a different country, additional verification is triggered. This automatically works without manual checks.

In my point of view, the best features are Vigilance AI features, the Smart Factor features, and the application access assignment. These are key features, as well as the automation features that really reduce the manual work in assigning application access.

The automation features like user provisioning and de-provisioning are one of the best reasons to choose OneLogin. Instead of manually creating users in AD, email, or applications, it automatically creates accounts based on HR input, assigns the correct roles and responsibilities. This work is fully automated and done in a second, and it assigns role-based access assignment. This automation feature is really impacting our organization very positively.

OneLogin has really impacted our organization positively. It has reduced the complexity in managing multiple logins. Users have a smoother experience with the solution and it has really improved the security and the user experience.

We have seen significant positive outcomes with OneLogin. Security has increased, users are able to smoothly log in, and their productivity has increased.

The adaptive authentication in OneLogin helps adjust the authentication flow in real-time based on the user risk level and behavior. Instead of applying the same login process for everything, the system evaluates factors like user location and device, login time, and patterns. Based on this, it dynamically decides whether to allow the access or require any MFA.

I have had a great experience with the directory synchronization in OneLogin. There is no challenge with it, and it synchronizes in real-time.

The integration of phishing-resistant device trust has a very positive impact on my authentication processes and really provides visibility in the authentication. This is a powerful feature set of OneLogin.

The adaptive AI in OneLogin really helps us in observing the login patterns and identifying any unusual behavior of the users. It really keeps us secure with risky behavior and visibility.

I do not see any improvement needed for OneLogin as of now. It might be that based on future requirements, future challenges might necessitate any improvement, but as of now it is working well and is a powerful solution with great features.

I think the reporting part can be more improved and more customized for OneLogin.

It has been more than two years since I have been using OneLogin.

OneLogin is stable.

OneLogin is a scalable solution and can really handle the organization growth.

Customer support for OneLogin is very rich in technical aspects and able to provide resolution within timeline.

Since starting, I have been using OneLogin only.

I have seen a positive return on investment after implementing OneLogin. I am getting reduced help desk tickets by 50% and it is reportedly saving the IT team time by 70 to 80%.

I rate OneLogin eight out of 10.

I gave OneLogin eight because it delivers a strong balance between security and ease of use with the feature set like automation. The single sign-on experience is smooth and users can access multiple applications. That is why I have selected a good rating.

I am getting very good feedback from the end users regarding OneLogin. They are very happy and say this experience they are getting with this solution is excellent.

I would recommend OneLogin as a solution to consider. Start with the basic single sign-on features and deployment, and then start with the more advanced features, use cases, and understand your basic requirements, authentication, and plan properly.

On-premises

Amazon Web Services (AWS)

My main use case for OneLogin is to enable single sign-on to all our applications and devices, critical devices, and to manage authentication while enforcing security policies, which allows us to control login behavior and apply strengthened access security.

OneLogin allows users to log in once and access all applications without re-entering credentials or passwords, which simplifies and provides seamless daily work for users, reducing password-related issues.

OneLogin provides a smooth SSO experience and strong security features that help us achieve a compliance-ready environment, and it integrates well with multiple applications, improving user productivity and providing central access control.

The single sign-on and user access management have the biggest impact in our organization because they manage user access centrally across the system, allowing access to be assigned or removed easily, reducing manual efforts and simplifying work.

OneLogin has positively impacted our organization by providing strong security through multi-factor authentication and secure access control, significantly reducing tickets for our IT team, which overall provides more valuable contributions and efficiency.

Almost 40 to 50% of IT team tickets have been reduced since we started using this solution, with issues like managing user access control of applications being simplified and handled smoothly.

SmartFactor Authentication with SSO works very smoothly, providing real-time analysis of user behavior, so if malicious activity is detected, it blocks access for the particular user immediately, which helps us keep the environment and assets secure from any breaches.

User identity synchronization across the directory functionality is very impressive, and we have seen a very good response and synchronization process while integrating our Active Directory, syncing user data to OneLogin very easily with no issues.

The integration of phishing-resistant device trust provides strong security to our assets and applications through real-time monitoring, access control, and behavior analysis of users, which is a good solution overall.

We are receiving good feedback from end-users for the seamless authentication, as they are very happy with the solution; they do not need to provide passwords multiple times for different applications, only needing to log in once to access all their provided applications, resulting in an excellent user experience.

We are using Vigilance AI, which helps us detect risky behavior or attempts to log in with unauthorized access to our applications or assets, making it a very good solution.

OneLogin is a great solution providing strong features with a great security process, so there is minimal need for improvement at this time.

One thing I would add is that custom integration can be simplified as it currently requires technical in-depth knowledge.

I have been working in my current field for more than 10 years.

OneLogin is stable.

OneLogin's scalability is excellent, matching our organizational growth over time.

I have had a great experience with the customer support team; they are very kind and help our IT team whenever required.

We have been using OneLogin since day one.

My experience with the pricing, setup cost, and licensing was straightforward, with a good response from the sales team who ensured we received excellent pricing, setup cost, and licensing costs for the solution, making us happy with this.

We have not evaluated other options before choosing OneLogin.

We have seen a good return on investment with OneLogin, as it has significantly reduced IT team tickets related to password issues and improved efficiency through automation by around 30 to 40%, saving our time and our IT team's time, making it a good ROI overall.

My experience with the pricing, setup cost, and licensing was straightforward, with a good response from the sales team who ensured we received excellent pricing, setup cost, and licensing costs for the solution, making us happy with this.

We have not evaluated other options before choosing OneLogin.

OneLogin is a great solution to consider in any organization's environment, helping manage access control and security compliance, and I recommend starting with key applications and enabling multi-factor authentication early for better security, ensuring a smooth adaptation of the solution. I would rate this solution a 9 out of 10.

Public Cloud

Amazon Web Services (AWS)

I do use OneLogin to get into the Ivanti application. Our usual use case for OneLogin is to use it as an SSO to access the Ivanti VPN, which we use to access particular sites and applications in our work platform.

What I appreciate most about OneLogin is definitely SSO, which avoids us having to enter the password, saving time. Since I work in the technical support department, it saves our time in what would otherwise be a time-consuming process where we would avoid entering credentials repeatedly whenever we connect to the required VPN and the tools.

OneLogin provides a good end-user experience for signing in and authenticating to needed applications, which involves time-consuming efforts when users or employees are completely occupied with different tasks. Since we work in IT, we might have multiple passwords to get into different tools. However, when it comes to OneLogin, we avoid this complexity; we just have to remember one tab, and when we note down our user account, it directly asks for OneLogin with multifactor authentication, where we just have to authenticate it to get in successfully.

OneLogin is going well currently. As for optimizations in OneLogin, it would be useful to have an option on OneLogin site to remember the user ID. Currently, we do not have that option, and every time we log in, we have to enter our OneLogin username and then get it authenticated. If a 'Remember Me' option were available, we could directly proceed with the authentication instead of having to enter our username every time. This is the one point we have identified.

I have been using OneLogin for the past two years.

OneLogin is stable. I have been using it for the past two to three years and have not faced any issues with it. It is very stable. For some tools, there are notifications or expiry alerts for the concerned tool or MFA factors, but here we do not have anything as such.

We had outages, but in our team, we have a different department for escalation, so we escalated to the concerned OneLogin support team, and they fixed that issue.

I find OneLogin to be mid-level scalable because I use only the first level of access, so we have not checked the in-depth functionality. I am happy with the level of scalability that OneLogin provides.

My thoughts on the technical support and customer service of OneLogin are that it plays a major role for us to assist users. We use it for the connection of VPN, which allows us to get into remote sessions with users, and it is essential for us to take remote sessions with users and assist them in resolving their issues in a timely manner.

I do not often communicate with the technical support specialists of OneLogin. We just have a mail ID, so if we face any issue, we can send them an email for assistance. Till now, I have not faced any issues with OneLogin; it is running smoothly.

From the beginning, we started using OneLogin. First, we were using Microsoft credentials to get into the tools, and later it upgraded to OneLogin.

I found the initial setup of OneLogin to be very easy because it is just about downloading the application and setting it up through scanning the URL on OneLogin portal. The process was very simple, and there was no complex issue I faced during the setup process.

We have a KB article provided by my team, which we use to set it up or configure the applications, reset, etc. I have found the documentation sufficient; all necessary details were very simple and clearly mentioned by our SMEs, so we have not faced any issues with the given articles.

I have evaluated other solutions, such as Delivery, which works similar to OneLogin. Delivery DID account exactly works as OneLogin, but it inserts different account profile accounts.

We use OneLogin Okta as an MFA for OneLogin process to adjust authentication flows in real time, depending on the risk score associated with the login attempt.

We do not use the SmartFactor Authentication of OneLogin, as even Okta is an authentication process; it is a multifactor authenticator.

I use Okta and OneLogin simultaneously.

I was not part of the decision-making process.

I am aware of setting up OneLogin for Symantec and Okta setup on the mobile applications, including the basic configuration.

I am not aware of the pricing and licensing of OneLogin.

I have not worked on the user identity synchronization across directories functionality of OneLogin yet.

The integration of phishing-resistant device trust impacts our authentication processes positively because we have a team that verifies everything, and they guide us to configure it. All the configuration and security information is checked by our security team, and based on their updates, we proceed.

Integrating the single sign-on feature with third-party authentication providers is very easy; I have not faced any difficulties. When we try to connect with third parties, I have assisted users in setting up OneLogin accounts for access to particular third-party tools, and there are not many difficulties. We just have to understand the process.

When you understand the product usage, you will not face any issues with it.

I have not used the adaptive login flows with Vigilance AI.

I do not have any insights regarding the role of HR-driven identity management in streamlining employee identity handling in my organization.

In MFA, at the desktop support or customer support level, MFA plays a major role that includes security, compliance, and also a two-way authentication process.

MFA is important for us because it ensures our data is safe, avoiding security issues related to our accounts. If any unauthorized attempt occurs, we receive notifications on our mobile devices, ensuring that it is not possible for others to access our account without our consent. This is a significant advantage of OneLogin or MFA.

In OneLogin, customer identity and access management for external clients is not something I go in-depth with; I assist users only in configuring OneLogin and setting up MFAs. We have two MFAs in OneLogin: Symantec and Okta. My role is to help users set up either of the MFAs to ensure they can access their client VPNs based on requirements successfully without issues.

I rate this review a 9 out of 10.