WSO2 Identity Server Reviews

This tool is a way for data centers to secure their connectivity. My primary use case for this product is to synchronize with the LDAP server, and allow single sign-on, role-based access.

We are able to use this tool to better secure next generation data centers, which use software defined networks. An example of this is the telecom industry. We will also be using it to develop e-commerce websites.

For us, the single sign-on access and the role-based permissions are the major requirement. These are the features that I find most valuable. 

I have two suggestions for improving the product. First, improvements have to been made in the high availability architecture. This has to do with the master-slave replication, and how the load balancing is handled between the identity servers. The way in which it is handled has to be improved.

My second suggestion has to do with LDAP synchronization.  Ideally, the agents should be simplified beyond what they are now.

I would rate the solution's stability eight or nine out of ten. It is not crashing or stopping anywhere. I'm not giving a score of ten because of the points for improvement that I mentioned.

The scalability is there. Currently we are able to support more than one hundred thousand users, and we are able to manage them using LDAP.

We have multiple projects where this solution is used. One of these projects has thirty internal users, and the external users are their customers. It is a huge customer base.

Another one of our projects has approximately one hundred users, which will be more than ten thousand customers.

Generally, there are two kinds of projects. The first I call "light", where the customers are the end users. This makes for a very large number of users. The second type of project is an operational team, where there are approximately one hundred users, or real-time operation team members. Their customers will total more than ten thousand.

We do have plans to increase our number of clients.

With our subscription, their technical support is really very good. There are a lot of documents available, but they are quite difficult to understand and deploy based on this alone.

Beyond evaluating a couple of other products, we did not use a different solution.

I found the initial setup to be easy. It was not complex.

The initial deployment will take two days, maximum, and two team members are sufficient to handle it. After the initial deployment, we had to do further customization on our website. This took us approximately two to three weeks.

We currently have a five member team for maintaining the solution. 

We deployed the solution ourselves.

We do recognize a return on our investment. However, because this is only one of the tools in our full solution, I cannot tell you exactly how much this component contributes.

Price matters to us, and the primary reason that we adopted this solution is that it is open source. This means that the actual product is free of cost; however, we do have a support licence that we can pay for by yearly subscription.

We do very well with this. We have to take their support, but that is a minimal charge if I'm comparing it to other identity managers.

Overall, the licensing is ok. If you are paying for support then you will be supported very well.

We evaluated a couple of other products before settling on this one. One of the solutions that we tried was CyberArk for privileged access management.

This is a really good, open source product.

I would suggest purchasing a subscription for technical support. It is a lightweight program, and the documentation is sufficient. However, there are specific features that you may want to use, and for this you may need full, in-depth support when it comes time to deploy.

Once you purchase the subscription, it is like a perpetual license. You can do everything yourself.

I would rate this product eight out of ten. Other than the small improvements that I have suggested, it is a very good solution.

My primary use case for this product is to evaluate identity solutions for our customers.  

Because I did not go on to adopt this solution, I can only say that it might be a good solution. The documentation and ecosystem were of high quality.

The feature that I found most valuable was the ecosystem. It is very comprehensive, and allowed me to find that components that I wanted to use. Other examples include the identity server and the API.

I found that the product was too large, and therefore difficult for people such as myself who only wanted to make use of a single function. I was interested in the identity server, alone.

I would like to see a simpler and faster installation and configuration process for making use of individual components.

Judging from the completeness of the ecosystem and the quality of the documentation, I feel that this might be a good product. I just did not have enough time and patience to fully evaluate it.

I found the initial setup to be very complex, which is the main problem that I encountered. I had expected to configure the system in one or two days, but it took longer than I expected.

For example, I was looking for a particular setup, and used LDAP as instructed. However, I could not find where to make use of the API. 

I did the implementation and testing of this solution myself. The testing and evaluation phase was approximately two weeks. 

This, in fact, was the product that I evaluated. I eventually moved on to the solution that I use now.

I tried the product but I found it very cumbersome, so I no longer use it. Time and simplicity were my primary concerns, so I moved on to a new solution.

I would rate this solution a seven out of ten.

I use this solution to generate keystores and certifications and link these with project development in our company.

The keystore feature has been most valuable for us. 

This solution requires extensive knowledge to be used effectively as certain areas of its use are not user friendly. 

This is a stable solution. 

We have not explored this solution's scalability yet. 

The initial setup is not very complex. It took a couple of hours to complete and can be done by one person. I created users from a CSS file and it was very easy to import.

I would recommend this solution to others. I would rate it a ten out of ten.