ForgeRock features compare similarly to Okta, both are identity management solutions that offer easy implementation. ForgeRock may be better suited specifically for enterprise, while Okta’s modular product offerings allow any size company to begin with Okta, and scale to enterprise capabilities. For example, a mid-size company may choose Okta, and stick with Okta as it scales to become a global enterprise. Here’s a quick guide.
What is ForgeRock?
ForgeRock offers an identity management solution that is delivered as-a-service with an ease-of-implementation that ForgeRock describes as “push-button deployments to any cloud.” ForgeRock is built on open source, but its premium solutions require an enterprise license.
What companies use ForgeRock?
ForgeRock customers include: BBC, Comcast, Toyota, BMW, AGFA, Allianz, AutoZone, Geico, banks, government, and enterprises around the world. For example, per Wikipedia: “[the BBC] uses ForgeRock to authenticate and log not just 45 million users but also the devices they use to access its iPlayer on-demand video streaming service.”
What is ForgeRock Open DJ and ForgeRock IDM?
ForgeRock Open DJ and IDM are an open source directory service (Open DJ) and open source identity management platform (IDM). While these are based on open source code with is publicly available, the products are only accessible per a commercial license purchased via ForgeRock products. Per Wikipedia:
“ForgeRock provides digital identity management through its primary product, the ForgeRock Identity Platform.The ForgeRock Identity Platform includes Access Management (based on the OpenAM open source project), Identity Management (based on the OpenIDM open source project), Directory Services (based on the OpenDJ open source project), and Identity Gateway (based on the OpenIG open source project). ForgeRock Access Management provides access management, ForgeRock Directory Services is an LDAP directory service, ForgeRock Identity Management is used for identity management, and ForgeRock Identity Gateway provides an identity gateway for web traffic and application programming interfaces (APIs). ForgeRock also offers a Profile and Privacy Management Dashboard for compliance with the EU General Data Protection Regulation (GDPR) and provides support for the User-Managed Access (UMA) 2.0 standard.
“Despite being based on software owned by Sun Microsystems (now Oracle Corporation) and published under an open source license, the enterprise version of the ForgeRock Identity Platform can only be accessed by purchasing a commercial license. The source code of the community version is publicly available under the terms of the Common Development and Distribution License.”
ForgeRock features cover the gamut from SSO for consumers, to legacy integrations for healthcare groups:
- Passwordless Authentication
- Strong Authentication
- Contextual Authentication
- Single Sign-On
- Lifecycle Management
- Data Residency
- API Security
- Consent Management
- Legacy Integration
ForgeRock vs Okta
ForgeRock and Okta are fundamentally similar products, both serving enterprises around the world. Okta offers a modular pricing plan that makes Okta easier for small- to mid-size to adopt and implement, then scale as the business grows.
ForgeRock is designed for enterprise from onset. Okta will grow with any size business.
Similar feature sets, though Okta may be simpler for medium-sized companies to implement. Both are enterprise-grade.
ForgeRock markets themselves as “push-button implementation”. However, in our experience, both ForgeRock and Okta offer a similar implementation process that is easy for us to get up and running for clients, with low-risk.
Both offer similar security levels and management.
Management & Updates
Both ForgeRock and Okta are simple to update.
ForgeRock offers better integration with legacy systems and cloud-based systems, whereas Okta is optimized for modern cloud-based systems.
ForgeRock Pricing vs Okta
ForgeRock costs about $20,000 to implement, with ongoing costs of about $8000/month for a global enterprise. Okta costs about $1200-6000/month, depending on the size of your business.
For example, we implemented Okta for a Bay Area biotech startup. They pay Okta’s per user fees ($6/user), plus an annual MFA cost ($8000), plus API Access Management ($8000). In total it’s about $16,500/year, or $1375/month. On a larger scale, we implemented Okta for an enterprise IT department, and their Okta costs are about $6,000/month.
Choose Okta if your company is:
- Mostly interested in online login (i.e., publishers, gaming)
- Single Sign On and/or Multi-Factor Authentication
- Scaling quickly to 200+ employees
- 100% cloud-based
- Interested in biometric/fingerprint authentication
- Pricing: $1200-6000/month
Choose Idaptive if your company is:
- Product based with a growing Salesforce
- 50-100+ employees
- On-prem and cloud data centers
- Interested in a “zero-trust” security policy
- Pricing: $1000-5000/month
Choose AlienVault (AT&T) if your company is:
- Global enterprise
- On-prem and cloud data centers
- Value extensive security metrics and insights reporting
- Pricing: $3000-15,000/month, plus $30,000 implementation
Do I need a ForgeRock or Okta consultant near me?
The most important factor is experience and effective workflow, whether in-person, on-site, virtual, or off-site. That said, we think working with an identity and access management (IAM) consultant near you is an advantage. This will allow your IAM consultant to better communicate with existing IT teams, and better understand your current information architecture. A non-local IAM consultant becomes a good option if they follow security best practices, and have an established virtual workflow. Why? Location is less significant when virtual workforce tools are effectively adopted by consultant and client, whether a small business or global enterprise. Plus, on-site specialists can become costly. Bottomline, look for a IAM consultant who offers an excellent communication process, clear workflow, and custom security solution for your business.
Have questions about finding a
ForgeRock or Okta consultant?
Call (925) 918-6618 the consultation is free.
Sennovate delivers custom identity and access management solutions to businesses around the world. With global partners and a library of 1000+ integrations, we implement world-class cybersecurity solutions that save your company time and money. We offer a seamless experience with integration across all cloud applications, and a single price for product, implementation, and support. Have questions? The consultation is always free. Email [email protected] or call us at: (925) 918-6618