# Best User Provisioning and Governance Tools - Page 2 *By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)* User provisioning and governance tools gives a single point of maintenance to manage user access to IT applications. Companies need identity governance and administration (IGA) programs to maintain organized records of user information such as personal information, account histories, or application credentials. These confidential records can be used by employees and administrators to retain information and regulations. IT managers and administrators use the information in these systems to automate tasks such as account creation, editing, or deleting, which can help facilitate employee lifecycle changes like onboarding, promotions, or termination. Human resource workers may utilize the databases as well to aggregate information about employees and monitor access requests. There is significant overlap between user provisioning software and cloud identity and access management. Many products function on a hybrid on­-premise and cloud level, but user provisioning and governance software solutions may not be able to provide remote access. These products will also often integrate with or provide SSO/federation or [password management](https://www.g2.com/categories/password-manager) capabilities. To qualify as user provisioning and governance solution, a product must: - Possess infrastructure to store and access identity information - Provide administrator tools to create access requirements - Automate processes related to identity administration - Provide security or authentication features to protect sensitive information ## How Many User Provisioning and Governance Tools Products Does G2 Track? **Total Products under this Category:** 189 ### Category Stats (May 2026) - **Average Rating**: 4.48/5 (↓0.01 vs Apr 2026) - **New Reviews This Quarter**: 195 - **Buyer Segments**: Mid-Market 51% │ Enterprise 34% │ Small-Business 15% - **Top Trending Product**: Hire2Retire (+0.049) *Last updated: May 18, 2026* ## How Does G2 Rank User Provisioning and Governance Tools Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 14,200+ Authentic Reviews - 189+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. ## Which User Provisioning and Governance Tools Is Best for Your Use Case? - **Leader:** [Okta](https://www.g2.com/products/okta/reviews) - **Highest Performer:** [tenfold](https://www.g2.com/products/tenfold-tenfold/reviews) - **Easiest to Use:** [Okta](https://www.g2.com/products/okta/reviews) - **Top Trending:** [Rippling IT](https://www.g2.com/products/rippling-it/reviews) - **Best Free Software:** [JumpCloud](https://www.g2.com/products/jumpcloud/reviews) --- **Sponsored** ### Hire2Retire RoboMQ’s Hire2Retire is a comprehensive workforce lifecycle management solution that manages the entire JML lifecycle events, such as hiring, department transfers, terminations, and long-term leaves. It is an Identity and Access Management platform that synchronizes HR with IT infrastructure, including Active Directory(AD), Okta, and Google Workspace. Hire2Retire enables organisations to effectively manage employee access and privileges throughout their work cycle. 
 Hire2Retire integrates with 27 HR and ATS systems, identity providers (IdP) like Active Directory, Entra ID, Okta, and Google Workspace, along with 10+ leading Service Management platforms like ServiceNow, Salesforce, SolarWinds, and FreshService. Hire2Retire has 100’s of connectors to auto-provision access to third-party applications based on profile-driven employee privileges. Hire2Retire benefits mid to large fast-growing enterprises that face challenges in manual workforce lifecycle management. Traditional onboarding and offboarding processes can be tedious, slow, and error-prone, leading to security and compliance risks. It can also lead to poor employee experience and wasted costs and resources. Hire2Retire, by enabling onboarding and offboarding automation, ensures businesses spend less time in workforce lifecycle management and more time in strategic initiatives. Customers prefer the Hire2Retire workforce lifecycle management and identity provisioning solution from RoboMQ for: - Significant reduction in cost through elimination of tedious and repetitive tasks of costly sysadmin resources - Better new hire experience by providing a superior “First Day at Work” experience. It ensures that employee email, AD profile, and role-based access to systems and tools are in place when the new hire walks in - Manages and controls access and privileges to systems and data based on employee roles - Prevents security and reputation risks by ensuring timely removal of access on termination and change of roles [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=paid_promo&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=255&secure%5Bmedium%5D=sponsored&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=168476&secure%5Bresource_id%5D=255&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fuser-provisioning-and-governance-tools%2Ff%2Fmobile-app&secure%5Btoken%5D=89bea6b2c82d9856a57bbbaef5abc2cc585700769bed1a172c7bd5043dc768ed&secure%5Burl%5D=https%3A%2F%2Fwww.robomq.io%2Fproducts%2Fhire2retire%2F&secure%5Burl_type%5D=paid_promos) --- ## What Are the Top-Rated User Provisioning and Governance Tools Products in 2026? ### 1. [CrossIdeas](https://www.g2.com/products/crossideas/reviews) CrossIdeas provides Identity & Access Governance Solutions to harmoniously manage people, applications and entitlements. **Average Rating:** 4.3/5.0 **Total Reviews:** 11 **How Do G2 Users Rate CrossIdeas?** - **Has the product been a good partner in doing business?:** 8.3/10 (Category avg: 9.0/10) - **Mobile App:** 8.0/10 (Category avg: 7.5/10) - **APIs:** 8.5/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.5/10 (Category avg: 8.6/10) **Who Is the Company Behind CrossIdeas?** - **Seller:** [IBM](https://www.g2.com/sellers/ibm) - **Year Founded:** 1911 - **HQ Location:** Armonk, New York, United States - **Twitter:** @IBMSecurity (74,796 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (324,553 employees on LinkedIn®) - **Ownership:** SWX:IBM **Who Uses This Product?** - **Company Size:** 45% Small-Business, 36% Enterprise ### 2. [Josys](https://www.g2.com/products/josys/reviews) Josys is a modern AI-native identity security and governance platform. Enterprise AI adoption has turned identity into the fastest-growing attack surface and the hardest to govern. Machine identities now outnumber humans 82-to-1, 88% of organizations have reported, confirmed, or suspected AI agent security incidents, and 92% of CISOs say they lack visibility into AI identities. Josys was purpose-built to close that gap. Josys autonomously discovers, governs, and secures every identity — human, machine, and AI agent — across every application in the enterprise. The AI-platform unifies three pillars: Identity Visibility & Intelligence, which discovers every identity and every app across SaaS, on-prem, and shadow AI environments; Identity Governance & Administration (IGA), which ensure the right users have the right access with automated access reviews, lifecycle management, and access requests; and Identity Security Posture Management (ISPM), which runs posture policies continuously, auto-remediates violations, and generates audit-ready evidence for SOX, SOC 2, and ISO 27001 as a structural byproduct. Josys turns identity governance from a quarterly audit into a continuous discipline. Policy-driven governance evaluates every identity in real time with explainable risk factors, surfaces shadow AI and shadow IT the day it appears, and closes the remediation loop with alerts and human-in-the-loop approval for high-impact changes. Security and IT teams replace an average of 11 disconnected identity tools with one platform that answers the question every CISO needs to answer in real time: are we secure right now? The result is one source of truth for identity across human, machine, and AI agent populations, plus a continuous audit posture that scales without adding headcount. Trusted by over 1,000 organizations and MSPs worldwide, Josys turns identity from the fastest-growing attack surface into an autonomously governed advantage. Every Identity. Every App. Governed Autonomously. Learn more at josys.com. **Average Rating:** 4.4/5.0 **Total Reviews:** 115 **How Do G2 Users Rate Josys?** - **Has the product been a good partner in doing business?:** 9.0/10 (Category avg: 9.0/10) - **Mobile App:** 3.5/10 (Category avg: 7.5/10) - **APIs:** 7.7/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.1/10 (Category avg: 8.6/10) **Who Is the Company Behind Josys?** - **Seller:** [Josys Inc.](https://www.g2.com/sellers/josys-inc) - **Company Website:** https://www.josys.com - **Year Founded:** 2021 - **HQ Location:** Tokyo, JP - **LinkedIn® Page:** https://www.linkedin.com/company/josys-inc (192 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Manager - **Top Industries:** Computer Software, Information Services - **Company Size:** 70% Mid-Market, 26% Small-Business #### What Are Josys's Pros and Cons? **Pros:** - Ease of Use (33 reviews) - Easy Management (23 reviews) - Centralization (19 reviews) - Device Management (19 reviews) - Management (19 reviews) **Cons:** - Missing Features (23 reviews) - Insufficient Information (14 reviews) - Integration Issues (13 reviews) - Limited Features (11 reviews) - Limited Integrations (10 reviews) ### 3. [Scalekit](https://www.g2.com/products/scalekit/reviews) Scalekit is the auth stack for B2B AI apps. Secure human users with SSO, SCIM, passkeys, magic links, social login, and OTP. Secure AI systems in both directions: MCP Auth controls who can access your MCP servers, and Agent Auth lets your agents connect to third-party tools through OAuth 2.1 with scoped, consented tokens, backed by 50+ prebuilt connectors and a built-in Token Vault. Everything runs on a multi-tenant foundation. Users, agents, and MCP servers share the same tenancy boundary, so access controls and identity configuration stay consistent across your entire product. Use Scalekit as your complete auth stack, or add it alongside Auth0, Firebase, or whatever you already have. No user migration required. Why Scalekit: 1. Purpose-built for B2B AI: Multi-tenancy with shared users across orgs, identity deduplication, domain-based routing, and per-organization SSO and SCIM configuration. Human users, MCP servers, and agents (on behalf of users or orgs) all operate within the same tenancy boundary, so access controls, token policies, and identity configuration stay consistent across every principal in your product. 2. Full-stack or modular: Use Scalekit end-to-end with users, sessions, roles, and hosted UI, or drop in just SSO, SCIM, MCP Auth, or Agent Auth alongside an existing system. No user migration required. 3. Customizable and extensible: Branded hosted widgets, custom domains, custom email templates, auth flow interceptors, webhooks, and flexible APIs. 4. Batteries-included developer tooling: Prebuilt SDKs, quickstarts, multi-environment support, auth logs, IdP simulators, and migration guides. Founded in 2024, Scalekit is backed by Matrix Partners and Together Fund. **Average Rating:** 4.8/5.0 **Total Reviews:** 22 **How Do G2 Users Rate Scalekit?** - **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.0/10) - **APIs:** 9.8/10 (Category avg: 8.5/10) **Who Is the Company Behind Scalekit?** - **Seller:** [Scalekit](https://www.g2.com/sellers/scalekit) - **Year Founded:** 2023 - **HQ Location:** Delaware, US - **LinkedIn® Page:** https://www.linkedin.com/company/scalekit-inc (29 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 77% Small-Business, 18% Mid-Market #### What Are Scalekit's Pros and Cons? **Pros:** - Customer Support (9 reviews) - SSO (Single Sign-On) (8 reviews) - Ease of Use (7 reviews) - Authentication (6 reviews) - SSO Features (6 reviews) **Cons:** - Customization Difficulties (2 reviews) - Lack of Customization (2 reviews) - Authentication Issues (1 reviews) - Insufficient Training (1 reviews) - Integration Difficulty (1 reviews) ### 4. [Kinde](https://www.g2.com/products/kinde/reviews) Developer tools and infrastructure to help every size of business succeed. The only fully integrated developer platform with to help you build, secure, and monetize production-scale products. Authentication - Billing - Full Customization and Branding - Access Control - Multi-tenancy - Feature Flags Authentication Authentication happens at some of the most important, and highly impactful, places in your customers' journey. Our powerful builder allows you to make sure that your pages are on brand and as beautiful as the rest of your website and product experience. Level up your security with multi-factor authentication (MFA). Give your users access to advanced authentication options, protecting them from reused or breached passwords. Take control of user authorization and access with enterprise SSO and custom SAML so that you can support your biggest customers as quickly as possible. See more on our docs https://docs.kinde.com/authenticate/about-auth/about-authentication/ Billing Billing without the building it yourself. Start monetizing your ideas with game changing billing tools. Kinde billing gives you the ability to create plans that users can subscribe to, so you can get paid for your services and collect revenue. Whether you’re building for individuals, teams, or entire enterprises, Kinde adapts to your business model. Support B2C, B2B, and B2B2C out of the box – with powerful organization management, advanced org structures, and flexible billing logic that scales with your customers. See more at https://www.youtube.com/playlist?list=PLwLelKIQLwdx0B-3lV5XP-lUF\_mt8GNPA and our docs at https://docs.kinde.com/billing/about-billing/about-billing/ Customization to the max Handle strict enterprise branding requirements and implement a fully customisable UI by bringing your own HTML and CSS for the auth pages. Custom domains keep your browsing experience on point and can be applied individually to organizations. Send your notification and invitation emails with your branded sender and your own mailing service. Use Kinde Workflows to provide custom logic to the authentication flows, such as integrating a security intelligence provider to sign in or syncing information to a CRM during sign up. See more at https://www.youtube.com/playlist?list=PLwLelKIQLwdw0sGK3215MBl8f9l2-blQC and our docs on https://docs.kinde.com/design/customize-with-code/customize-with-css-html/ Access Control and Multi-tenancy Complex businesses need software that reflects their structure and restricts data access to only the people who should see it. That’s why we’ve included outrageously powerful controls to help you manage your businesses, teams, and users in the most frictionless way possible. Controlling who can access which individual pieces of data and interface is critical to protecting your business and your customers. Hierarchical role-based access control is the best way to manage this. Allowing strict control and flexible assignment – aligning everything from your business view of the world right down to the code you ship to customers. Feature flags Deliver new experiences and increase the speed that your team deploys, learns and releases with feature-based continuous deployment. Shipping to production introduces a degree of risk. Continuous deployment helps to reduce risk and accelerate learning by empowering the team to deploy when ready and separating releasing from shipping. Feature flags are the heart of what makes this work. **Average Rating:** 4.7/5.0 **Total Reviews:** 42 **How Do G2 Users Rate Kinde?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.0/10) - **APIs:** 10.0/10 (Category avg: 8.5/10) **Who Is the Company Behind Kinde?** - **Seller:** [Kinde](https://www.g2.com/sellers/kinde) - **Year Founded:** 2021 - **HQ Location:** Sydney, AU - **Twitter:** @HeyKinde (7,536 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/heykinde/ (27 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software - **Company Size:** 95% Small-Business, 2% Mid-Market #### What Are Kinde's Pros and Cons? **Pros:** - Ease of Use (5 reviews) - Customer Support (4 reviews) - Authentication (3 reviews) - Documentation (3 reviews) - Easy Integrations (3 reviews) **Cons:** - Missing Features (3 reviews) - Insufficient Information (2 reviews) - Poor Documentation (2 reviews) - API Limitations (1 reviews) - Authentication Issues (1 reviews) ### 5. [OneLogin](https://www.g2.com/products/onelogin/reviews) OneLogin simplifies identity management with secure, one-click access, for employees, customers and partners, through all device types, to all enterprise cloud and on-premises applications. OneLogin enables IT identity policy enforcement and instantly disables app access for employees who leave or change roles in real-time by removing them from Active Directory. Take control over application access, quickly on- and off-board team members, and provide end-users with easy access to all their applications on every device. Extend your on-premises security model to the cloud in minutes. Eliminate the pain and expense of extensive identity policy management. OneLogin reduces identity infrastructure costs and complex integration projects for each new app and efficiently extends identity policies to the cloud. OneLogin eliminates the need for lengthy integration and provisioning projects, manual de-provisioning, protracted on- and off-boarding processes, username and password resets, and Shadow IT. **Average Rating:** 4.4/5.0 **Total Reviews:** 272 **How Do G2 Users Rate OneLogin?** - **Has the product been a good partner in doing business?:** 8.7/10 (Category avg: 9.0/10) - **Mobile App:** 8.3/10 (Category avg: 7.5/10) - **APIs:** 8.4/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.9/10 (Category avg: 8.6/10) **Who Is the Company Behind OneLogin?** - **Seller:** [One Identity](https://www.g2.com/sellers/one-identity) - **HQ Location:** Aliso Viejo, CA - **Twitter:** @OneIdentity (7,868 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/one-identity (667 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Account Manager - **Top Industries:** Computer Software, Education Management - **Company Size:** 49% Mid-Market, 40% Enterprise #### What Are OneLogin's Pros and Cons? **Pros:** - Easy Access (4 reviews) - Security (4 reviews) - Single Sign-On (4 reviews) - SSO (4 reviews) - SSO (Single Sign-On) (4 reviews) **Cons:** - Limited Features (2 reviews) - Limited Functionality (2 reviews) - Login Issues (2 reviews) - Missing Features (2 reviews) - Product Issues (2 reviews) ### 6. [Cakewalk](https://www.g2.com/products/cakewalk-technology-gmbh-cakewalk/reviews) Enterprise-grade Identity Governance with consumer-grade usability: Cakewalk is the IGA platform for fast-moving companies, powered by Agent Cake 🤖🍰 1) Consolidate all access, apps and AI agents. 2) Fully automate IGA workflows. 3) Get guidance based on insights. Enabling your teams while reducing your attack surface. **Average Rating:** 4.9/5.0 **Total Reviews:** 28 **How Do G2 Users Rate Cakewalk?** - **Has the product been a good partner in doing business?:** 9.9/10 (Category avg: 9.0/10) - **Mobile App:** 0.0/10 (Category avg: 7.5/10) - **APIs:** 6.7/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.3/10 (Category avg: 8.6/10) **Who Is the Company Behind Cakewalk?** - **Seller:** [Cakewalk Security](https://www.g2.com/sellers/cakewalk-security) - **Year Founded:** 2022 - **HQ Location:** Berlin, DE - **LinkedIn® Page:** https://www.linkedin.com/company/getcakewalk (22 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Financial Services - **Company Size:** 50% Small-Business, 50% Mid-Market #### What Are Cakewalk's Pros and Cons? **Pros:** - Ease of Use (14 reviews) - Customer Support (9 reviews) - Security (8 reviews) - Access Control (7 reviews) - Easy Management (6 reviews) **Cons:** - Missing Features (3 reviews) - Implementation Difficulty (1 reviews) - Integration Issues (1 reviews) ### 7. [FusionAuth](https://www.g2.com/products/fusionauth/reviews) FusionAuth is a customer identity and access management (CIAM) platform specifically engineered to address the challenges of security, scalability, and developer efficiency. This solution is designed for organizations seeking to enhance their identity management processes while ensuring compliance with stringent regulatory standards such as GDPR and SOC2. By offering a flexible deployment model, FusionAuth allows users to maintain control over their data residency, whether in the cloud, on-premises, or in hybrid environments. Targeted towards developers and organizations that require robust identity solutions, FusionAuth is particularly beneficial for businesses experiencing rapid growth or those that need to streamline their authentication processes. Its API-first architecture enables organizations to embed identity management directly into their existing workflows, reducing the operational burden associated with traditional identity providers. This capability is especially valuable for companies that wish to eliminate the complexities and costs associated with maintaining homegrown authentication systems. Key features of FusionAuth include its flexible deployment options, which empower organizations to choose how and where they host their identity management solution. This flexibility is complemented by an API-driven architecture, where every feature is accessible through APIs, allowing for seamless integration and management of identity as part of the overall infrastructure. This approach not only enhances developer velocity but also ensures that organizations can adapt their identity solutions to meet evolving business needs without being locked into a single vendor's cloud. Additionally, FusionAuth offers predictable pricing models that help organizations avoid unexpected costs commonly associated with monthly active user (MAU) surges. This transparency in pricing is a significant advantage for businesses looking to scale without incurring excessive expenses. The platform has demonstrated its effectiveness across various industries, with notable success stories highlighting its ability to handle massive traffic surges, reduce operational bottlenecks, and lower engineering burdens. For instance, Bilt leveraged FusionAuth to manage high traffic volumes while ensuring compliance with data residency requirements. Similarly, Vatix transitioned from a cumbersome homegrown system to FusionAuth, enabling their Customer Success team to onboard clients quickly and efficiently. UrbanSitter's implementation of FusionAuth significantly reduced their authentication development time, allowing them to focus on core product innovation. These examples illustrate how FusionAuth not only enhances security and compliance but also drives operational efficiency and cost savings for organizations across diverse sectors. **Average Rating:** 4.5/5.0 **Total Reviews:** 137 **How Do G2 Users Rate FusionAuth?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.0/10) - **Mobile App:** 5.7/10 (Category avg: 7.5/10) - **APIs:** 9.2/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.1/10 (Category avg: 8.6/10) **Who Is the Company Behind FusionAuth?** - **Seller:** [FusionAuth](https://www.g2.com/sellers/fusionauth) - **Company Website:** https://fusionauth.io - **Year Founded:** 2009 - **HQ Location:** Broomfield, US - **Twitter:** @FusionAuth (2,040 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/11861048/ (61 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CEO, CTO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 46% Small-Business, 45% Mid-Market #### What Are FusionAuth's Pros and Cons? **Pros:** - Ease of Use (45 reviews) - Features (36 reviews) - Integrations (35 reviews) - Customer Support (34 reviews) - Easy Integrations (32 reviews) **Cons:** - Complexity (25 reviews) - Difficult Learning (18 reviews) - Complex Setup (16 reviews) - Limited Customization (14 reviews) - Learning Curve (13 reviews) ### 8. [PingFederate](https://www.g2.com/products/ping-identity-pingfederate/reviews) PingFederate is an enterprise federation server that enables secure user authentication and single sign-on (SSO) across various applications and services. It acts as a centralized authentication authority, facilitating seamless access for customers, employees, and partners without the need for multiple sign-ons or passwords. By supporting a wide range of identity protocols, PingFederate ensures interoperability and enhances both security and user experience. Key Features and Functionality: - Single Sign-On (SSO): Provides users with one-click access to multiple applications, reducing password fatigue and improving productivity. - Multi-Protocol Support: Supports industry-standard protocols such as SAML, WS-Federation, WS-Trust, OAuth, and SCIM, ensuring compatibility with various systems and applications. - Multi-Factor Authentication (MFA): Integrates with PingID to offer enhanced security through additional authentication factors. - Automated Provisioning: Streamlines user management by automating the provisioning and de-provisioning of user accounts. - Customizable Integration Kits: Offers SDKs and integration kits for custom applications, enabling tailored authentication solutions. - Extensive Audit and Logging: Provides comprehensive auditing and logging capabilities to meet compliance and service-level requirements. Primary Value and Solutions Provided: PingFederate addresses the challenges of managing secure and efficient access to applications in complex environments. By eliminating the need for multiple passwords and sign-ons, it enhances user experience and productivity. Its support for various identity protocols ensures seamless integration with existing systems, while features like MFA and automated provisioning bolster security and simplify user management. Overall, PingFederate empowers organizations to balance robust security measures with a frictionless user experience. **Average Rating:** 4.6/5.0 **Total Reviews:** 27 **How Do G2 Users Rate PingFederate?** - **Has the product been a good partner in doing business?:** 8.7/10 (Category avg: 9.0/10) - **Mobile App:** 9.4/10 (Category avg: 7.5/10) - **APIs:** 9.4/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 7.6/10 (Category avg: 8.6/10) **Who Is the Company Behind PingFederate?** - **Seller:** [Ping Identity](https://www.g2.com/sellers/ping-identity) - **Year Founded:** 2002 - **HQ Location:** Denver, CO - **Twitter:** @pingidentity (42,085 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/21870/ (2,319 employees on LinkedIn®) - **Phone:** 1.303.468.2900 **Who Uses This Product?** - **Top Industries:** Information Technology and Services - **Company Size:** 79% Enterprise, 12% Mid-Market #### What Are PingFederate's Pros and Cons? **Pros:** - Customer Support (1 reviews) - Ease of Implementation (1 reviews) - Implementation Ease (1 reviews) - Onboarding (1 reviews) **Cons:** - Missing Features (1 reviews) - Security Concerns (1 reviews) ### 9. [Zluri](https://www.g2.com/products/zluri/reviews) Zluri is a next-gen Identity Governance and Administration (IGA) platform that enables IT and security teams to discover identities and applications, streamline access management, and automate access reviews, all from a single, intuitive interface. Zluri helps organizations automate critical access controls mandated by SOX, HIPAA, SOC 2, and more, ensuring the right people have the right access to the right applications at the right time, with minimal time and manual effort. **Average Rating:** 4.6/5.0 **Total Reviews:** 174 **How Do G2 Users Rate Zluri?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.0/10) - **Mobile App:** 9.2/10 (Category avg: 7.5/10) - **APIs:** 8.3/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.9/10 (Category avg: 8.6/10) **Who Is the Company Behind Zluri?** - **Seller:** [Zluri](https://www.g2.com/sellers/zluri) - **Company Website:** https://www.zluri.com/ - **Year Founded:** 2020 - **HQ Location:** San Franscisco, California - **Twitter:** @zluri_hq (225 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/zluri/ (270 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** IT Manager - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 66% Mid-Market, 23% Enterprise #### What Are Zluri's Pros and Cons? **Pros:** - Ease of Use (29 reviews) - Automation (23 reviews) - Features (22 reviews) - Onboarding (19 reviews) - Time-saving (19 reviews) **Cons:** - Limited Integrations (14 reviews) - Integration Issues (13 reviews) - Limited Integration (10 reviews) - Missing Features (10 reviews) - Insufficient Information (6 reviews) ### 10. [Swif.ai](https://www.g2.com/products/swif-ai/reviews) Swif.ai is a next-generation Mobile Device Management (MDM) solution designed to assist organizations in managing and securing their mobile devices while ensuring compliance with various regulatory standards. This software is particularly beneficial for businesses looking to streamline their MDM processes and achieve compliance with frameworks such as SOC2, ISO, NIST, and GDPR in a fraction of the time typically required. With Swif.ai, companies can transition from zero to compliance readiness in just one hour, making it an efficient choice for organizations of all sizes. Targeted primarily at businesses with employee counts ranging from 5 to 50,000, Swif.ai caters to a diverse audience, including small startups, mid-sized companies, and large enterprises. The software addresses the unique challenges that organizations face in managing mobile devices, such as data security, device tracking, and regulatory compliance. By providing a comprehensive MDM solution, Swif.ai enables companies to focus on their core operations while ensuring that their mobile device management is handled effectively and securely. One of the standout features of Swif.ai is its inclusion of free Shadow IT management for all customers. This capability allows organizations to identify and manage unauthorized applications and devices that may pose security risks. By integrating Shadow IT management into the MDM framework, Swif.ai enhances overall security posture and helps organizations maintain compliance with regulatory requirements. This feature is particularly valuable in today’s environment, where the use of personal devices for work purposes is increasingly common. In addition to its robust compliance capabilities, Swif.ai offers a user-friendly interface that simplifies the management of mobile devices. The software provides tools for device enrollment, policy enforcement, and remote management, allowing IT teams to efficiently oversee their mobile fleets. The ability to quickly implement security policies and monitor device compliance ensures that organizations can respond promptly to potential threats and maintain a secure operating environment. Overall, Swif.ai distinguishes itself in the MDM software market by combining rapid compliance capabilities with comprehensive mobile device management features. Its focus on serving a wide range of organizations, from small businesses to large enterprises, along with its unique offerings like free Shadow IT management, positions it as a valuable solution for companies looking to enhance their mobile device security and compliance efforts. **Average Rating:** 5.0/5.0 **Total Reviews:** 74 **How Do G2 Users Rate Swif.ai?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Mobile App:** 9.3/10 (Category avg: 7.5/10) - **APIs:** 8.8/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.4/10 (Category avg: 8.6/10) **Who Is the Company Behind Swif.ai?** - **Seller:** [Swif](https://www.g2.com/sellers/swif) - **Company Website:** https://www.swif.ai - **Year Founded:** 2022 - **HQ Location:** Sunnyvale, US - **LinkedIn® Page:** https://www.linkedin.com/company/swifai (43 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Hospital & Health Care - **Company Size:** 78% Small-Business, 23% Mid-Market #### What Are Swif.ai's Pros and Cons? **Pros:** - Device Management (22 reviews) - Security (21 reviews) - Automation (18 reviews) - Ease of Use (14 reviews) - Time-Saving (13 reviews) **Cons:** - Poor Reporting (9 reviews) - Insufficient Information (7 reviews) - Learning Curve (6 reviews) - Missing Features (6 reviews) - Poor UI (6 reviews) ### 11. [Teleport](https://www.g2.com/products/teleport/reviews) Teleport is the Infrastructure Identity Company, modernizing identity, access, and policy for infrastructure, improving engineering velocity and infrastructure resiliency against human factors and compromise. The Teleport Infrastructure Identity Platform implements trusted computing at scale, with unified cryptographic identities for humans, machines and workloads, endpoints, infrastructure assets, and AI agents. Our identity-everywhere approach vertically integrates access management, zero trust networking, identity governance, and identity security into a single platform, eliminating overhead and operational silos. Headquartered in Oakland, CA, Teleport operates globally, with industry-leading customers such as Nasdaq, Moody’s, Adobe, and Elastic. **Average Rating:** 4.4/5.0 **Total Reviews:** 109 **How Do G2 Users Rate Teleport?** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.0/10) - **Mobile App:** 6.3/10 (Category avg: 7.5/10) - **APIs:** 7.6/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.1/10 (Category avg: 8.6/10) **Who Is the Company Behind Teleport?** - **Seller:** [Teleport](https://www.g2.com/sellers/teleport) - **Year Founded:** 2015 - **HQ Location:** Oakland, California - **Twitter:** @goteleport (3,840 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/go-teleport/ (264 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 43% Mid-Market, 38% Small-Business #### What Are Teleport's Pros and Cons? **Pros:** - Ease of Use (47 reviews) - Security (37 reviews) - Access Control (29 reviews) - Reliability (22 reviews) - Time-saving (20 reviews) **Cons:** - Poor Documentation (17 reviews) - Documentation (15 reviews) - Missing Features (13 reviews) - Difficult Setup (12 reviews) - Complex Administration (10 reviews) ### 12. [C1](https://www.g2.com/products/c1-c1/reviews) C1 helps organizations secure their workforce through modern access controls and governance. Security and IT teams use C1 to automate user access reviews, identify and remove unused access, and save time with self-service access requests. Forward-thinking companies like DigitalOcean, Ramp, Qualtrics, and Zscaler us to achieve least privilege and ensure compliance. Our founders are proven technology entrepreneurs from Okta, Lookout, and Rackspace. Founded in 2020, the company is backed by leading investors including Accel, Fuel Capital, Fathom Capital, and Active Capital, as well as several renowned security leaders, including Peter McKay & Guy Podjarny of Snyk; Cristina Cacioppo, CEO of Vanta; and Jack Naglieri, CEO of Panther Labs. Visit c1.ai to learn more. **Average Rating:** 4.8/5.0 **Total Reviews:** 13 **How Do G2 Users Rate C1?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) **Who Is the Company Behind C1?** - **Seller:** [C1](https://www.g2.com/sellers/c1-fe9b2dc3-0439-4b83-8d33-51e1aeaa0093) - **Year Founded:** 2020 - **HQ Location:** San Francisco, CA - **LinkedIn® Page:** https://www.linkedin.com/company/c1-ai/ (141 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 85% Mid-Market, 15% Enterprise #### What Are C1's Pros and Cons? **Pros:** - Ease of Use (8 reviews) - Customer Support (7 reviews) - Reliability (7 reviews) - Automation (6 reviews) - Easy Integrations (6 reviews) **Cons:** - Integration Issues (2 reviews) - Missing Features (2 reviews) ### 13. [External User Manager for Microsoft Teams](https://www.g2.com/products/external-user-manager-for-microsoft-teams/reviews) IT administrators can keep control of external users in Microsoft 365 with External User Manager. External User Manager is used for inviting guests, onboarding & offboarding, automated access reviews and guest lifecycles in Microsoft Teams and Microsoft 365 Groups. Key Features: • Reports on external users • Request & approval workflow for guests • Lifecycles for external guests • Automated access reviews • Onboarding & offboarding process • Metadata information on guests • Apply policies to already existing guests • Guest invite for external guest access • Automated guest user governance • Security & compliance Get started right away: If you're ready to get control of M365 guest users and automate your governance processes, simply add External User Manager in the Microsoft Teams app store for a free trial! About Solutions2Share Solutions2Share offers governance applications for Microsoft 365 boasting over 40,000 installations and more than 1.5 million users worldwide. Their clients save time with full governance automation and are able to provide their users with a structured environment in Microsoft 365 and Microsoft Teams. **Average Rating:** 5.0/5.0 **Total Reviews:** 10 **How Do G2 Users Rate External User Manager for Microsoft Teams?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Mobile App:** 9.0/10 (Category avg: 7.5/10) - **APIs:** 9.5/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.5/10 (Category avg: 8.6/10) **Who Is the Company Behind External User Manager for Microsoft Teams?** - **Seller:** [Solutions2Share GmbH](https://www.g2.com/sellers/solutions2share-gmbh) - **Year Founded:** 2011 - **HQ Location:** Fürth (Bavaria), Germany - **Twitter:** @Solutions2Share (399 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2799419/ (50 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 70% Small-Business, 30% Mid-Market ### 14. [Zygon](https://www.g2.com/products/zygon/reviews) Modern IT and Security teams use our platform to orchestrate modern identity governance at scale. Access reviews, account (de)provisioning and overall identity lifecycle operations are automated for all their applications. Modern organizations see employees using more applications than ever. Fact. Their growing number and diversity pose challenges for IT and Security teams responsible for access reviews, compliance and provisioning operations. While critical application access is typically well secured, extending these operations to every single one (including cloud applications) within the organization is often considered unfeasible. This situation frequently results in access-blocking policies, which in turn lead to the dangerous expansion of Shadow IT. This expansion increases the attack surface and its associated security risks. Zygon provides IT and security teams with the platform needed to centralize identities and manage their lifecycle for every application. Our platform combats Shadow IT by detecting every application, along with their users and authentication levels. It provides a wealth of insights related to identity management. Creating relevant views using dynamic filters is the starting point to trigger automated workflows. This core feature is used for access reviews, account (de)provisioning, security alerts and remediation, access requests… As a result, every aspect of the identity lifecycle is covered. Collaborative by essence, Zygon sends notifications, emails or direct messages through Slack (and others) to delegate actions to application owners or end-users. The governance of a wider scope of applications is collaborative, streamlined, and reduces the attack surface. Our platform tackles the day-to-day challenges faced by IT and security teams, whether they involve compliance, cloud or on-premise applications, or organizational issues. Zygon leads the way into a new era of identity governance. **Average Rating:** 4.9/5.0 **Total Reviews:** 46 **How Do G2 Users Rate Zygon?** - **Has the product been a good partner in doing business?:** 9.9/10 (Category avg: 9.0/10) - **Mobile App:** 9.2/10 (Category avg: 7.5/10) - **APIs:** 9.2/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.2/10 (Category avg: 8.6/10) **Who Is the Company Behind Zygon?** - **Seller:** [Zygon ](https://www.g2.com/sellers/zygon) - **Year Founded:** 2023 - **HQ Location:** Beaverton, OR - **Twitter:** @zygoncyber (28 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/zygontech (6 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 57% Small-Business, 26% Mid-Market #### What Are Zygon's Pros and Cons? **Pros:** - Cloud Services (2 reviews) - Ease of Use (2 reviews) - Integrations (2 reviews) - Tracking (2 reviews) - User Management (2 reviews) **Cons:** - Limited Automation (1 reviews) - Missing Features (1 reviews) - Resource Limitations (1 reviews) ### 15. [Avatier Identity Anywhere](https://www.g2.com/products/avatier-identity-anywhere/reviews) Modernize your digital workforce with Avatier Identity Anywhere integrated Identity Access Governance featuring push notification workflow across all your favorite platforms, and a modern cross-platform SSO solution to connect to all your SAML, oAuth, OpenID, and webform apps. Discover unrivaled self-service IT experience enabling collaboration across the entire enterprise without compromising privacy and security. Avatier native mobile experience for iOS and Android includes real-time collaboration support with mobile push notification and improved security with mobile biometric authentication. Introducing Avatier Identity Anywhere which integrates with the leading MFA solutions in the industry to provide a true-passwordless secure Identity Governance and Administration (IGA) experience. Leverage Avatier OTP SMS/Email or phoneless MFA, Duo Security, Google Authenticator, Okta Verify, Ping Identity, Radius, RSA SecureID, Symantec VIP, and many other FIDO2 WebAuthn compliant solutions. Discover all you can do with Avatier for Microsoft Teams & Outlook, ServiceNow (coming soon), Slack, Chrome Extension, iOS, Andriod, chatbot, and of course web and REST API: \* Avatier Self-Service Group Management with integrated Access Governance. Microsoft/Azure group membership is paramount as it controls your role in the company, access to files, and even cloud application access via leading SSO solutions like Avatier. Avatier allows self-service group membership requests with push notification for workflow approval and access certification campaigns. Now you can request creation, deletion, renaming, and even group ownership conveniently from any platform. \* Avatier Access Governance. Verifying workforce fine-grain user access has never been this easy. Avatier ensures access governance is continuously being met by empowering managers to approve, deny, allow an exception, return to campaign owner, or re-assign certifications to a co-worker. \* Avatier User Lifecycle Management. Turn your IT department into an IT Store allowing your workforce to request fine-grain access, roles, and even assets through a familiar shopping cart experience. Optionally, hook Avatier up to your favorite HR system and automate all of your onboarding and offboarding needs. Never panic when its time to disable or delete user access. Avatier allows you can request disabling user access now and schedule deleting the user later. \* Avatier Universal Workflow Approval. Push notification instantly alerts you to urgent matters that require your attention. Using Avatier don't ever miss an important workforce request for roles, access, assets, or even generic change control. Approve/Deny ServiceNow, Workday, SAP, and other leading apps using Avatier's Universal Workflow Platform(TM) across all of your favorite platforms like Microsoft Teams, Outlook, ServiceNow, Slack, and Chrome Extension. \* Avatier Self-Service Password Management with Strong Password Policy Enforcement. Your workforce needs self-service password reset and synchronization without requiring an expensive call the help desk. Your service desk needs a secure friendly assisted password reset form anywhere. Avatier gives your workforce the seamless ability to perform these actions wherever they are by securely authenticating with a variety of flexible authentication MFA options. Avatier's Password Policy Manager will also ensure that your password meets the enterprise password policy and maintain strong passwords across all systems. \* Avatier Single Sign-on (SSO). Modern SSO solutions need to support a diverse workforce with a choice of how and where they would like to securely gain access to their cloud apps. Avatier SSO enables access when your workforce needs it the most with Just-in-Time (JIT) cloud application user provisioning/deprovisioning. It has never been easier to onboard your workforce across all of your cloud applications. Achieve more together with Avatier. To experience Avatier Identity Anywhere in action, we are offering an exclusive FREE 14 day trial to qualified organizations. Schedule yours today: https://calendly.com/avatier-cloudtrial/avatier-kickoff-meeting **Average Rating:** 4.6/5.0 **Total Reviews:** 30 **How Do G2 Users Rate Avatier Identity Anywhere?** - **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.0/10) - **APIs:** 9.3/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.3/10 (Category avg: 8.6/10) **Who Is the Company Behind Avatier Identity Anywhere?** - **Seller:** [Avatier](https://www.g2.com/sellers/avatier) - **Year Founded:** 1995 - **HQ Location:** Pleasanton, CA - **Twitter:** @Avatier (1,630 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/355652/ (33 employees on LinkedIn®) - **Phone:** 925-217-5170 **Who Uses This Product?** - **Company Size:** 90% Enterprise, 10% Mid-Market ### 16. [Cerby](https://www.g2.com/products/cerby/reviews) Cerby provides identity teams with the only comprehensive access management platform for non-federated applications. Harnessing the power of identity providers, Cerby makes passwordless authentication an immediate reality for any application by extending single sign-on and lifecycle management capabilities. With Cerby, identity teams can extend access, minimize risk, and lower costs. **Average Rating:** 4.6/5.0 **Total Reviews:** 25 **How Do G2 Users Rate Cerby?** - **Has the product been a good partner in doing business?:** 8.5/10 (Category avg: 9.0/10) - **Mobile App:** 8.9/10 (Category avg: 7.5/10) - **APIs:** 8.6/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.0/10 (Category avg: 8.6/10) **Who Is the Company Behind Cerby?** - **Seller:** [Cerby](https://www.g2.com/sellers/cerby) - **Year Founded:** 2020 - **HQ Location:** Alameda, US - **Twitter:** @CerbyHQ (494 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cerby/ (151 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Marketing and Advertising, Retail - **Company Size:** 44% Enterprise, 28% Small-Business ### 17. [HelloID](https://www.g2.com/products/helloid/reviews) HelloID is a complete, cloud-based IDaaS solution that streamlines user provisioning, self-service, and single sign-on processes within your organization or educational institution. Automate the entire user lifecycle process with HelloID by connecting your HR/SIS data to all your downstream systems. Account details and usage rights are automatically kept up-to-date, which reduces human error and increases security. HelloID puts the power of IDM into your hands to meet current and future needs. **Average Rating:** 4.5/5.0 **Total Reviews:** 31 **How Do G2 Users Rate HelloID?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.0/10) - **APIs:** 8.5/10 (Category avg: 8.5/10) **Who Is the Company Behind HelloID?** - **Seller:** [Tools4ever](https://www.g2.com/sellers/tools4ever) - **Year Founded:** 1999 - **HQ Location:** Lynbrook, New York - **Twitter:** @Tools4ever (329 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/124368/ (63 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Primary/Secondary Education, Education Management - **Company Size:** 59% Mid-Market, 38% Enterprise ### 18. [Ory](https://www.g2.com/products/ory/reviews) Ory offers a suite of cloud-native, open-source identity and access management solutions, including: Ory Kratos for configurable user management with features like MFA and social login; Ory Hydra for OAuth 2.0 and OpenID Connect authorization; Ory Polis for organization management and enterprise SSO; Ory Keto for a granular authorization system based on Google Zanzibar; and Ory Oathkeeper, an identity and access proxy that enforces a Zero Trust security model. Deploy Your Way \* Ory Network - SaaS, instant on global identity system \* Ory Enterprise License - On-prem self-hosted option (same code as our SaaS offering) with enterprise support \* Open Source - Try Ory for your specific use cases (community supported) **Average Rating:** 4.5/5.0 **Total Reviews:** 47 **How Do G2 Users Rate Ory?** - **Has the product been a good partner in doing business?:** 9.0/10 (Category avg: 9.0/10) - **Mobile App:** 3.8/10 (Category avg: 7.5/10) - **APIs:** 8.7/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 7.6/10 (Category avg: 8.6/10) **Who Is the Company Behind Ory?** - **Seller:** [Ory](https://www.g2.com/sellers/ory) - **Company Website:** https://www.ory.com/ - **Year Founded:** 2019 - **HQ Location:** Scottsdale, US - **LinkedIn® Page:** https://www.linkedin.com/company/ory-corp (44 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 53% Small-Business, 40% Mid-Market #### What Are Ory's Pros and Cons? **Pros:** - Ease of Use (19 reviews) - Customizability (14 reviews) - Solutions (11 reviews) - Customer Support (10 reviews) - Reliability (10 reviews) **Cons:** - Poor Documentation (10 reviews) - Outdated Documentation (9 reviews) - Lack of Information (8 reviews) - Missing Features (6 reviews) - Complex Usability (4 reviews) ### 19. [Opal Security](https://www.g2.com/products/opalsecurity/reviews) Opal is an authorization reasoning platform that empowers security and engineering teams to manage access and reduce identity risk at scale. We provide real-time visibility, prioritized insights, and frictionless just-in-time controls across every identity: from employees to AI agents. At our core is an intelligent data layer that continuously analyzes access behavior to surface and contextualize the most critical risks. Unlike legacy IGA or workflow tools, Opal gives our customers read-write authority to enforce least privilege and remediate exposures directly. As environments grow more dynamic and autonomous, Opal becomes a self-improving, policy-enforcing system – ensuring control, resilience, and the ability to move faster without increasing risk. The world's best companies, such as Databricks, Figma, Blend, and Cloudflare, trust Opal to govern and adapt sensitive access. Opal is backed by Greylock and some of the top security experts around the world, including Silicon Valley CISO Investments (SVCI). **Average Rating:** 4.6/5.0 **Total Reviews:** 30 **How Do G2 Users Rate Opal Security?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Mobile App:** 1.1/10 (Category avg: 7.5/10) - **APIs:** 8.1/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.2/10 (Category avg: 8.6/10) **Who Is the Company Behind Opal Security?** - **Seller:** [Opal Security](https://www.g2.com/sellers/opal-security) - **Year Founded:** 2020 - **HQ Location:** San Francisco, US - **Twitter:** @opal_sec (163 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/opalsecurity/ (64 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 57% Mid-Market, 23% Enterprise ### 20. [WSO2 Identity Platform](https://www.g2.com/products/wso2-identity-platform/reviews) What is WSO2 Identity Platform? WSO2 Identity Platform is a unified, API-first suite designed to orchestrate identity for humans, applications, and autonomous AI agents. It provides a modular fabric for modern identity, allowing organizations to deploy the full platform or select specific capabilities to enhance their existing IAM stack. Managed identities within the suite now exceed one billion for more than 250 customers across global industries including financial services, healthcare, and government. Comprehensive capabilities WSO2 Identity Platform serves as a strategic foundation for modern identity by offering: - Developer-first design with extreme extensibility: Use an API-first approach to customize every stage of the user journey. Avoid proprietary black boxes with a platform built for deep technical integration. - Open source freedom without hidden vendor lock-in: Retain full control of your identity data and logic. Benefit from a transparent, community-vetted codebase that ensures long-term agility and security. - Deploy anywhere across hybrid and cloud environments: Run WSO2 Access Manager on-premises, in private clouds, or as a containerized solution. Maintain consistency across your infrastructure with ease. - Scale to millions of users with proven reliability: Effortlessly manage complex B2B and B2C requirements. From progressive profiling to delegated administration, handle massive growth without performance loss. - Future-proof security for humans and AI agents: Secure the next generation of digital interactions. Use AI-powered flows and branding to protect both human users and autonomous AI agents seamlessly. - Meet global standards with built-in compliance: Simplify adherence to GDPR, FAPI, and OIDC. WSO2 Access Manager provides the granular consent and security protocols required for highly regulated industries. Value proposition: How do you position yourself against your competitors? - WSO2 Identity Platform is designed for deep technical integration and absolute deployment freedom. - Total deployment freedom: Maintain control with options for self-managed software for privacy or managed SaaS for speed. - Agentic enterprise strategy: WSO2 is a pioneer in treating AI agents as first-class citizens, providing the identity layer required to secure and govern autonomous AI interactions. - Extreme extensibility: Service extensions and an API-first approach allow developers to modify flow behaviors to meet unique requirements without being locked into a "proprietary black box". - Lower TCO & high ROI: Proven to provide a 332% ROI over three years, with pricing that allows for scaling to over 100 million users without exponential cost increases. - Open source transparency: A community-vetted codebase ensures long-term agility, security, and the elimination of hidden vendor lock-in. **Average Rating:** 4.5/5.0 **Total Reviews:** 105 **How Do G2 Users Rate WSO2 Identity Platform?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.0/10) - **Mobile App:** 8.1/10 (Category avg: 7.5/10) - **APIs:** 9.2/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.5/10 (Category avg: 8.6/10) **Who Is the Company Behind WSO2 Identity Platform?** - **Seller:** [WSO2](https://www.g2.com/sellers/wso2) - **Company Website:** https://wso2.com - **Year Founded:** 2005 - **HQ Location:** Mountain View, CA - **Twitter:** @wso2 (12,744 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/66028/ (1,218 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 46% Mid-Market, 38% Enterprise #### What Are WSO2 Identity Platform's Pros and Cons? **Pros:** - Authentication (31 reviews) - Security (26 reviews) - Ease of Use (24 reviews) - Identity Management (24 reviews) - Single Sign-On (22 reviews) **Cons:** - Difficult Learning (14 reviews) - Complexity (11 reviews) - Complex Setup (11 reviews) - Learning Curve (10 reviews) - Poor Documentation (10 reviews) ### 21. [Indent](https://www.g2.com/products/indent/reviews) Indent provides on-demand access that’s faster and easier, without frustrating your team. Good security is necessary, but it doesn't need to be slow or painful — faster access unlocks more revenue. **Average Rating:** 4.9/5.0 **Total Reviews:** 10 **How Do G2 Users Rate Indent?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Mobile App:** 8.8/10 (Category avg: 7.5/10) - **APIs:** 9.1/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.6/10 (Category avg: 8.6/10) **Who Is the Company Behind Indent?** - **Seller:** [Indent](https://www.g2.com/sellers/indent) - **Year Founded:** 2018 - **HQ Location:** San Francisco, California - **Twitter:** @indent (554 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/indentinc (7 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 60% Small-Business, 40% Mid-Market ### 22. [AccessOwl](https://www.g2.com/products/accessowl/reviews) Orchestrate your employees' access to SaaS tools. Automate access requests, approvals and provisioning workflows. Automate on- & offboarding workflows Covering the entire employee lifecycle: AccessOwl ensures that new employees have access to all relevant tools on their starting date. Offboarding an user is as simple as a click of a button and no access is ever forgotten. Aligning HR, IT and line manager — eliminating the need for back-and-forth communication. Simplify approval workflows Your team can easily request new accesses on-demand via self-service — without leaving Slack. Give IT teams and tool owners full control over costs and access rights in an easy and seamless way. Make your auditors happy Get a crystal clear audit trail of who has been given access to which resource, when and why — available at the push of a button. Ensure that everyone has only the most necessary permissions ("Least privilege" principle). Control access requests in compliance with internal or external policies (such as GDPR, SOC2, ISO27001). **Average Rating:** 4.7/5.0 **Total Reviews:** 13 **How Do G2 Users Rate AccessOwl?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Mobile App:** 0.0/10 (Category avg: 7.5/10) - **APIs:** 6.7/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 7.9/10 (Category avg: 8.6/10) **Who Is the Company Behind AccessOwl?** - **Seller:** [AccessOwl](https://www.g2.com/sellers/accessowl) - **Year Founded:** 2022 - **HQ Location:** San Francisco, CA - **Twitter:** @AccessOwl (53 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/accessowl/ (12 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 69% Mid-Market, 31% Small-Business #### What Are AccessOwl's Pros and Cons? **Pros:** - Ease of Use (4 reviews) - Application Integration (3 reviews) - Easy Integrations (3 reviews) - Integrations (3 reviews) - Simple (3 reviews) **Cons:** - Integration Issues (2 reviews) - Missing Features (2 reviews) - Group Management (1 reviews) - Inaccuracy (1 reviews) - Inefficient Processes (1 reviews) ### 23. [Avigilon Unity](https://www.g2.com/products/avigilon-unity/reviews) This is the next generation of on-premise security. Give your teams full oversight and control through a centralized, browser-based video security and access control management platform, complete with powerful AI analytics. Avigilon Unity Video (formerly Avigilon Control Center) seamlessly merges intelligent, on-premise video management software and advanced cloud-managed capabilities with enterprise-class Avigilon Unity Access (formerly Access Control Manager) to elevate your situational awareness across any number of sites. Delivering a unified, end-to-end security management experience, Avigilon Unity helps you solve your most important security challenges, connecting you to the Motorola Solutions Safety and Security Ecosystem. **Average Rating:** 4.4/5.0 **Total Reviews:** 20 **How Do G2 Users Rate Avigilon Unity?** - **Has the product been a good partner in doing business?:** 8.3/10 (Category avg: 9.0/10) - **Mobile App:** 6.1/10 (Category avg: 7.5/10) - **APIs:** 7.9/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 9.3/10 (Category avg: 8.6/10) **Who Is the Company Behind Avigilon Unity?** - **Seller:** [Avigilon](https://www.g2.com/sellers/avigilon-088fb6fb-0bc3-424d-859b-a241c8f0612e) - **Year Founded:** 2004 - **HQ Location:** Vancouver, BC - **Twitter:** @Avigilon (8,124 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/avigilon/ (393 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Associate - **Top Industries:** Retail - **Company Size:** 50% Mid-Market, 25% Enterprise ### 24. [OpenText NetIQ Identity Manager](https://www.g2.com/products/opentext-netiq-identity-manager/reviews) Identity Manager powers the entire identity management lifecycle, managing identities and their associated attributes to minimize privileges. This enables your organization to reduce the costs of manual account management and demonstrate compliance while reducing the risk of unauthorized access. Identity Manager integrates with Identity Governance to provide a comprehensive Identity Governance and Administration solution. **Average Rating:** 4.3/5.0 **Total Reviews:** 13 **How Do G2 Users Rate OpenText NetIQ Identity Manager?** - **Has the product been a good partner in doing business?:** 7.9/10 (Category avg: 9.0/10) - **Mobile App:** 8.9/10 (Category avg: 7.5/10) - **APIs:** 8.0/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 8.7/10 (Category avg: 8.6/10) **Who Is the Company Behind OpenText NetIQ Identity Manager?** - **Seller:** [OpenText](https://www.g2.com/sellers/opentext) - **Year Founded:** 1991 - **HQ Location:** Waterloo, ON - **Twitter:** @OpenText (21,564 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2709/ (23,339 employees on LinkedIn®) - **Ownership:** NASDAQ:OTEX **Who Uses This Product?** - **Company Size:** 47% Mid-Market, 40% Enterprise ### 25. [RSA Identity Governance and Lifecycle](https://www.g2.com/products/rsa-identity-governance-and-lifecycle/reviews) Using a business-driven approach, RSA Aveksa’s solution integrates access governance, provisioning, authentication, and single sign-on (SSO) in one platform. Whether on-premise or in the cloud, the platform reduces risk and complexity while improving security, visibility, and compliance. **Average Rating:** 4.0/5.0 **Total Reviews:** 11 **How Do G2 Users Rate RSA Identity Governance and Lifecycle?** - **Has the product been a good partner in doing business?:** 7.2/10 (Category avg: 9.0/10) - **Mobile App:** 7.0/10 (Category avg: 7.5/10) - **APIs:** 6.9/10 (Category avg: 8.5/10) - **Bi-directional Identity Synchronization:** 6.7/10 (Category avg: 8.6/10) **Who Is the Company Behind RSA Identity Governance and Lifecycle?** - **Seller:** [RSA Security](https://www.g2.com/sellers/rsa-security-520d10cb-0052-4033-b6ef-85c594df8c8b) - **HQ Location:** Bedford, MA - **Twitter:** @RSAsecurity (110,427 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/rsasecurity/ (2,735 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 77% Enterprise, 15% Mid-Market ## What Is User Provisioning and Governance Tools? [Identity Management Software](https://www.g2.com/categories/identity-management) ## What Software Categories Are Similar to User Provisioning and Governance Tools? - [Single Sign-On (SSO) Solutions](https://www.g2.com/categories/single-sign-on-sso) - [Identity and Access Management (IAM) Software](https://www.g2.com/categories/identity-and-access-management-iam) - [Multi-Factor Authentication (MFA) Software](https://www.g2.com/categories/multi-factor-authentication-mfa) --- ## How Do You Choose the Right User Provisioning and Governance Tools? ### What You Should Know About User Provisioning and Governance Tools ### What are user provisioning and governance tools and software? User provisioning and governance tools help companies automate the process of creating, permissioning, managing, and deactivating user accounts on corporate systems and applications across the enterprise. Typical use cases include user lifecycle stages such as setting up accounts for newly hired employees during onboarding and providing them access to the tools they need, changing user groups and permissions when employees are promoted or move within departments, and removing user accounts after an employee leaves the company. User provisioning and governance tools software automate user account creation by connecting information in user identity stores such as HR systems and/or user directories like Active Directory or G Suite to enterprise applications to systems that employees use such as email systems, databases, CRM systems, communication systems, employee productivity software, file storage systems, ERP applications, subscriptions, custom company applications, and more. There is considerable overlap between user provisioning and governance tools and [identity and access management (IAM) software](https://www.g2.com/categories/identity-and-access-management-iam) functionality, as both offer user provisioning and govern user access. User provisioning and governance solutions focus more specifically on user lifecycle and group management. At the same time, IAM software includes additional benefits, such as centralized identity functions for both on-premises and cloud accounts and providing user authentication before granting user access to corporate systems. ### **Key benefits of user provisioning and governance software solutions** - Automate user account lifecycle from provisioning during onboarding through de-provisioning after leaving the company - Grant access to applications and systems based on user type through role or group management functions - Reduce the time helpdesk team members need to spend manually creating users - Improve end-user experience by offering self-service tools and integrations with [single sign-on solutions](https://www.g2.com/categories/single-sign-on-sso) and [password management tools](https://www.g2.com/categories/password-managers) ### Why use user provisioning and governance systems? Using automated tools to manage user lifecycles, companies can eliminate manual user provisioning and de-provisioning tasks, which can ultimately reduce the burden on IT help desk teams and free up staff time for more high-level work. Deploying user provisioning and governance solutions reduces human error when creating accounts while reducing the threat of “permission creep" when accounts are not properly changed after promotions, demotions, or terminations. Using this software enables companies to manage large numbers of users at once by applying role or group policies across users in a standard fashion. **Setting up new hires —** Companies use user provisioning and governance tools to ensure new hires receive access to the accounts they need as quickly as possible during onboarding. If IT staff manually created user accounts, the process could take days, weeks, or even months and be prone to human error. **Removing access for terminated employees—** It is important to remove access for terminated employees as quickly as possible to prevent security risks, either from the terminated employees themselves or from hackers accessing abandoned user accounts. Using user provisioning and governance tools, companies can automatically de-provision user accounts when an employee is removed from an HR system or other identity store. **Enforcing role or group-based policies —** When managing hundreds (if not thousands) of user accounts, taking actions, such as providing access to new applications based on the users’ role or group types, can save a lot of time and get these users up and running quickly. For example, suppose all sales representatives should have access to a particular sales-related application. In that case, those user accounts can automatically be provisioned with access if they belong to the sales group. On the other hand, employees in the legal department may not need access to that sales application, so they would not be provisioned with an account for that specific sales software. **Security — ** Insider threats can occur when user accounts are given too much access for their job type, and employees use the information they shouldn’t have access to. For example, an intern-employee likely shouldn’t be given the same access to the company’s accounts, like an accounting system, as the chief operating officer has. Using role- and group-based policies, IT administrators can easily remove permissions no longer needed by a type or group of employees and prevent permission creep. **Reducing costs—** Labor ** ** is typically one of the highest expenses companies have. Using user provisioning and governance tools frees up time for IT help desk team members to do other higher-value work. Many user provisioning and governance tools solutions allow end-user self-service to make changes like name changes directly. ### Who uses user provisioning and governance software tools? Most companies would benefit from using identity governance software solutions to manage employee user account provisioning, management, and de-provisioning. In particular, companies with many employees and user accounts to manage, such as enterprise-level companies, would benefit from using identity governance platforms, as manual account creation is difficult, laborious, and prone to error. IT administrators and help desk teams typically manage user provisioning and governance tools within a company’s corporate structure. With automated lifecycle management, however, multiple stakeholders across the enterprise can work in tandem to ensure users are set up correctly and have the proper access. For example, HR representatives can change new hires or people who have left the company in the HR system. This information can be pulled by the user provisioning and governance tools system to automatically take actions on a user’s associated accounts. End users can use self-service tools to make changes to their user profile, like name or title changes. ### Features of user provisioning and governance tools At their core, user provisioning/governance software must, at minimum, provide tools to automatically provision and de-provision user accounts based on user identities and grant permissions based on governance rules for users to access specific enterprise applications. Many user provisioning/governance software offers additional features to further automate user account lifecycles and provide a better end-user experience. These features may include: **Automatic user provisioning and de-provisioning —** User provisioning/governance software pulls data from identity stores like [HR systems](https://www.g2.com/categories/core-hr) to provision new accounts. Specific access to accounts can be automated based on roles or group membership. When an employee leaves or is terminated or when a contractor’s contract date expires, the software can automatically terminate accounts to prevent abandoned accounts from living on in systems. **Lifecycle management —** The software takes user account actions throughout employee lifecycle changes from onboarding and promotions to termination. **Integrations —** A main tenet of user provisioning/governance software is integrating with other software applications such as HR systems, user directories, [ERP applications](https://www.g2.com/categories/erp-systems), [email systems](https://www.g2.com/categories/email), [databases](https://www.g2.com/categories/database-software), [CRM systems](https://www.g2.com/categories/crm), communication systems, employee productivity software, and [file storage systems](https://www.g2.com/categories/cloud-file-storage). **Identity synchronization —** User provisioning/governance software can synchronize identity information changes across multiple applications. For example, if a user changes their personal information, such as a phone number or title, in one system, those changes are pushed to their other applications in corporate systems. **Access governance, role/group management, and policy enforcement —** Governing who has access to what applications or systems is determined by a user’s role and group membership. Using role-based or group membership factors to determine what access a user should be granted ensures that access to a company application is granted uniformly and adheres to company policies. **Delegated access authorization—** When business managers need to give their subordinates access to company accounts or change their permissions, they can approve access using delegation workflows. **Access verification workflow —** User provisioning/governance software can regularly query managers to confirm their subordinates' access and whether changes need to be made. **Reports and audits—** User provisioning/governance software can conduct audits and provide reports on account usage, including account creation and deactivation. This may be a necessary feature for companies in highly regulated industries that need to periodically audit users. **User self-service and improved user experience —** Providing users with self-service functionality, such as allowing employees to change their names and titles directly in the system or being able to request access to specific applications for manager approval, can further remove manual processes off IT helpdesk staff and improve employee productivity. **Password management and single sign-on—** Many user provisioning and governance tools offer additional end-user benefits, such as password management and single sign-on functionality. Other Features of User Provisioning and Governance Tools: [Bi-directional identity synchronization](https://www.g2.com/categories/user-provisioning-and-governance-tools/f/bi-directional-identity-synchronization), [Identifies and alerts for threats](https://www.g2.com/categories/user-provisioning-and-governance-tools/f/identifies-and-alerts-for-threats), [Mobile app](https://www.g2.com/categories/user-provisioning-and-governance-tools/f/mobile-app) ### Emerging trends in user provisioning and governance Historically speaking, Microsoft’s product, Active Directory (AD), has been one of the most widely used directory services since its introduction in 1999. Because of AD’s large market share, it is worth mentioning that many other user provisioning and governance tools vendors generally offer both identity and user governance tools that integrate with AD or, conversely, offer entirely separate solutions that utilize their own directory service. Active Directory manages IT resources, stores information about users, groups, applications, and networks, and provides access to computers, applications, and servers. AD was initially designed for on-premises use cases. Still, given the shift to cloud computing and storage in the digital transformation, Microsoft introduced Azure AD, which extends an on-premises instance of AD to the cloud and synchronizes identities with cloud-based applications. Other user provisioning and governance tools offer cloud solutions tying into on-site AD instances. Many providers provide cloud-native solutions and robust [identity and access management (IAM)](https://www.g2.com/categories/identity-and-access-management-iam) tools. ### Software and services related to user provisioning and governance solutions User provisioning and governance tools are part of a complete identity management solution. Many user provisioning and governance tools providers natively have or integrate with other providers to offer: [**Single sign-on (SSO) software**](https://www.g2.com/categories/single-sign-on-sso) **—** Single sign-on (SSO) software allows users to access multiple corporate applications with one set of credentials. This gives users more access to their applications without logging in multiple times. Single sign-on (SSO) is achieved through federation by linking IT systems, applications, and identities to create a seamless user experience. [**Password manager software**](https://www.g2.com/categories/password-manager) **—** Password manager software helps end users manage their passwords by allowing them to create one master password to access the passwords associated with their accounts. This is different from single sign-on, which federates the identity to other applications, while password manager software merely provides a secure storage vault to house user passwords. [**Identity and access management (IAM) software**](https://www.g2.com/categories/identity-and-access-management-iam) **—** User provisioning and governance tools are a part of identity and access management (IAM) functionality, which allows IT administrators to quickly provision, de-provision, and change user identities. IAM software also authenticates users to ensure they are who they say they are before providing access to corporate assets. IAM software is a modern solution, especially for companies utilizing numerous cloud-based applications. [**Customer identity and access management (CIAM) software**](https://www.g2.com/categories/customer-identity-and-access-management-ciam) **—** Customer identity and access management (CIAM) software manages a company’s customer identities and accounts. CIAM is different from identity and access management (IAM) software. IAM is used for internal corporate use—such as managing the identities of internal employees or contractors—while CIAM is for customer-focused identity management. [**Privileged access management (PAM) software**](https://www.g2.com/categories/privileged-access-management-pam) **—** Privileged access management (PAM) software is a tool used to protect a company’s privileged account credentials. It is generally used by IT administrators and other super users with high-level access to applications, not everyday users. [**Multi-factor authentication (MFA) software**](https://www.g2.com/categories/multi-factor-authentication-mfa) **—** Before granting a user access to company assets, it is essential to authenticate that they are indeed who they say they are. This can be achieved using multi-factor authentication (MFA) software solutions such as SMS codes, mobile push, biometric verification, or email one-time-pass (OTP) pushes. For example, if an employee loses their laptop, the laptop and the accounts the employee has access to are generally rendered useless to someone else unless that person could spoof the employee’s other authentication factors.