Gartner defines access management (AM) as tools that include authentication and single sign-on (SSO) capabilities, and that establish, manage and enforce runtime access controls for modern standards-based and classic web applications and APIs.
AM’s purpose is to enable SSO access for people (employees, consumers and other users) and machines to protected applications in a streamlined and consistent way that enhances the user experience. AM is also responsible for providing security controls to protect the user session in runtime, enforcing authentication and authorization using adaptive access. Lastly, AM can provide identity context for other cybersecurity tools and reliant applications to enable identity-first security.

Access Management

Gartner defines user authentication as the journey-time process that provides credence in a claim to an identity established for a person for access to digital assets. User authentication is delivered by some combination of (a) an authenticator, (b) signals evaluation and (c) an authentication decision point, which may be from different vendors.
User authentication is used to provide credence in an identity claim for a person already known to an organization. The credence must be sufficient to bring account takeover (ATO) risks within the organization’s risk tolerance.
User authentication is foundational to and protects the value of other functions with an organization’s identity fabric, namely: runtime authorization, especially segregation of duties (SOD); audit (individual accountability); and identity analytics.

User Authentication

Gartner defines identity governance and administration (IGA) as the solution to manage the identity life cycle and govern access across on-premises and cloud environments. To accomplish this, IGA tools aggregate and correlate disparate identity and access rights data, and provide full capability controls over accounts and associated access. IGA solutions also fulfill the purpose of unifying and correlating identity data for organizations with multiple person and machine identity authoritative sources. This is done to provide a single view of identity (system of record) for their dependent processes and systems

Identity Governance and Administration

The System for Cross-Domain Identity Management (SCIM), also known as Identity Federation provide a protocol, schema definition and extension model for provisioning and managing identity data in cloud/hybrid applications and services. The protocol supports create, read, update and delete (CRUD) operations of identity resources, such as users, groups and custom resource extensions. SCIM reduces the costs of building connectors and synchronizes and consolidates identity data. SCIM uses a standardized protocol based on RESTful APIs and JSON, enabling easy integration with modern web services. It supports full CRUD operations for managing users and groups, and automates the entire user lifecycle from provisioning to deprovisioning across connected systems.
SCIM is widely used by IT administrators, identity managers, and SaaS developers to automate user provisioning and manage identity lifecycles securely across systems. It’s especially valuable in industries like finance, healthcare, education, technology, and government, where secure and compliant identity management is critical.

System for Cross-Domain Identity Management (SCIM)

Microsoft Entra ID Reviews, Ratings & Features 2025 | Gartner Peer Insights

Evaluation and contract negotiation

Evaluation & Contracting

Timeliness of vendor's response

Integration and deployment

Integration & Deployment

Ease of deployment

Product capabilities

Product Capabilities

Auditing

Ease of
  Deployment

Scalability
  and Performance

User authentication

Access policy management

Access policy decision making and enforcement

Coarse and fine grained authorization control

Adaptive access and trust elevation

Single Sign-on

Session management

Security token services for token and protocol translation

Access event logging and reporting

Administer Users and Partners

API Access Control

Authorization and Adaptive Access

Standard Application Enablement

Threat Reporting and ITDR

Non-Standard Application Enablement

SSO and Session Management

Social Identity Support

Directory Services

Internal Access Administration

External Access Administration

Customization and Extensibility

Ease of Deployment

Resilience

Core Access Management

Business to Consumer Capabilities

Business to Business Capabilities

Portable Identity Integration

Service and support

Service & Support

Quality of technical support

Timeliness of vendor's response to support questions

Additional Context

How satisfied is your organization with the product meeting your needs?

Timely and complete response to product questions

Ability to understand your organization's needs

Quality of peer user community

Quality and availability of end-user training

Ease of integration using standard APIs and tools

Availability of quality 3rd-party resources (integrators, service providers, etc.)

Okta Single Sign-On

Okta

Microsoft Entra ID

Microsoft

Ping Identity Platform

Ping Identity

OneLogin

One Identity

Okta Customer Identity Cloud

SafeNet Trusted Access

Thales Group

AWS Identity and Access Management (IAM)

Amazon Web Services (AWS)

Oracle Access Management

Oracle

CyberArk Workforce Identity

CyberArk

RSA SecurID

50M - 250M USD

<50M USD

250M - 500M USD

1B - 3B USD

500M - 1B USD

3B - 10B USD

30B + USD

10B - 30B USD

Gov't/PS/ED <5,000 Employees

Gov't/PS/ED 5,000 - 50,000 Employees

Gov't/PS/ED 50,000 + Employees

Architect

Even after all the years Entra ID has been on the market it still feels a little half baked. 
 

Principal Automation Engineer

Entra ID is a great product that we use day in and day out for general functionality at the organization. It provides a one-stop-shop for administration, governance, and security to keep peace of mind at a financial institution. It just could have stayed named Azure Active Directory.

Google

Other...

Broadcom (VMware)

One Identity (OneLogin)

Auth0

Alibaba Cloud

SecureAuth

Broadcom

Identity Automation

Akamai

Atos

IBM (Red Hat)

Quest

Broadcom (Symantec)

Fortinet

GoTo

Cisco Systems

ForgeRock

Entrust

Cloud Architect

Easy to integrate, great out of box compatibility. Needs to be highly available across regions if it needs to secure its place as one stop enterprise AD solution.

Sr. Network Engineer

They have been good with helping with our on-prem infrastructure to cloud. Also, we have been able to setup our Azure active directory (IaaS) in the cloud and now able to host other applications that were previously hosted on-prem to cloud.

Network Administrator

Microsoft is Microsoft.   They do make some pretty good products, but they also make very confusing decisions.   Support is not very good and sometimes hard to get to.

ATS SALES ENGINEER MANAGER

Overall the solution works, but needs improvement in a few areas.

Global IT Infrastructure Design Manager

Products are fantastic but only suitable for enterprises ~2 years after release after kinks and second round of features are released.

Systems Engineer

I love what I've worked with of all of Microsoft's cloud-based offerings so far. While they're kind of the newer kid on the block in the IAM arena, they have a solid foundation and strong vision, and their implementation of all of their features is quickly catching up to that vision.

Manager Identity, Access and Security 

Converting from on prem to off prem was a lot of work.  But it all worked out in the end.

Enterprise Architect

While this tool provides perfect integration with Active Directory on-premise, we were bit skeptical with credentials synchronization and reporting features, but everything went well.

Microsoft has continued to drive the feature set of Azure Active Directory Premium and has been very responsive to the feedback for refinements from its customers.

Manager, Corporate Technology & Configuration

What went really well was the design & support assistance we got from the Microsoft product group. 
Their go to a market team really went above and beyond to ensure the architectural design is sound, as suggested by our 3rd party systems integrator.


Active

Find the top Access Management Tools with Gartner. Compare and filter by verified product reviews and choose the software that’s right for your organization.

50M-1B USD

1B-10B USD

10B+ USD

Gov't/PS/Ed

Microsoft Active Directory Federation Services

Data Scientist

I've had a good overall experience with Microsoft Entra ID. It's a strong identity management tool, particularly for businesses that use Microsoft 365. The security features are strong, and the integration is smooth. For rookie administrators, several aspects, such as role management and policy configuration, can be a little complicated.


TECHNICAL DOMAIN ARCHITECT

The NZ Microsoft Team is very supportive and adds value, helping connect us to product teams and experts on demand.  Make use of these channels as it helps demystify the constant feature delivery.

IT CONSULTANT

This product presents a top notch experience.The capability to unify our user authentication, reduces reliance on manual provisioning and fosters security with features like MFA saves time and improves the user experience.Empower secure access management and protection from credential based attacks which boosts confidence and peace of mind knowing we always have a secure and purpose fit access whether working in office, remote or hybrid. Uses Conditional Access and Identity Protection to monitor user behavior and control app access in real time, which helps keep data safe.Connects easily with a wide range of apps, enabling a single system for managing user access across the organization. 

IT Associate

Entra ID simplifies identity and access management with a secure, user-friendly approach. Its deep integration with Microsoft services and strong security capabilities make it a trusted solution for organizations looking to streamline access while safeguarding their digital environment. Scalable, efficient, and build for today's hybrid work models

Principal Product Engineer

With Microsoft Entra ID we have been able to set up a centralized directory for our employees which in turn has enabled us to use the Single Sign-on feature to access our intra organization portals and also other Microsoft services without the user having to register or login into each service independently. This has made the user onboarding easily scalable for a global organization like ours.

IT Services Associate

Microsoft Entra ID has made life easy for administrators as well as users alike. It balances security and user convenience. Adding an extra layer of security on top of existing measures provides our organization with the ability to seamlessly provide access to resources and cloud apps with ease.

Senior Network Engineer

Overall, Microsoft Entra ID streamlines identity and access management by offering very secure SSO, MFA and conditional access that helps a lot to improve our organization’s security, reduce login issues and simplify user access across apps.Has a seamless integration with 3rd party apps we use which leads to better security and user experience. Excellently allow us to have one central location for managing identities and access to all of our apps, this improves visibility and control.There is always a quick and easy sign in experience across multiple cloud environments. 

Senior System Engineer

The Entra ID is amazing Identity as a Service product. Microsoft is our primary vendor and it enables our company to adapt quickly to the new services, security threats and configure secure and convenient environment for end users.

Assistant Manager Quality Assurance

Microsoft Entra ID is used for identity management and verifying user identity during login to applications. It provides secure login with multi-layer authentication. It provides single verification across all applications within the same IP and system.

CHIEF INFORMATION OFFICER

Microsoft Entra ID has functioned well in managing identity within our network. It is solid, integrates well with Microsoft 365, and supports sound security practices like conditional access. The licensing and some of the interface could be streamlined, but overall, it gets the job done and scales well.

MSOC & MNOC - SR. MANAGER

Microsoft Entra Identity (ID) is a very powerful tool for our organization's solution that allows our security team to manage and define our user access, identities and security across different platforms. It is also has a very user-friendly dashboard for easy administration.

IT Manager

Entra ID is a great service that Microsoft offers, we use it to access other services such as our CRM tool, our HR tool, Office 365 apps, Exchange online plus many more. 
It's simple to use and if configured correctly it can be a great tool that is also secure and gives you the user audit logs that you need etc. 
Using this makes it simple to say who can access what and who can't. They are always developing the platform as well which is a good thing and sometimes annoying as buttons move or get their name changed. The conditional access policies are brilliant to help prevent unauthorised access to our systems and we can lock it down as much as we like. 

Manager, IT Security and Risk Management

Best tool that includes not only authentication but the best and fastest single sign-on (SSO) experience. Outstanding overall experience so far. After implementation only a few minor fixes were needed. 

IT Services Associate Managment

microsoft entra id, tiene una gestion de identidades y accesos en la nube esta diseñada para centralizar proteger y simplificar el acceso de empleados, socios y clientes a los recursos corporativos, tanto en entornos cloud como hibridos

Software Developer

it improved our identity management and access control workflows. It provided us with a unified and secure way to manage user identities across multiple applications both on premises and cloud based

Microsoft enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more. Microsoft is dedicated to advancing human and organizational achievement.

Microsoft Security helps protect people and data against cyberthreats to give peace of mind.


Every company has a mission. What's ours? To empower every person and every organization to achieve more. We believe technology can and should be a force for good and that meaningful innovation contributes to a brighter world in the future and today. Our culture doesn’t just encourage curiosity; it embraces it. Each day we make progress together by showing up as our authentic selves. We show up with a learn-it-all mentality. We show up cheering on others, knowing their success doesn't diminish our own. We show up every day open to learning our own biases, changing our behavior, and inviting in differences. When we show up, we achieve more together. 

Microsoft operates in 190 countries and is made up of more than 220,000 passionate employees worldwide.