Contact Us
OneLogin

OneLogin

OneLogin excels in secure access management and user productivity.

Basic Information

  • Model: Not applicable (Cloud-based service)
  • Version: Continuously updated (SaaS model)
  • Release Date: Founded in 2009
  • Minimum Requirements (Client-side): Modern web browser, internet connection. For Active Directory Connector 5: Windows Server 2012, 2016, or 2019; .NET Framework 4.5.1+; Pentium 4+ processor; 512MB RAM; 120MB disk space. For LDAP Connector: 1GB hard drive space; Oracle Java Runtime (JRE) 8.
  • Supported Operating Systems (Client-side): Windows (10, 11), macOS (Ventura 13.x.x, Monterey 12.x.x, Big Sur 11.x.x), iOS, Android.
  • Latest Stable Version: Not applicable (continuous delivery for cloud service). OneLogin Desktop (3.2.2) is the latest for client-side applications.
  • End of Support Date: Continuous for active subscriptions. OneLogin ended support for Internet Explorer on March 10, 2023.
  • End of Life Date: Not applicable (active, continuously developed service). OneLogin was acquired by One Identity on October 4, 2021.
  • License Type: SaaS subscription model. Pricing is typically per user per month, with "Access" and "Advanced" plans available.
  • Deployment Model: Cloud-based (SaaS)

Technical Requirements

OneLogin is a cloud-based Identity and Access Management (IAM) solution, meaning most technical requirements apply to the client devices and integration components rather than a single installable asset. The platform itself runs on OneLogin's infrastructure.

  • RAM:
    • Client-side browser access: Standard RAM for modern operating systems and browsers.
    • Active Directory Connector 5: 512MB.
    • LDAP Connector: 2GB for <5,000 users, scaling up to 16GB for >1,000,000 users.
  • Processor:
    • Client-side browser access: Standard processor for modern operating systems and browsers.
    • Active Directory Connector 5: Pentium 4 or better.
    • LDAP Connector: vCPU requirements vary based on user count, from 2 vCPU for <5,000 users to 32 vCPU for >2,000,000 users.
  • Storage:
    • Client-side browser access: Minimal, for browser cache and extensions.
    • Active Directory Connector 5: 120MB (configurable to less than 50MB).
    • LDAP Connector: 1GB available hard drive space (including logs).
  • Display: Standard display resolution supported by modern web browsers.
  • Ports: Outbound TCP Port 443 from the server running the Active Directory Connector to OneLogin IP address ranges.
  • Operating System:
    • Client-side: Windows 10/11 (64-bit), macOS (Ventura, Monterey, Big Sur), iOS, Android.
    • Active Directory Connector 5: Windows Server 2012, 2016, 2019.
    • OneLogin synchronization server: Windows operating system (Windows Server 2012, 2012 R2, 2016, 2019, 2022).

Analysis of Technical Requirements: The technical requirements for OneLogin are primarily focused on the client-side access and server-side connectors for directory integration. Client-side access is lightweight, relying on modern web browsers and common operating systems. The requirements for Active Directory and LDAP connectors are modest for smaller deployments but scale with the number of users, reflecting the need for processing power and storage to synchronize identity data. The platform's cloud-native architecture offloads significant infrastructure demands from the enterprise, simplifying deployment and maintenance. Compatibility with various Windows Server versions for connectors ensures broad enterprise applicability.

Support & Compatibility

  • Latest Version: OneLogin operates on a continuous delivery model, with features and bug fixes gradually applied to its global customer base.
  • OS Support:
    • Web Browsers: Chrome (min 54), Firefox (min 50), Safari (min 10.1), Microsoft Edge.
    • Mobile: iOS, Android.
    • Desktop (OneLogin Desktop): Windows 10/11 (64-bit), macOS Ventura (13.x.x), Monterey (12.x.x), Big Sur (11.x.x).
    • Connectors: Windows Server 2012, 2016, 2019, 2022.
  • End of Support Date: Continuous for active subscriptions. Internet Explorer support ended March 10, 2023.
  • Localization: Localized into 25 languages for the end-user experience, including English, Spanish, French, German, Japanese, Chinese, and more. Administrators can configure available languages.
  • Available Drivers/Integrations: OneLogin supports a broad range of protocols and standards including SAML 1.1/2.0, WS-Federation 2005, SCIM 1.1/2.0, OAuth 1.0/2.0, OpenID Connect 1.0, JSON Web Token (JWT), and Integrated Windows Authentication (IWA). It integrates with directories like Microsoft Active Directory, LDAP, Google Directory, and HR Management Systems.

Analysis of Overall Support & Compatibility Status: OneLogin demonstrates strong support and compatibility across various platforms and standards, essential for an IAM solution. Its continuous delivery model ensures users always have access to the latest features and security updates. Broad browser and operating system support for client access, coupled with extensive integration capabilities for enterprise directories and applications, makes it highly adaptable to diverse IT environments. The availability of localization in 25 languages enhances its usability for global workforces. The deprecation of older browser support (like Internet Explorer) aligns with modern security and performance best practices.

Security Status

  • Security Features: Single Sign-On (SSO), Multi-Factor Authentication (MFA), Adaptive Authentication (SmartFactor Authentication™ using AI/machine learning for risk assessment), password vault with AES-256 encryption, role-based access control (RBAC), real-time synchronization with directories, user provisioning/deprovisioning, X.509-based certificates, and secure network connections (TLS with 2048-bit RSA key).
  • Known Vulnerabilities: No specific widespread, unpatched vulnerabilities are publicly highlighted in the provided data. The platform focuses on proactive security measures.
  • Blacklist Status: No indication of blacklist status.
  • Certifications: ISO 27001:2013 certified, ISO 27018:2019 compliant, TRUSTe APEC Privacy Recognition for Processors (PRP) certified, GDPR compliant, SOC 2 Type 2 reports.
  • Encryption Support: AES-256 for stored passwords in the Password Vault, bcrypt for hashed passwords, TLS with 2048-bit RSA keys for network connections.
  • Authentication Methods: Passwords (with complexity rules), MFA (OneLogin Protect OTP mobile app, push notifications, RSA SecureID, Google Authenticator, Yubico, DUO Security, SMS, Voice, Security Questions, WebAuthn including biometrics like fingerprint and face recognition, Windows Hello, TouchID), browser certificates, SmartFactor Authentication. Supports SAML, OpenID Connect, WS-FED, API, and form-based authentication.
  • General Recommendations: Implement MFA, regularly review and update user access privileges (least privilege principle), monitor user activity, and set alerts for suspicious behavior.

Analysis on the Overall Security Rating: OneLogin maintains a robust security posture, integrating multiple layers of protection. Its comprehensive MFA options, including adaptive authentication driven by AI, significantly reduce the risk of unauthorized access. Strong encryption standards for data at rest and in transit, coupled with adherence to international security and privacy certifications (ISO 27001, GDPR, TRUSTe, SOC 2), demonstrate a commitment to enterprise-grade security. The platform's ability to enforce granular security policies and integrate with existing directories further enhances its protective capabilities.

Performance & Benchmarks

  • Benchmark Scores: OneLogin is recognized as a G2 Leader and High Performer based on customer reviews and a November 2019 Gartner Peer Insights Customer Choice for Identity and Access Management, with an overall high score of 4.6 out of 5 stars.
  • Real-World Performance Metrics: Users report ease of use, efficient remote functionality, and reliable Single Sign-On (SSO) and Multi-Factor Authentication (MFA). The platform aims to reduce administrative costs, improve productivity, and accelerate onboarding/offboarding processes (e.g., 9x faster onboarding, 50% reduction in helpdesk tickets).
  • Power Consumption: Not applicable for a cloud service; consumption occurs on OneLogin's data centers.
  • Carbon Footprint: Not directly applicable to the asset itself; depends on the cloud provider's infrastructure.
  • Comparison with Similar Assets: OneLogin is considered a strong solution for enterprise-level identity management, often compared to competitors like Okta, Ping Identity, and Auth0. It is praised for its broad application support, effective directory integration, and strong support for role-based access control. Some users note that it has slightly fewer advanced IAM features compared to market leaders and that support response times can vary.

Analysis of the Overall Performance Status: OneLogin consistently receives positive feedback for its performance in simplifying access management and enhancing security. Its cloud-native architecture ensures scalability and availability. While traditional performance benchmarks like CPU/RAM usage are not directly applicable, user reviews and industry recognition highlight its effectiveness in real-world scenarios, particularly in improving user productivity and reducing IT overhead. Some feedback indicates potential areas for improvement in advanced IAM features and support response times, but overall, it performs strongly in its core functions.

User Reviews & Feedback

User reviews for OneLogin generally highlight its effectiveness in streamlining identity and access management.

  • Strengths:
    • Ease of Use: Users frequently praise OneLogin for its intuitive interface and simple Single Sign-On (SSO) functionality, making it easy to manage passwords and access applications.
    • Security: Strong security features, including robust Multi-Factor Authentication (MFA) options and the ability to control user access, are highly valued.
    • Integration: Effective and dependable integration with existing directories like Active Directory and LDAP is a significant advantage.
    • Efficiency: Simplifies user management, provisioning, and deprovisioning, leading to improved productivity and reduced helpdesk tickets.
    • Customer Support: Many users report responsive and helpful customer service.
  • Weaknesses:
    • Support Response Times: Some users note that the support team can be slow to address queries.
    • Advanced Features: Compared to some market leaders, OneLogin may have slightly fewer advanced IAM features beyond core SSO and MFA.
    • API Limitations: Potential limitations in API capabilities have been mentioned.
    • Cost: For some, the cost, particularly for enterprise agreements beyond a certain number of applications, can be a concern.
    • Occasional Outages/Connection Issues: While generally reliable, some users have reported unexpected outages or connection issues that disrupt operations.
  • Recommended Use Cases: OneLogin is well-suited for enterprises of all sizes, particularly those with complex IT infrastructures, multiple applications (both cloud-based and on-premises), and a need for advanced security features like MFA and role-based access control. It is ideal for organizations looking to streamline access management, enhance security, and improve user productivity across their workforce.

Summary

OneLogin is a robust, cloud-based Identity and Access Management (IAM) platform that excels in providing secure and streamlined access to enterprise applications. Its core strengths lie in its user-friendly Single Sign-On (SSO) capabilities, comprehensive Multi-Factor Authentication (MFA) options, and strong integration with existing directory services like Active Directory and LDAP. The platform's continuous delivery model ensures up-to-date features and security, while extensive localization support caters to global workforces. OneLogin adheres to stringent security standards, evidenced by ISO 27001, ISO 27018, TRUSTe, and GDPR compliance, employing AES-256 encryption and advanced adaptive authentication mechanisms. User feedback consistently praises its ease of use, security, and efficiency in managing user access and improving productivity. It is particularly well-suited for organizations seeking to simplify access, enforce strong security policies, and manage user lifecycles across diverse application environments.

However, some users point to areas for improvement, including occasional slower support response times, a desire for more advanced IAM features beyond its core offerings, and potential API limitations. While generally reliable, isolated reports of connection issues exist. Despite these minor drawbacks, OneLogin remains a highly regarded solution for workforce identity management, offering significant value in reducing administrative overhead and bolstering an organization's security posture.

The information provided is based on publicly available data and may vary depending on specific device configurations. For up-to-date information, please consult official manufacturer resources.

Simplify your IT ecosystem with InvGate Asset Management

30-day free trial - No credit card needed

Get started

Clear pricing

No surprises, no hidden fees — just clear, upfront pricing that fits your needs.

View Pricing

Easy migration

Our team ensures your transition to InvGate is fast, smooth, and hassle-free.

View Customer Experience