One Identity

Access Management: Defender

Enterprise two-factor authentication (2FA) solution that uses Active Directory as the identity store. Features include AD-centric authentication, token self-registration, help desk troubleshooter, web-based administration, token flexibility, ZeroIMPACT migration, universal soft token license, PAM for Unix/Linux, and encryption. Deployed on-premises.

Access Management: Defender Mainframe Edition

Two-factor authentication for IBM System z mainframe networks. Enables authentication at three levels: application selection, business transaction, or network entry. Supports OATH-compliant tokens, RSA SecureID AES tokens, and MVS system support. Deployed on IBM z/OS with VTAM/VSAM environment.

Endpoint Privilege Management: Privilege Manager Professional

Privilege Manager Professional is a workstation/endpoint-based privilege management product. Priced per endpoint with a minimum of 10 endpoints. Available with standard maintenance or 24x7 maintenance. Sold by One Identity (via Quest Software parent). Delivery method: Electronic.

Identity Governance & Administration (IGA): Active Roles

Active Roles is purpose-built to streamline Microsoft environments including Active Directory, Entra ID, and Microsoft 365. Provides automated policy enforcement, streamlined administration, identity lifecycle management, real-time synchronization, efficient group management, change history/activity tracking, and least privilege with RBAC. Manages and protects the entire Microsoft environment from a single console. Supports Zero Trust Least Privilege for AD, Entra ID and Microsoft 365. Deployed on-premises. Priced per managed person (internal) and per managed external person.

Identity Governance & Administration (IGA): Identity Manager

On-premises IGA solution that governs and secures user access to data and applications. Supports on-premises, hybrid, and cloud environments. Features include ITDR Playbooks, AI-assisted Reporting, Identity Lifecycle management, Cloud governance, Governance, SAP Certified integration, Attestation, Self-service access, Privileged Access Governance, Compliance Reporting, Application Governance, and Integrations/Connectors. Priced per managed person (internal) and per managed external person.

Identity Governance & Administration (IGA): Identity Manager On Demand

Fully managed SaaS/cloud IGA solution. Unifies security policies and satisfies governance needs while implementing a least-privileged model. Features include ITDR Playbooks, AI-assisted Reporting, Cloud Without Compromise, Identity Lifecycle, Governance, SAP Certified integration, Attestation, Self-service Access, Privileged Governance, and Audit/Compliance. ISO/IEC 27001:2013, 27017:2015, and 27018:2019 certified.

Identity Governance & Administration (IGA): Identity Manager On Demand Starling Edition

SaaS-delivered IGA solution built on the One Identity Starling cloud platform. Full-capabilities cloud IGA solution implementing a least-privileged model. Features include AI-assisted Reporting, ITDR Playbooks, Cloud without Compromise, Identity Lifecycle, Governance, SAP Certified integration, Attestation, Self-service Access, Privileged Governance, and Audit/Compliance.

Privileged Access Management (PAM): Safeguard Authentication Services

Integrates UNIX, macOS and Linux Active Directory authentication by creating an AD bridge. Enables users to log on to non-Windows systems using their AD credentials. Features include AD for UNIX/Linux/Mac, audit/alerting/change tracking, Group Policy for UNIX/Linux/Mac, Single Sign-On, simplified IAM, NIS migration and directory consolidation, flexible deployment, and two-factor authentication support.

Privileged Access Management (PAM): Safeguard On Demand

SaaS-based PAM solution that combines a secure password safe, session management and a monitoring solution delivered from the cloud. Provides discover, secure, record, monitor, audit, and review capabilities. Enables Zero Trust just-in-time access. ISO/IEC 27001:2013, 27017:2015, and 27018:2019 certified.

Privileged Access Management (PAM): Safeguard for Privileged Passwords

Automates, secures and simplifies granting privileged credentials. Provides privileged password vaulting, workflow engine with time restrictions and multiple approvers, Approval Anywhere, automated discovery of privileged accounts, personal vaults for all employees, enterprise password vault, and high availability. Available as on-premises hardened hardware appliance.

Privileged Access Management (PAM): Safeguard for Privileged Sessions

Controls, monitors and records privileged sessions of administrators, remote vendors and other high-risk users. Provides full session audit/recording/replay, real-time alerting and blocking, analytics-ready data collection, full-text search with built-in OCR engine, wide protocol support, and automated session termination on suspicious activity. Available as on-premises hardened hardware appliance.

Privileged Access Management (PAM): Safeguard for Sudo

Centralizes management of sudoer policy files across Unix/Linux servers. Uses plug-ins to extend existing sudo environments without replacing them. Features include central sudo policy enforcement, keystroke logging of all sudo activity, centralized reporting, centralized management via Management Console for UNIX, separation of duty enforcement, sudo offline policy cache, and script compatibility.