Best Customer Identity and Access Management Software

Customer identity and access management (CIAM) software helps create consumer identity accounts and directories. These accounts can be added, altered, or deleted, allowing the business to control the information a customer can access. CIAM tools are used to strengthen both customer privacy and business data security. If a vendor supplies multiple products, these tools can also improve the customer experience by creating simplified access across multiple channels.

There is some crossover between CIAM solutions and privileged access management (PAM) solutions. While CIAM solutions facilitate the creation and modification of customer or consumer identities, PAM offerings are more geared toward internal employee permissions and business-to-business relations. They help create accounts to give internal users access to applications, networks, and sensitive information.

To qualify for inclusion in the Customer Identity and Access Management category, a product must:

  • Provide customer identity lifecycle management features
  • Secure customer data through individualized identities
  • Scale to support growing a customer base

Customer Identity and Access Management Software Grid® Overview

The best Customer Identity and Access Management Software products are determined by customer satisfaction (based on user reviews) and market presence (based on products’ scale, focus, and influence) and placed into four categories on the Grid®:
  • Products in the Leader quadrant are rated highly by G2 Crowd users and have substantial Market Presence scores. Leaders include: Okta, Microsoft Azure Active Directory, and Salesforce Platform: Identity
  • High Performers are highly rated by their users, but have not yet achieved the Market Presence of the Leaders. High Performers include: Centrify Application Services
  • Contenders have significant Market Presence and resources, but have received below average user Satisfaction ratings or have not yet received a sufficient number of reviews to validate the solution.
  • Niche solutions do not have the Market Presence of the Leaders. They may have been rated positively on customer Satisfaction, but have not yet received enough reviews to validate them. Niche products include: Signal, OneLogin, and Gigya
G2 Crowd Grid® for Customer Identity and Access Management
Leaders
High Performers
Contenders
Niche
Okta
Centrify application services
Signal signal
Onelogin
Gigya
Microsoft azure active directory
Salesforce platform identity
Market Presence
Satisfaction
Linked in no background
Compare Customer Identity and Access Management Software
    Results: 35

    Filters

    Okta is the foundation for secure connections between people and technology. By harnessing the power of the cloud, Okta allows people to access applications on any device at any time, while still enforcing strong security policies. It integrates directly with an organization’s existing directories and identity systems, as well as 4,000+ applications. Because Okta runs on an integrated platform, organizations can implement the service quickly at large scale and low total cost. Thousands of customers, including Adobe, Allergan, Chiquita, LinkedIn, and Western Union, trust Okta to help their organizations work faster, boost revenue and stay secure.

    Get a Quote

    Salesforce App Cloud provides an out-of-the-box identity solution using open standards, including SAML, OpenID Connect, OAuth, and SCIM. Now IT can manage apps, users, and data sharing with simplicity and transparency.

    Get a Quote

    Centrify Application Services improves end-user productivity and secures every user’s access to apps. IT teams that leverage Centrify's Application Services are able to support internal users (employees, contractors) and external users (partners, customers), wherever they are. Components of Centrify Application Services: Single Sign-On – One-click access to your cloud, mobile and on-premises apps. No more forgotten passwords, no more user confusion. Adaptive MFA for App Access – A common sense approach to multi-factor authentication with risk-based policy that does not hinder end-user productivity. Workflow & Lifecycle Management – Automatically route application requests, create accounts, manage entitlements within those accounts, and revoke access when necessary. Provision users across apps, all from a central control point. Mobility Management – Manage devices, secure native mobile apps and provide context for smarter access decisions. App Gateway – Provide your IT administration teams with secure, granular access to infrastructure regardless of location and without the hassles of a VPN. More about Centrify: Centrify delivers Zero Trust Security through the power of Next-Gen Access. Centrify verifies every user, validates their devices, and limits access and privilege.   Centrify’s Next-Gen Access is the only industry-recognized solution that uniquely converges Identity-as-a Service (IDaaS), enterprise mobility management (EMM) and privileged access management (PAM). 
 Founded in 2004 by Tom Kemp, Adam Au and Paul Moore, Centrify is customer funded by over 5,000 customers and backed by top tier investors including Accel Partners, Mayfield, Sigma West, Index Ventures, Samsung Ventures, NTT Docomo and Fortinet.

    Get a Quote

    Azure Active Directory is a comprehensive identity and access management cloud solution that provides a robust set of capabilities to manage users and groups and help secure access to applications including Microsoft online services like Office 365 and a world of non-Microsoft SaaS applications.


    OneLogin simplifies identity management with secure, one-click access, for employees, customers and partners, through all device types, to all enterprise cloud and on-premises applications. OneLogin enables IT identity policy enforcement, and instantly disables app access for employees who leave or change roles in real time by removing them from Active Directory. Take control over application access, quickly on- and off-board team members, and provide end users with easy access to all their apps on every device. Extend your on-premises security model to the cloud in minutes. Eliminate the pain and expense of extensive identity policy management. OneLogin reduces identity infrastructure costs and complex integration project for each new app and efficiently extends identity policy to the cloud. OneLogin eliminates the need for lengthy integration and provisioning projects, manual de-provisioning, protracted on- and off-boarding processes, username and password resets, and Shadow IT policing.


    Gigya's Customer Identity Management Platform helps companies build better customer relationships by turning unknown visitors into known, loyal and engaged customers. With Gigya’s technology, businesses increase registrations and identify customers across devices, consolidate data into rich customer profiles, and provide better service, products and experiences by integrating data into marketing and service applications. Gigya's platform was designed from the ground up for social identities, mobile devices, consumer privacy and modern marketing. Gigya provides developers with the APIs they need to easily build and maintain secure and scalable registration, authentication, profile management, data analytics and third-party integrations. More than 700 of the world’s leading businesses such as Fox, Forbes, and Verizon rely on Gigya to build identity-driven relationships and to provide scalable, secure Customer Identity Management.

    Get a Quote

    Signal is the first and only Customer Identity Solution for the enterprise. Signal’s platform transforms the customer experience by providing contextual relevance at all points of engagement, regardless of place or time. Today, Signal’s technology runs on more than 45,000 digital properties in 158 countries. The platform facilitates billions of data requests monthly, supporting top brands around the world that generate more than $1.5 trillion in commerce, including Allstate, Audi, Crate & Barrel, JetBlue Airways, Starcom MediaVest Group, Starwood Hotels and Resorts, and many more. Signal has been recognized with numerous awards and honors, appearing on the Inc. 500 list of the fastest growing companies in 2015, 2016 and 2017.

    Get a Quote

    Azure Active Directory B2C offers consumer identity and access management in the cloud, improves consumer connections, protects their identities, and more.


    Janrain makes it easy to know your customers and personalize every interaction. Our Customer Identity Management Platform helps companies build a unified view of their customers across all devices by collecting accurate customer profile data to power personalized marketing. The platform encompasses social login, registration, customer profile data storage, customer insights, single sign-on, and engagement. Janrain powers customer identity management for brands like Pfizer, AMC, Samsung, Whole Foods, Fox News, Philips, Marvel, Mattel and Dr. Pepper.


    So much more than SSO – Cloud Identity Service is a complete Identity and Access Management as a Service (IDaaS). Onboard SaaS apps 100x faster Cloud Identity Service has onboarded SaaS applications 100x faster than legacy on premises IAM environments and can integrate nearly any number and type of identity repositories in 5 easy steps. Reduce IAM costs by up to 60% Eliminate on-premise hardware and software deployment costs, as well as upgrade and maintenance expenses. Cut deployment time up to 75% Without requiring clients to hire and train specialized IAM staff, Cloud Identity Service is deployed up to 75% faster than off-the-shelf identity and access management systems.


    One username. One password. Zero headaches. The PingOne® cloud is an identity-as-a-service (IDaaS) solution that enables organizations to deliver secure cloud single sign-on (SSO) and multi-factor authentication for users with just one username and password—eliminating the multiple password security problem. Recognized by Gartner®, Forrester®, IDC and KuppingerCole, the PingOne cloud delivers one-click access to all of the SaaS, legacy and custom web applications your users need while increasing security for your organization. Get more info: https://www.pingidentity.com/en/products/pingone.html


    The Drawbridge Connected Consumer Graph® is the industry’s largest and most precise cross-device, people-based identity solution. It is built using patented probabilistic technology that observes and correlates non-permanent, user-resettable identifiers to make predictions about device ownership.


    ForgeRock provides an identity platform to helps global brands, enterprises and government entities build secure, customer-facing relationships across any app, device or thing, user can use online identities to grow revenue, extend reach and launch new business models, and the company.


    Passport is an API that adds login, registration, single sign-on, reporting and powerful user management features to any application.


    Superior scalability with innovative identity management that spans all things connected.


    Auth0 is a cloud service that provides a set of unified APIs and tools that enables single sign-on and user management for any application, API or IoT device, it allows connections to any identity provider from social to enterprise to custom username/password databases.


    Cloud Identity Services enable organizations to simply and securely manage digital identities across virtually any combination of internal/external systems and end user groups.

    Get a Quote

    Our innovative, cloud-based identity and access management (IAM) solutions provide additional layers of security when accessing crucial web applications and sensitive data.


    With Omada Customer Identity and Access Management (CIAM) you’re able to manage external identities with the same level of security and access governance as for your internal identities. With a web-based portal for self-registration you can encourage your customers and external partners to engage with your company while ensuring data privacy and security. Combining Omada identity and access management with CIAM ensures maximum return on investment as CIAM utilizes the powerful Omada Identity Suite with its components, advance business flows, and governance features.

    Get a Quote

    Silverfort protects enterprises from data breaches, cyber attacks and insider threats, by preventing credential compromise and misuse across the entire corporate network and cloud infrastructure.


    Anomalix Identity as a Service is a cloud-based managed service that provides a cost effective alternative to in-house Identity and Access Management (IAM) operations and administration. Anomalix's IDaaS solution eliminates hardware, software and human capital costs from the security equation. The value proposition is a lower total cost of ownership, faster time to market and increased flexibility to focus on business initiatives instead of operational and administrative overhead.


    Cidaas uses local data hubs to ensure the highest security standards: primarily with secure interface authentication through OAuth2 protocol and OpenID Connect and, above all through, multi-factor authentication, the unambiguous verification of user identities and fraud detection based on BigData Technolgy.


    The IAM Cloud platform sits at the heart of an organisation's IT infrastructure. Once connected, it flows data between systems, and uses intelligent identity management to automate processes such as user creation and provisioning, security configuration and login control, and a range of advanced IT features like Single Sign On, password resets, MFA, and admin-to-user communications.


    IDMWorks is an expert-level Identity and access management consultancy.

    Get a Quote

    Lieberman RED – Rapid Enterprise Defense Identity Management, formerly known as Enterprise Random Password Manager, is a Proactive Cyber Defense Platform. It protects organizations against malicious insiders, advanced persistent threats (APTs) and other sophisticated cyber attacks – on-premises, in the cloud and in hybrid environments. RED Identity Management simplifies the management of your privileged credentials, delivering automated protection at scale, with a rapidly deployed and affordable solution. RED Identity Management continuously discovers and tracks privileged accounts on your cross-platform network, and automatically provides each account with unique and frequently changing credentials. It ensures that powerful privileged identities are only available to audited users on a temporary, delegated basis – preventing unauthorized and anonymous access to systems with sensitive data.


    The LoginRadius Consumer Identity Platform is a unified, SaaS-based platform that enables organizations to offer easy and convenient access to their online properties. Whether it's an industry standard registration or social login, LoginRadius offers multiple options to help engage and grow your customer base.

    Get a Quote

    Onegini Connect allows you to connect, manage, and engage with your customers on a daily basis. To facilitate this, it has a solid set of core features that are constantly updated to meet the latest standards.

    Get a Quote

    OWAGuard is a exchange server authentication security solution designed to protect Outlook Web App users and businesses from a variety of logon and password attacks, and real-time reporting and alerts of suspicious OWA logon activity.

    Get a Quote

    ParkMyCloud is a simple, lightweight web app that lets you schedule on/off times (we call it “parking”) for any or all non-production cloud computing resources so that you pay only for the resources you’re actually using—i.e. you would turn test or dev instances off during nights and weekends.


    Building on top of SecZetta's NE Profile and NE Access suite of products is a robust solution to the challenges of creating and managing customer identities to achieve a seamless customer experience. Customers interact with brands several ways, social, mobile, in-store and online. In fact, sometimes they expect to be able to interact with a brand across multiple channels at the same time.


    Simeio Identity-as-a-Service (IDaaS) is a software that provides a simple and low-cost alternative to building and maintaining own IAM infrastructure, it eliminates the hardware costs, in many cases the software licenses, plus the ongoing maintenance and upgrade costs required to deploy and maintain an IAM infrastructure.

    Get a Quote

    Social-ID for CIAM, a solution to authenticate and to register customers at Website, Mobile apps and Wifi portals.

    Get a Quote

    Trusona developed the world's first and only insured digital identity authentication solution and are leading a movement where there are no passwords to be created, remembered, stolen, or compromised. Where people are who they say they are - every time.

    Get a Quote

    The Ubisecure Identity Platform solves today's identity management issues and is built to scale for future business requirements for digital transformation, omni-channel services, IoT, big data, and more. Our product centric approach is designed to dramatically reduce Identity & Access Management (IAM) deployment and operating costs, and maximise your upsell and cross-sell revenue, and incorporates both the on-premise Identity Server and the managed Identity Cloud service.


    UnboundID Platform is an identity and preference management platform that allows you to enable new customer-facing digital business initiatives by capturing customer preferences, experiences, and more.


    Kate avatar
    Kate from G2 Crowd

    Learning about Customer Identity and Access Management?

    I can help.
    Get FREE professional recommendations in just a few minutes.