ForgeRock provides an identity platform to helps global brands, enterprises and government entities build secure, customer-facing relationships across any app, device or thing, user can use online identities to grow revenue, extend reach and launch new business models, and the company.
Customer Reviews
Vincenzo L.
Advanced user of ForgeRockI like the good integration with Java based applications, since ForgeRock provides SDKs for all their products. Their private Maven repo also makes it easier to manage dependencies properly. I also like the stability of their DS servers, they are the least problematic of the bunch. The performance for their latest releases has much improved compared to their earlier releases (13.0).
I dislike their debug logging since it's scattered all over the place in different files. I am often in contact with their enterprise support and even though many times they were immediately helpful, sometimes the resolution took months. Managing an AM server is very confusing as not all operations can be done on the same channel, some only work via GUI console or REST, but not in Amster.
Configuring the Java Agents with the last version has been a big challenge as their documentation is not 100% clear.
Another challenge is that I had to refactor most of the application code because ForgeRock changed their API completely from OpenAM 13 and AM 6.5.
ForgeRock AM backup and restore solution via Amster is SLOW. In a high volume system (3k realms) the backup took several hours to get to 50%, I had to stop and find another solution (for example an ldif export in the same system takes only a matter of seconds).
If you are looking to protect your Java application using an IAM and SSO then ForgeRock is a good solution. Things get more complicated with Java Agents especially if you need multiple realms. Also coding for infrastructure as code might not be straightforward because not all configuration can be done using a single channel.
Within the product I am working on, ForgeRock is used to provide authentication and authorization in a large enterprise software. SSO is also used to provide a better integration with the several components of the application sharing the same security subsystem.
A big benefit of ForgeRock AM is that it is able to handle a high volume of realms while a solution like Keycloak can't, this is one of the main reasons why the organization keeps using it.
