Home/Identity and Access Management (IAM) Software/Okta vs KeycloakUpdated on: January 27, 2023

Compare Okta vs Keycloak

98% The SW Score ranks the products within a particular category on a variety of parameters, to provide a definite ranking system. Read More Remove
88% The SW Score ranks the products within a particular category on a variety of parameters, to provide a definite ranking system. Read More Remove
Visit Website

Visit Website

ADD PRODUCT
98% The SW Score ranks the products within a particular category on a variety of parameters, to provide a definite ranking system. Read More Remove
88% The SW Score ranks the products within a particular category on a variety of parameters, to provide a definite ranking system. Read More Remove
Visit Website

Visit Website

Overview

Summary

Okta is an identity and access management software that provides great user experience and easy administration by connecting suppliers, partners and customers of an enterprise securely within a single loop. It is an identity provider having deep integrations to hundreds of apps, which can be accessed through multiple devices very safely and securely. Octa helps companies to modernize IT by enabling them to move faster automatically and even eliminate friction, build customer experiences by delighting them with personalised and inherently secure applications and even prevent data breaches by establishing people as the new security perimeter. In simple words, Okta sets an identity standard which is independent and neutral. It is a platform which securely connects the right people to the right technologies at the right time. It provides instant access to all apps with a single sign on, provides an added level of authentication which prevents identity attacks, encourages lifecycle management, centrally manages a universal directory in your organisation and even controls and manages API access securely. ..show more

Keycloak is an open-source Identity and Access Management solution which provides modern applications and services to the users. The tool makes it easy to secure services and applications with little to no code. It lets users authenticate via Keycloak rather than using individual applications. This means that their applications don't have to deal with login forms, authenticate users or store users. Users don't have to login again to access a different application once they login to Keycloak from a particular app. Single-sign out allows users to logout once to be logged out of all applications that use Keycloak. Using Keycloak, companies can enable login with social networks very quickly through the admin console. All that is required is social network selection; there is no code or application change. Administrators can centrally manage all aspects of the Keycloak server, like enabling and disabling various features using the admin console. Keycloak also allows them to configure identity brokering and user federation. ..show more

Features

API Access Management Ensures that calls with authenticated access can enter APIs

Access Request Management Helps to view and manage access requests submitted by the personnel

Account Management Helps to manage user accounts within organisations

Compliance Management Helps in making an assessment of risks, ensures policy comprehension and that policies/procedures are being followed

Multi-factor Authentication Uses more than one method to verify a user's identity for a login

Password Management Enables the administrator to manage, authenticate and reset passwords

Passwordless Login Allows to login without password using other means of verification, e.g. SSH keys

Role Management Helps regulate access to systems, based on individual roles

Single Sign-On (SSO) Permits one set of login credentials to access multiple applications

Social Sign On Allows users to sign on using credentials of social networking services

User Activity Monitoring Monitors and records user activities in the enterprise

TECHNICAL DETAILS

Access Monitoring

24/7 (Live rep)

Business Hours

Online

Contact Number/Address

San Francisco, California / +1-800-219-0964

N/A

API

Deployment

SaaS/Web/Cloud

Mobile - Android

Mobile - iOS

Mobile - Windows

Mobile - BlackBerry

Installed - Windows

Installed - Mac

Customers

Individuals

Freelancers

Large Enterprises

Medium Business

Small Business

Pricing

Pricing Model

Free Trial

Freemium

One-time license

Open-source

Subscription

Quotation Based

Plans

Single Sign-On
$2 /User/Month

Features

  • Okta Integration Network
  • Okta ThreatInsight
  • Desktop and mobile SSO (cloud & on-prem apps)
  • Security Question
  • Email as a factor
  • 3rd party MFA integration
  • Group and app access policies
  • RADIUS authentication
  • PIV card authentication
  • IdP discovery
  • Custom org URLs (e.g. company.com/login)
  • Okta sign-in widget
  • Local language support
  • Unlimited integrations to AD & LDAP
  • SIEM integration
Adaptive Single Sign-On
$5 /User/Month

Features

  • Includes features of Single Sign-on plan
  • Location context
  • Device context
  • Network context
  • Risk-based Authentication
Multi-factor Authentication
$3 /User/Month

Features

  • Security questions
  • Okta Verify OTP
  • Okta Verify Push
  • Email as a factor
  • SMS
  • Voice
  • U2F
  • Third-party factors
  • Windows Hello
  • Apple TouchID
  • Specified IP zones
  • Okta ThreatInsight
Adaptive Multi-factor Authentication
$6 /User/Month

Features

  • Includes features of Multi-factor Authentication plan
  • New city, state, or country
  • New geo-location
  • Impossible travel patterns
  • New device
  • Managed device
  • New IP
  • Specified IP zones
  • Network anonymizers
  • Okta ThreatInsight
Universal Directory
$2 /User/Month

Features

  • Cloud directory
  • Unlimited directory integrations (AD/LDAP & apps)
  • Unlimited custom user attributes and fields
  • Custom mapping and transformation
  • Cloud-based LDAP authentication
Lifecycle Management
$4 /User/Month

Features

  • Auto provisioning / deprovisioning for OIN apps - Unlimited OIN Apps
  • Directory integration with AD or LDAP
  • Complete AD synchronization for Office 365
  • App access and provisioning tied to lifecycle states
  • Create and deactivate accounts in applications
  • Manage entitlements
  • Group discovery, matching, push, and updates
  • Automation
  • Access request workflows
  • Deprovisioning workflows
  • Access audit reports
  • Recent unassignments report
  • Rogue accounts report
  • APIs for full customization
  • Customizable directory for users groups and devices
  • Manage lifecycle states
  • Attribute mapping and transformation
Advanced Lifecycle Management
$6 /User/Month

Features

  • Includes features of Lifecycle Management plan, plus
  • Automation
  • Graphical interface for building identity processes
  • Conditional & branching logic without code
  • Flexible triggers (e.g. from Okta, other apps, or scheduled)
  • Access to a library of pre-built connectors
  • Access to a library of pre-built templates
  • Built-in standards-based provisioning (SCIM)
  • On-prem provisioning SDK
  • Advanced Mastering add-on: $2
API Access Management
$2 /User/Month

Features

  • Application and directory integrations
  • OAuth 2.0 and OIDC compliant
  • Dynamic client registration
  • Central access and authorization management
  • User consent
  • Customizable scopes and claims
  • Customizable authorization servers
Advanced Sourcing add-on
$2 /User/Month

Features

  • HR-driven IT provisioning (e.g. Workday and UltiPro)
  • Mastering from select OIN apps (e.g. Salesforce and GSuite)
  • Mastering from on-premises apps via on-premises provisioning agent
  • Mastering from CSV Directory
Advanced Server Access
$15 /Month

$15 per server per month billed monthly

Features

  • Supports mixed environments: AWS, Azure, GCP, and on-premises
  • End-to-end lifecycle management of local Linux and Windows machine accounts
  • Seamless SSO and MFA authentication built into your SSH and RDP workflows
  • Backed by a Programmable CA that mints just-in-time, single-use client certificates
  • Client Application for local SSH and RDP integrations, and dynamic device binding
  • API allows for custom authentication and management workflows
Access Gateway
$3 /User/Month

Features

  • Number of app integrations: Included
  • Header-based applications
  • Kerberos/IWA applications
  • On-premise applications – such as Oracle E-Business Suite, PeopleSoft, and Sharepoint
  • Custom web apps, pages, and web portals
  • Number of policies: Unlimited
  • Application policies
  • Custom header variables
  • Authorization policies
  • Access Gateway servers: Unlimited
  • Datacenters: Unlimited
  • Networks and hosts: Unlimited
Light (Workflows)
$4 /User/Month

Light (Workflows)

  • $4 per user per month
  • up to 50 flows
  • Access to all Okta Workflows connectors
  • Access to all Okta Workflows templates
  • Access to all Okta Workflows features, functions
One App
$14000 /Year

Features

  • User capacity - Tiers available up to billions of MAUs
  • Service level assurance
  • Support
  • Authentication
  • Authorization
  • User management
  • Basic multi-factor authentication
  • Customizable email templates and domains
  • Customizable sign-in and registration widget
Medium (Workflows)
$5 /User/Month

Medium (Workflows)

  • $5 per user per month
  • up to 150 flows
  • Access to all Okta Workflows connectors
  • Access to all Okta Workflows templates
  • Access to all Okta Workflows features, functions
Enterprise
$36000 /Year

Plan Features

  • Custom applications - Unlimited OIDC and SAML applications
  • Includes features of One App plan
Unlimited (Workflows)
$6 /User/Month

Unlimited (Workflows)

  • $6 per user per month
  • unlimited flows
  • Access to all Okta Workflows connectors
  • Access to all Okta Workflows templates
  • Access to all Okta Workflows features, functions
View Price Page
Keycloak
Custom

Features

  • Single-Sign On
  • Standard Protocols
  • Centralized Management
  • Adapters
  • LDAP and Active Directory
  • Social Login
  • Identity Brokering
  • High Performance
  • Clustering
  • Themes
  • Extensible
  • Password Policies
View Price Page

SCREENSHOTS

Okta Screenshots
View 1 screenshot(s)
Keycloak Screenshots
View 6 screenshot(s)

INTEGRATIONS

  • Slack
  • Salesforce
    NA

ALTERNATIVES

Top alternatives to Okta

CyberArk PAS
CyberArk PAS
Cognito
Cognito
Apex Ping
Apex Ping
OneLogin
OneLogin
SailPoint IdentityIQ
SailPoint IdentityIQ

Top alternatives to Keycloak

WSO2 API Manager
WSO2 API Manager
Gluu
Gluu
Azure AD
Azure AD
Cognito
Cognito
Auth0
Auth0