What are the poors and cons for a tool like empowerID ? is there any alternative

Posted on 2015-01-20
Last Modified: 2016-04-22
Hello ,

For those of you who are working on identification,  is there an alternative to the tool : empowerID ?

what are the benefits on using empowerID, what are the best solutions and those that would better be avoid.

thanks in advance for all your inputs.

Question by:toshi_
LVL 63

Accepted Solution

btan earned 500 total points
ID: 40561097
probably the question to ask is also the objective for the identity access management (IAM) should be protecting which of your key asset and if uniform single identity for user matters and if it is allowed to be access the key asset from anywhere and anytime. Cloud IAM is already becoming a norm with resource "parked" into the AWS, MyCloud,, etc as well as collaborative business function using Office365 or Google suite...user wants to reach each w/o hassle of remember another new userid and too many complex password (multi factor is recommended of course) and also leading to "user friendly" single sign-on (SSO), on premise support...if the IAM suite this few case, it does stand a chance against other candidates.

Things to avoid is really how the IAM handles privileged accounts, provide timely audit trails of access and administrative function, vulnerability patching at systems, handling of breach credentials vs forgotten password use case...these can be killer in operation if there isn't a straight off approach - you cannot just depends on automated self help user help desk at times for norm user to follow up on required investigation for their accountability trails during the breach or their credential is compromised and used for something bad ...The caveat is the legal binding with IAM in the cloud for this identity as a Service tends to retain as the identity provider and federate to IAM in the cloud to ensure consistency and trust chain is maintain with other service providers..readily able to produce compliance report for account reviews..

Having said all those above, the question is then  does EmpowerID fits into those 2 paras above. The latter is comprehensive itself having key features like Directory neutral federation (AD, LDAP, SQL, etc), Multifactor authentication (including Smartcard, OATH etc), ready list of out-of-box authentication providers (including AD, social credentials like Salesforce, Twitter etc. etc.), for s/w interface providing identity claims generation, transformation and issuing (leverage full power of C#, Web Services), equip with security for protecting sensitive data leveraging claims level encryption and also SSO for non-Microsoft applications with support for commonly used standard OAuth 2.0, SAML 2.0 ...maybe this comparison may not be the best since it comes from EmpowerID itself but do serves some purpose for kickstart any "debate"

For its "bad" I will say it is cost and the learning curve to maintain it Enterprise wide with separate of duties and overdoing the granularity of roles - do not have single superuser but consider many admin based on need to and role basis with least privileges...Alternative wise, this has some good listing on the incumbent and upcoming (EmpowerID falls into the this) and also their respective "lackings"...Okta and Symantec O3 are strong contenders

I would say IAM should have some support and mentioned for mobile device management aspect too..but not widely make aware by these IAM ..

Expert Comment

ID: 41561499
You might find real user reviews for EmpowerID on IT Central Station to be helpful with answering your questions. This user writes that he cannot add users to more than one group at a time, but "it allows for self-service which means quicker turnaround for end-user support." You can read the rest of his review here:

As for alternatives, members of the IT Central Station compare EmpowerID most often to Oracle Identity Manager. You can take a look at this direct comparison between these two solutions from the IT Central Station user community here:

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to choose hardware firewall 5 60
exchange, email gateway 2 50
ICACLS "No mapping between account names and security IDs was done" 12 130
Price for Fiber 13 26
If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
How do we balance the user experience (UX) with reasonable security measures? It can be done, if you keep these fundamentals in mind.
Sending a Secure fax is easy with eFax Corporate ( First, just open a new email message. In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question