Onelogin

Category:
IDaaS
Score:
78
Onelogin

OneLogin is a cloud identity and access management solution that enables enterprises to secure all apps for their users on all devices.

Gartner Score:
The Forrester Wave™:
29.79
62.4
San Francisco, CA, USA
251 - 500
Total Funding:
$ 175.2M
Founded year
2009
Administration
Password Policy Enforcement
Administration Console
Ease of connecting applications
Self Service Password Administration
Platform
Third Party Web Services support
Multi-Domain Support
Cross Browser support
Reporting
Authentication Options
Authentication User experience
Supports Required Authentication
Multi-Factor Authentication
Federation/SAML support (idp)
Supports Required Authentication
Federation/SAML support (sp)
Access Control Types
Local Access
ms.png
Alternative Solutions
Microsoft Online
AWS Directory Service
OKTA
Ping Identity
75
77
77
75
Access
87
Federated Identity Management
OAuth support
OpenID support
SAML support
100
true
true
true
Brute-force Protection
Protection from multiple failed logins
Utilizes CAPTCHA
Multi-factor Authentication
Multi-factor authentication - Security Questions
Multi-factor authentication via Biometrics
Multi-factor authentication via Mobile App
Multi-factor authentication via Others
Multi-factor authentication via secondary email
Multi-factor authentication via Smartcard
Multi-factor authentication via SMS
Multi-factor authentication via USB Token
100
true
true
100
true
true
true
true
true
true
true
true
Password Quality Rules
Does not save logged in session
Force change of password after some time period
Provides password reset and recovery
Requires minimum password length
Requires strong password format
Access Control
Controls IP range from which login is allowed
Supports device restrictions
Enterprise Identity Integration
Active Directory integration
LDAP integration
Account Protection
Encrypted account credentials
100
true
true
true
true
true
100
true
false
100
true
true
100
TRUE
Administrative
62
Admin Audit Trail
Tracks all administrator activity
Policies
Content security policies
Policy configuration and enforcement
Role Based Access Control
Role based access control
User Audit Trail
Tracks all end-user activity
100
TRUE
100
true
true
100
TRUE
100
TRUE
Business
75
Financial Stability
Type of Company
75
Funded Startup
Compliance
57
Compliance Certifications
COBIT
CSA STAR Self-Assessment
FedRAMP High Baseline
FedRAMP Low Baseline
FedRAMP Moderate Baseline
FISMA
GAAP
HIPAA
ISAE-3402
ISO 27001
ISO 27017
ISO 27018
ITAR
NIST SP 800-53
PCI
Privacy Shield (GDPR, CCPA)
Safe Harbor
SOC I type 2
SOC III
SOX
SSAE 16 SOC2 Type II
TRUSTe
57
false
true
false
false
false
false
false
NA
true
true
true
true
false
true
Partial
Both
false
true
false
NA
true
true
Data
87
Data at Rest Encryption
50
Encryption keys in control of the Enterprise
NA
Encrypts data at rest
false
Data in Motion Encryption
90
Does not involve blockchain activities
true
Not at risk to CloudBleed vulnerabilities
true
Not Vulnerable to CRIME
true
Not Vulnerable to DROWN
true
Not Vulnerable to FREAK
true
Not Vulnerable to Logjam
true
Not Vulnerable to OpenSSL Heartbleed defect
true
Not Vulnerable to Poodle SSLv3
true
Not Vulnerable to Poodle TLS
true
SSL Certificate Chain
*.onelogin.com, COMODO RSA Domain Validation
SSL certificate not expired
true
SSL certificate strength
2048 bits or greater
SSL key strength
Less than 256 bits
SSL used for data in motion
true
Supports HTTP2
false
Supports SSLv2
false
Supports SSLv3
false
Supports TLS Secure Renegotiation
true
Supports TLS_FALLBACK_SCSV
false
Supports TLSv1
true
Supports TLSv1_1
true
Supports TLSv1_2
true
Supports TLSv1_3
false
Valid SSL Certificate Name
true
Data Sharing Controls
100
Controls sharing with external users
NA
Controls sharing with internal users
true
Data Handling
67
Backup data centers
TRUE
Customer data not analyzed for ad targeting
false
Customer data not analyzed for behavior mining
false
Data not stored on mobile for offline access
true
Encrypted backup
Unknown
Offline data encrypted or otherwise protected
NA
Provides for backup/export of customer data
true
Requires or stores passwords of 3rd party services
FALSE
REST API Activity Log Retrieval Method
Pull
EST API Activity Log Scope
Per-User
REST API for Activity Logs
true
.REST API Support
true
Restrict opening files in external apps on mobile
false
HTTP Security Headers
100
HTTP Content-Security-Policy
NA
HTTP Public Key Pinning Extension
NA
HTTP STS
NA
HTTP X-Permitted-Cross-Domain-Policies
NA
HTTP Security Headers.X-Content-Type-Options
NA
X-Frame-Options
NA
X-XSS-Protection
NA
Informational
40
Type of Service
Consumer oriented service
100
false
Enterprise oriented service
true
Type of Clients
Desktop client
Native mobile app
100
false
true
Web based service
true
External Integration
No third party integration
1
false
Service
52
Agreements
100
Provides DPA
NA
Provides SLA
true
Hosting Service
100
Data Center Locations
NA
Hosting Platform Type
true
Provider if hosted on the public cloud
true
Multi-tenancy Support
100
Separation of Customer Data
NA
Disaster Recovery & Business Continuity
100
Data Breach Notification
NA
Integration
40
Cloud providers integrations
AWS
AZURE
GOOGLE CLOUD
ALIBABA
ORACE
IBM
Cloud Service integrations
NETAPP
OFFICE 365
SALESFORCE
VMWARE
HPE
CISCO
Over alll SaaS integrations score
Other Functionalities
eDiscovery
Data archiving score
OS migration score
RTO score
Ransomeware recovery score
On-premise integration
false