Start with Identity
IAM Platform

Entrust

Founded 1969Shakopee, Minnesota, USAPrivateScore 4/5Evaluated 2026-06-19Website ↗

Capability scores

Methodology →
Authentication
4.0
SSO & Federation
3.5
Authorization
3.0
Lifecycle & Provisioning
3.5
MFA & Passwordless
4.0
Governance & Audit
3.5
Developer Experience
3.0
Deployment Flexibility
4.5
Pricing Transparency
2.5
Support & Ecosystem
4.0

Scored 0–5 against a published rubric. Independent analysis, no vendor sponsorship.

Overview

Entrust is a long-established security vendor spanning IAM, PKI, payment-card issuance, and identity verification. Its 2024 acquisition of Onfido pulled document and biometric verification into the portfolio, positioning it as a credential-to-onboarding player rather than a pure access-management vendor. It competes on the combination of identity, certificates, and verification under one roof more than on access-management depth against platforms like Okta or Ping Identity.

What it is good at

The strengths are credentialing, certificate and PKI depth, and hardware-backed trust, which suit governments and regulated enterprises that need strong identity assurance. Adaptive MFA and passwordless are solid, and the Onfido addition gives genuine document and biometric verification for high-assurance onboarding. For organizations that want issuance, credentials, and verification from a single accountable vendor, the breadth is a real advantage.

Where it falls short

The access-management layer is less developer-friendly than Okta or Microsoft Entra, authorization beyond role basics is thin, and the sheer breadth of the portfolio (PKI, cards, IAM, verification) can make deployments feel heavy and the product story diffuse. Buyers wanting a lean, API-first identity platform will find it more than they need.

Pricing

Quote-based and sales-led. Expect enterprise contracts and professional services rather than transparent per-user tiers. Model the full engagement with our TCO calculator.

Best for, and who should look elsewhere

Choose Entrust when you want identity, PKI, and verification under one roof in a regulated environment needing strong credentialing and hardware-backed trust. Look elsewhere if you want a developer-first, API-led platform or transparent self-serve pricing. See the IAM directory and the what is IAM guide.

Bottom line

A strong pick when you want identity, PKI, and verification together in a regulated environment, less so for a lean, API-first build.

By SWI Community Team · Last evaluated 2026-06-19

Independent, community-driven analysis. No vendor sponsorship. Compiled from public research and community input and verified on a best-effort basis, so details may be incomplete or out of date. Scores are opinions, not advice. Trademarks belong to their owners; mention does not imply affiliation or endorsement. See the full disclaimer, or send corrections to community@startwithidentity.com.