idpcost.com
Memo
To: IT / Security buyer evaluating OneLogin
From
idpcost.com
Re
OneLogin end-to-end cost analysis
Source
https://www.onelogin.com/pricing

OneLogin

live verifiedOne Identity · Per-user tiered. No annual minimum stated on the page.

OneLogin renamed its tiers in 2025-26 (Standard → Basic; the older Advanced tier removed). Now owned by One Identity. Cheaper than Okta at the entry point and supports passkeys (WebAuthn including device-bound, synced, and cross-device passkey flows).

1.Year-1 TCO breakdown

Representative buyer: 200 employees, 30 SaaS apps, full SAML + MFA + lifecycle automation, 90-day audit retention.

Licensing (200 seats)OneLogin Advanced + MFA: 200 × $8/mo × 12 = $19,200/yr. Professional tier: $12/mo = $28,800/yr.
SAML taxAdvanced tier ($4/user/mo SSO + MFA at $4) is the minimum for SAML. Lower 'Starter' tier excludes SAML.
Audit retentionIncluded in Advanced tier. Retention 30 days standard.
MFA$4/user/mo MFA module; bundled in Advanced.
Year-1 TCO~$19K-$29K Year-1 TCO for 200-employee deployment.

2.The hidden cost category for this IdP

Hidden cost

**Post-acquisition uncertainty is the structural risk.** One Identity acquired OneLogin in 2021; OneLogin remains a distinct product but roadmap clarity has been thin. Some functionality has been deprioritised in favour of One Identity's broader IGA suite. The hidden cost: buyers committing to OneLogin in 2026 face roadmap risk that could force migration in 2027-2028.

3.Migration cost out of OneLogin

Migration off OneLogin runs $50K-$140K for 200-employee deployment. SAML reconfiguration per app, SCIM rebuild. Simpler than Okta migration because OneLogin doesn't have the same custom-workflow complexity.

4.The negotiation lever

Acquisition-uncertainty discount. OneLogin sales acknowledges the One Identity acquisition has created customer hesitation; multi-year commits get steeper discounts (25-35% off list) than they would have pre-acquisition. The lever: leverage the roadmap uncertainty to negotiate aggressively at signing.

5.Vendor tier reference

TierPer-user (USD/mo)Features
Basic$3SSO + directory
Business$10Adds MFA, custom branding, advanced policies
EnterpriseQuoteQuote-only — SmartFactor, threat-aware MFA, custom SLA

Source: https://www.onelogin.com/pricing · Verified 2026-06-02 · For vendor-published comparison view: idppricing.com/idp/onelogin/

Other IdPs: Okta Workforce Identity · Microsoft Entra ID · JumpCloud · Auth0 · Ping Identity · Duo (Cisco) · Authentik