We performed a comparison between CyberArk Identity and LastPass based on real PeerSpot user reviews.
Find out in this report how the two Single Sign-On (SSO) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The setup, via cloud, is simple."
"It has machine learning and can help clients to learn the environment and understand what is happening."
"The initial setup is straightforward. It takes me up to an hour and a half."
"The most valuable feature of CyberArk Identity is the adaptive interface."
"The initial setup of CyberArk Identity was straightforward."
"The integration capabilities, ability to integrate CyberArk into the overall IBB strategy of our current clients."
"The most valuable features of CyberArk Identity are its ability to control access to administrative staff."
"The user self-service program and the Office 365 provisioning service feature are the most valuable. It is a very easy and feature-rich solution that gives priority to the users and security."
"Scalability is fine, no issues with that, especially now that they have added different user-level permissions. That has made it a lot easier to delegate out certain features to have other people do."
"The stability has been rock solid. A couple of years ago, they were breached. However, if you had two-factor authentication enabled, it didn't affect you. We did, so it has been good."
"It is easy to use."
"Tech support has been good. We haven't needed it much, because it is not a complex application. There is not that much you have to do with it."
"Increased security around password management for teams and collaborative efforts with external vendors."
"This product helps keep us secure."
"It's always hard to put a value on return on investment. You avoid one breach and it's paid for a million times over. We got a penetration test company internally, just to see how secure our network is, and there happened to be one bit of software that had been overlooked by an external company that managed it. It hadn't been upgraded so that managed to get them into the network. They would've been able to access through the test thing a file that we had previously. If that was a real-life scenario they would have been able to get into our network and get full access to our organization's passwords. If they did get in, they would have gotten access to the cloud. The ROI we see is that we are completely secured compared to what we had previously where there was a vulnerability."
"Off-boarding of people is easy without changing shared account passwords."
"I'm not sure what needs improvement. It is a good platform."
"The solution could be easier to use and I found it to be very complex involving many steps."
"The product is not cheap, especially if you opt for an on-premise deployment requiring a complex server infrastructure. On the other hand, choosing the software as a service version simplifies infrastructure requirements but necessitates being online all the time."
"The OpenID features could improve in CyberArk Identity."
"There is room for improvement in documentation. The documentation could be more specific about the changes needed to achieve specific goals."
"In terms of general user feedback, the more security you put in front of a user, the more they complain. So usability and the user experience are always a challenge. So there's always room for improvement."
"We would like to see an improvement in the ability to manage mobile devices."
"CyberArk Identity could improve by having the ability to better manage the network, such as Cisco. There seem to be some issues in this area."
"It is not super feature laden. It does not stand out versus the competition."
"I would like to be able to reduce the log out time of the session."
"Its user interface should be better, and there should probably be more information about scalability."
"Our biggest issue over the years was around the stability of the LDAP sync to AD."
"Right now we have two products; there is the password manager and there is the authenticator app. Ideally, these should be fully integrated and support better handling of two-factor authentication or any other authenticator data."
"I struggle a little bit with the mobile app. As a browser extension, it works really well, and we are able to get to what we need to. However, on the phone, it's not quite as easy to navigate."
"The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass."
"One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself."
Earn 20 points
CyberArk Identity is ranked 10th in Single Sign-On (SSO) with 18 reviews while LastPass is ranked 22nd in Single Sign-On (SSO). CyberArk Identity is rated 8.2, while LastPass is rated 7.4. The top reviewer of CyberArk Identity writes "Allows Linux and Unix administrators to login with single password ". On the other hand, the top reviewer of LastPass writes "Straightforward to set up, good support, intuitive to use, and offers good value for the cost". CyberArk Identity is most compared with Microsoft Intune, CyberArk Privileged Access Manager, Microsoft Entra ID, Ping Identity Platform and Symantec Siteminder, whereas LastPass is most compared with Azure Key Vault, BeyondTrust Password Safe, HashiCorp Vault, Keeper and Devolutions Password Hub. See our CyberArk Identity vs. LastPass report.
See our list of best Single Sign-On (SSO) vendors.
We monitor all Single Sign-On (SSO) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.