We performed a comparison between CyberArk Identity and LastPass based on real PeerSpot user reviews.
Find out in this report how the two Single Sign-On (SSO) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features of CyberArk Identity are its ability to control access to administrative staff."
"The user identification is simplified, and managing user privileges, whether adding or revoking them, is also quite straightforward when utilizing CyberArk SaaS."
"The integration capabilities, ability to integrate CyberArk into the overall IBB strategy of our current clients."
"The initial setup is straightforward. It takes me up to an hour and a half."
"The initial setup of CyberArk Identity was straightforward."
"The feature that we find most valuable is the ability to integrate multiple IDs for on-premises Active Directory."
"I like the RBAC (Role-Based Access Control). It basically involves defining various roles, and then simply assigning those roles to users."
"CyberArk Identity is a mature product."
"The shared folders is an important feature. It's the primary feature we use. Also, the ability for LastPass to autofill and hide the passwords, so we don't have to keep changing passwords every time a person leaves, is valuable."
"One feature that is really important to us is the ability to create secure notes."
"Tech support has been good. We haven't needed it much, because it is not a complex application. There is not that much you have to do with it."
"Scalability is fine, no issues with that, especially now that they have added different user-level permissions. That has made it a lot easier to delegate out certain features to have other people do."
"It is easy to use."
"It's always hard to put a value on return on investment. You avoid one breach and it's paid for a million times over. We got a penetration test company internally, just to see how secure our network is, and there happened to be one bit of software that had been overlooked by an external company that managed it. It hadn't been upgraded so that managed to get them into the network. They would've been able to access through the test thing a file that we had previously. If that was a real-life scenario they would have been able to get into our network and get full access to our organization's passwords. If they did get in, they would have gotten access to the cloud. The ROI we see is that we are completely secured compared to what we had previously where there was a vulnerability."
"The initial setup for this process is straightforward and extremely easy. It just works."
"Reduction in number of sensitive passwords stored insecurely on local systems."
"We would like to see an improvement in the ability to manage mobile devices."
"The OpenID features could improve in CyberArk Identity."
"In terms of general user feedback, the more security you put in front of a user, the more they complain. So usability and the user experience are always a challenge. So there's always room for improvement."
"More integrations would be better."
"In terms of a governance platform, it's worth noting that CyberArk doesn't offer a particularly strong one."
"The product needs to leverage the cloud more, especially in the financial sector, where cloud adoption might be limited. Proper reporting within the cloud is essential. The tool should be more user-friendly to expedite access for users. The current agent-based system poses challenges if a user loses access to the server, making tasks difficult to perform. It should also improve technical support."
"The solution's difficulty in gaining skill sets should be improved because it's a vertical product."
"The solution could be easier to use and I found it to be very complex involving many steps."
"We have issues from time to time where, for some reason, it just keeps auto logging-out the user and then, the next day, they'll come in and it will work just fine."
"I also don't like the add-in for Internet Explorer and Google Chrome, because when you do the add-in, you can actually save that to your credentials in your IE, and the problem is, if I left my screen open, or any of the IT people leave their screen open someone could come up and access all their credentials in LastPass without having to put a password in within your own network. I don't like that functionality. We've banned that from any of our staff adding that as an add-in because we see that as a security risk."
"The ability to set up an account expiration limit/date would be very useful."
"LastPass has a problem syncing the passwords to all of the users."
"Right now we have two products; there is the password manager and there is the authenticator app. Ideally, these should be fully integrated and support better handling of two-factor authentication or any other authenticator data."
"I would like to be able to reduce the log out time of the session."
"It is not super feature laden. It does not stand out versus the competition."
"One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself."
Earn 20 points
CyberArk Identity is ranked 9th in Single Sign-On (SSO) with 17 reviews while LastPass is ranked 22nd in Single Sign-On (SSO). CyberArk Identity is rated 8.2, while LastPass is rated 7.4. The top reviewer of CyberArk Identity writes "Allows Linux and Unix administrators to login with single password ". On the other hand, the top reviewer of LastPass writes "Straightforward to set up, good support, intuitive to use, and offers good value for the cost". CyberArk Identity is most compared with Microsoft Intune, CyberArk Privileged Access Manager, Microsoft Entra ID, SailPoint IdentityIQ and Salesforce Identity, whereas LastPass is most compared with Azure Key Vault, BeyondTrust Password Safe, HashiCorp Vault, Keeper and 1Password. See our CyberArk Identity vs. LastPass report.
See our list of best Single Sign-On (SSO) vendors.
We monitor all Single Sign-On (SSO) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.