We performed a comparison between CyberArk Privileged Access Manager and ForgeRock based on real PeerSpot user reviews.
Find out in this report how the two Access Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It enables us to secure accounts and make sure they are compliant."
"CyberArk has allowed us to get the credentials and passwords out of hard-coded property files."
"The product has allowed us to improve both the management and access to privileged credentials, while also creating a full audit trail of all activities happening within isolated sessions of all tasks and activities taking place within the solution."
"I'm no longer the product owner for PAM, but I can say that the most useful feature is the vault functionality, which keeps all your passwords secure in a digital vault."
"Technical support is very helpful whenever we have any questions."
"The solution is scalable."
"The fact that I can put my vault here in a central location on one net for example, and I'll have a CPM in California, a CPM in Texas, a CPM in New York, a CPM in Florida, and actually be able to grow with my company and not necessarily have to continue to grow my vault until I get to a certain number accounts - yet I can still manage everything across the country, if not the world - I love that. I love the flexibility and the capability of being able to pull those components out."
"Ensures accounts are managed according to corporate policies."
"The most valuable features are that it is easy to manage and it's stable."
"We have found the identity and access management tools in the solution to be particularly useful for our organization."
"I like the intelligent authentication feature."
"ForgeRock has CIAM, which other products didn't have, and they have DevOps ready."
"The product is easy to set up."
"The most valuable features of ForgeRock are social login and data protection."
"ForgeRock is an extensive product with many functionalities and capabilities, much more than many other tools combined."
"The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent."
"I don't know if "failed authentication" is a glitch or if that was an update... However, since we are the CyberArk support within our organization, we need to know that the password is suspended and we won't know that unless we have the ITA log up. So when a user calls and says, "Hey, I'm locked out of CyberArk, I can't get into CyberArk," we have to go through all of these other troubleshooting steps because the first thing we don't think of right now is, "The account is suspended." It doesn't say that anymore."
"More than the product itself, there is room for improvement in the documentation. The documentation should be very detailed and very structured. It has a lot of good information, on one level, but I feel that it could be more elaborate and more structured."
"The admin interface of the Password Vault Web Access (PVWA) is moving from an old style (the classic interface) to a new style (the v10 interface) and unfortunately, this process is quite slow."
"PAM could be more user-friendly and CyberArk could update the documentation to include more real-world examples. You have to learn it yourself through trial and error. In particular, the online documentation should have more information about troubleshooting."
"CyberArk has a lot on the privileged access side but they have to concentrate more on the application side as well."
"For users to access a system via CyberArk Privileged Session Manager, a universal connector needs to be coded in a language called AutoIT and its support for web browsers is so-so. Other products like Centrify have browser plugins that can help automate the process when using their products."
"CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms."
"This is probably a common thing, but they do ask for a lot of log files, a lot of information. They ask you to provide a lot of information to them before they're willing to give you anything at all upfront. It would be better if they were a little more give-and-take upfront: "Why don't you try these couple of things while we take your log files and stuff and go research them?" A little bit of that might be more helpful."
"The solution could improve by adding more advertising and marketing."
"They should improve the solution by include reporting."
"I think the upgrade process is sometimes a little complicated and there are failures that occur."
"The only problem with ForgeRock is that it is derived from an open-source product, so sometimes it's a bit unstable."
"We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced."
"We raised tickets asking for improvements, but sometimes we don't get the proper solution. They are responding, but the ticket is open for weeks and weeks. For some issues, we don't get a satisfactory solution or the solution doesn't work."
"The solution's documentation is not very good, and they do not give more details."
"The solution's deployment should be made easier."
More CyberArk Privileged Access Manager Pricing and Cost Advice →
CyberArk Privileged Access Manager is ranked 1st in Privileged Access Management (PAM) with 144 reviews while ForgeRock is ranked 5th in Access Management with 27 reviews. CyberArk Privileged Access Manager is rated 8.8, while ForgeRock is rated 8.0. The top reviewer of CyberArk Privileged Access Manager writes "Lets you ensure relevant, compliant access in good time and with an audit trail, yet lacks clarity on MITRE ATT&CK". On the other hand, the top reviewer of ForgeRock writes "Governance and access management solution used for multi-factor authentication that is outdated with an unresponsive UI". CyberArk Privileged Access Manager is most compared with Cisco ISE (Identity Services Engine), Microsoft Entra ID, Delinea Secret Server, WALLIX Bastion and One Identity Safeguard, whereas ForgeRock is most compared with SailPoint Identity Security Cloud, Ping Identity Platform, Microsoft Entra ID, Auth0 and Okta Customer Identity. See our CyberArk Privileged Access Manager vs. ForgeRock report.
See our list of best Access Management vendors.
We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.