We performed a comparison between CyberArk Privileged Access Manager, Gemalto Protiva, and OneLogin by One Identity based on real PeerSpot user reviews.
Find out what your peers are saying about CyberArk, Delinea, BeyondTrust and others in Privileged Access Management (PAM)."All of the features of CyberArk Privileged Access Manager are valuable."
"The most valuable feature is Special Monitoring."
"Because we now have the ability to grant access to management utilities like DNS Manager, Sequel Studio, and MMC, in a secure fashion, without system admins being required to continually reenter various passwords that are stored who knows where, it has really made the system admin's job much easier. It has made the PSM's job much easier. It has made the auditor's job and the security team's job and the access manager's job significantly easier, because we're able to move much more quickly toward a role-based access management system, and that is really streamlining the whole onboarding/offboarding management process."
"The product has allowed us to improve both the management and access to privileged credentials, while also creating a full audit trail of all activities happening within isolated sessions of all tasks and activities taking place within the solution."
"The technical support is good."
"We have demoted a lot of domain admins and taken a lot of that away from people, giving it a shared account structure."
"The biggest feature is the security of the overall solution. It's very secure. The vaulting technology and the number of security layers involved in the vault, where privileged accounts are actually stored, is the heart of the solution."
"Technical support is very helpful whenever we have any questions."
"The most valuable feature for us is the ability to use Active Directory groups as virtual containers instead of domains because it means that we can control our access groups better."
"The solution's ability to save and manage of all my passwords is great."
"Ease of integration with AD."
"It's super useful to have a single pane of glass when it comes to access management."
"The single sign-on and the fact that we can integrate everything in one place and control from there were valuable features of this solution."
"The most valuable feature is the ease with which we can manage the sign-on feature."
"Documentation."
"The solution allows the user to search logs based on a specific time."
"When it comes to access management, the solution's single pane of glass is extremely important. The single pane of glass for access management enables collaborative work between IT and security. We have access to certain applications that require device trust. Based on the role, we can access those applications through OneLogin Desktop."
"The initial setup has room for improvement to be more straightforward."
"The greatest area of improvement is with the user interface of the Password Vault Web Access component."
"The PTA could be improved. Currently, companies often have multiple domains and sometimes it's difficult to implement CyberArk in this kind of infrastructure. For example, you can add CPM (Central Policy Manager) and PSM (Privileged Session Manager and PVWA (Password Vault Web Access) for access, but if you want to add PTA (Privileged Threat Analysis) to scan Vault logs, it is difficult because this component may be adding multiple domain environments."
"The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time."
"The web access piece needs improvement. We have version 9.5 or 9.9.5, and now we have to upgrade to version 10."
"If we could have some kind of out-of-the box feature that you can simply say "no" so they don't have to go into a development mode, that would a really helpful feature."
"Having a centralized place to manage the solution has been something that I have always wanted, and they are starting to understand that and bring things back together."
"We had an issue with the Copy feature... Apparently, in version 10, that Copy feature does not work. You actually have to click Show and then copy the password from within Show and then paste it. We've had a million tickets and we had to figure out a workaround to it."
"The user interface needs improvement."
"This product doesn't necessarily provide us with all of the functionality that we need, such as being able to share passwords with external users."
"The tool must be made more robust."
"having a RESTful implementation instead of RPC would have been more desirable."
"They have downtime twice a year or once in six months. During the downtime, the SSO page did not come up. When users wanted to get to their email, they were redirected to the OneLogin page, but the page did not come up, and MFA and logins failed. It completely crippled us."
"I would like better reporting from SmartFactor Authentication when a user is not able to sign in due to a new location, new IP, new device, et cetera."
"While I initially used OneLogin's desktop feature to extend SSO, I discontinued it two years ago due to limitations."
"I'd like OneLogin to have a customization section that displays the company's offerings, categorized by different topics."
"In terms of managing the users on a large scale, it would be easier if they had some kind of user management portal."
More CyberArk Privileged Access Manager Pricing and Cost Advice →
Earn 20 points