We performed a comparison between CyberArk Identity, IBM Tivoli Access Manager [EOL], and Symantec Siteminder based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, Auth0 and others in Single Sign-On (SSO)."The most valuable features of CyberArk Identity are its ability to control access to administrative staff."
"The tool helps with authentication. It acts as an MFA for any kind of privileged access that occurs in our organization."
"The solution helps with auditing, and monitoring, and integrates with Splunk for log analysis. User activity logs are captured in CyberArk Identity and sent to external tools like Splunk for analysis and monitoring."
"The initial setup of CyberArk Identity was straightforward."
"The user self-service program and the Office 365 provisioning service feature are the most valuable. It is a very easy and feature-rich solution that gives priority to the users and security."
"CyberArk Identity is a mature product."
"The user identification is simplified, and managing user privileges, whether adding or revoking them, is also quite straightforward when utilizing CyberArk SaaS."
"The most valuable feature of CyberArk Identity is the adaptive interface."
"The Verify feature: A push method which customers are going for."
"The integration effort with the end application is quite straightforward and easy."
"Single Sign-On functionality is valuable because the core purpose of the product is to allow universal (or bespoke) SSO for application suites."
"SAML 2.0."
"OAuth 2 is now the de facto standard for API protection and scoped authorized delegation. IBM TAM now supports OAuth 2 and can act as fully compliant OAuth 2 authorization server."
"It is very scalable. We have a very large customer base: 75 million customers."
"It has considerably reduced the amount of time that new users would take to join into the organization. Previously, it was a lengthy, manual process because it's a very secure environment, where they need to verify the user before they can actually grant him a user-ID and password. Integrating with the built-in custom application, and exposing CA Single Sign On to the internet, we were able to get the employees onboard. The time that we gained was: previously it would generally take from four to eight weeks for each employee, we brought it to one to two days."
"The most valuable feature is the integration with the Active Directory."
"It has the ability to authenticate and authorize users. It is the main feature for our security."
"As our identity model continues to mature, probably the Federation is most valueable."
"The solution is easy to use for our managers."
"It provides the breadth and the width to provide solutions for the different kinds of technologies which we have."
"You can quickly deploy the entire product with a basic config within couple of hours."
"I'm not sure what needs improvement. It is a good platform."
"In terms of a governance platform, it's worth noting that CyberArk doesn't offer a particularly strong one."
"The solution could be easier to use and I found it to be very complex involving many steps."
"They can include the Mobile Device Management (MDM) feature."
"The solution's difficulty in gaining skill sets should be improved because it's a vertical product."
"CyberArk Identity's GUI is an area with certain shortcomings that need improvement."
"In terms of general user feedback, the more security you put in front of a user, the more they complain. So usability and the user experience are always a challenge. So there's always room for improvement."
"The OpenID features could improve in CyberArk Identity."
"Looking at their roadmap, they have a broad grasp of the security features which the industry needs."
"Multi-factor authentication with social integration needs to improve."
"The self-service portal needs improvement."
"The profiling element is incredibly robust, but also equally as complex, it requires an off-site course to be able to understand the context or the plethora of options available."
"An Amazon Machine Image (AMI) for the newer appliance versions for hosting the virtual appliances on AWS will help."
"The support could be faster."
"The initial setup was complex, painful. But that is to be expected of any new setup. When you're a big bank like us, any kind of migration to a new product is hard. I expect it to be painful, and it was painful. But it's not something that you can avoid."
"The Federation part of CA Single Sign On, it's a bit complex to implement because it involves the SSL certificates, exchange of certificates, and lot of technical details. The documentation misses some important parts of this, so that's the reason it took some time for us to go live."
"As we are moving in to the mobility space, this is where we really see SiteMinder and their other product really come together to provide a solution base to a different area where the IoT is coming, the different business communications are happening. All of those things require authentication and we really want to see this product grow into that role."
"We're currently unable to find information about if the solution can do a full implementation with SQL. Some better and more accessible documentation for new users or those curious about the product would be helpful."
"They need to make configurations easier, and not have the engineer having to guess what will happen when he changes a particular setting."
"The tech support has not been very good for us so we don't use them anymore. We have had some issues. Nobody is perfect."
"Better documentation. I went through some sessions on single sign-on for version 12.7."
More IBM Tivoli Access Manager [EOL] Pricing and Cost Advice →
Earn 20 points