We performed a comparison between CyberArk Privileged Access Manager, NetIQ Identity Manager, and VMware Identity Manager based on real PeerSpot user reviews.
Find out what your peers are saying about CyberArk, Delinea, BeyondTrust and others in Privileged Access Management (PAM)."The solution is stable."
"Helped us meet our standards and requirements to help us comply with industry standards and banking regulations."
"On the EBB user side, we were able to secure all the server root passwords and admin for Windows. This was a big win for us."
"I appreciate the ease of use for support analysts."
"The most valuable feature of CyberArk Privileged Access Manager is the vault. I am satisfied with the interface and the documentation."
"The ability to develop and deploy applications with no stored secrets is very valuable."
"Its' quite stable."
"Because we now have the ability to grant access to management utilities like DNS Manager, Sequel Studio, and MMC, in a secure fashion, without system admins being required to continually reenter various passwords that are stored who knows where, it has really made the system admin's job much easier. It has made the PSM's job much easier. It has made the auditor's job and the security team's job and the access manager's job significantly easier, because we're able to move much more quickly toward a role-based access management system, and that is really streamlining the whole onboarding/offboarding management process."
"The most valuable features of NetIQ Identity Manager are the synchronization of different directories, such as Active Directory. We have many Active Directory systems, not only one."
"The access request management has improved significantly in terms of its user interface. What sets it apart from competitors like SailPoint is that it's an event-based solution rather than schedule-based. That's a key differentiator."
"I like the eDirectory feature."
"The most valuable feature of this solution has been the ability for us to integrate a lot of external systems, and the automatic transfer of a lot of identity information. Additionally, the customization is very good."
"The product is easy to use."
"The main value lies in the simplicity of implementation, as well as its customized look and feel."
"The most valuable features are Password Reset Alerts, Password Sync, and SQL connectors."
"The most valuable feature of NetIQ Identity Manager for identity synchronization is the ability to provide users with all necessary access on day one through automated provisioning, facilitated by approval workflows."
"The solution was easy to deploy."
"Zero Trust implementation is a great feature."
"Personally, VMware Identity Manager is useful for comparison purposes so that I can provide better solutions to my company's customers."
"The solution is stable."
"The most valuable feature is single sign-on."
"The most valuable feature is that it will use my credentials to access various parts of the infrastructure or other solutions, such as vRealize."
"It helps the end users to work on the road without needing to set up all kinds of VPN connections"
"The most valuable feature is the User Experience Designer, which has been very helpful for our project."
"I don't know if "failed authentication" is a glitch or if that was an update... However, since we are the CyberArk support within our organization, we need to know that the password is suspended and we won't know that unless we have the ITA log up. So when a user calls and says, "Hey, I'm locked out of CyberArk, I can't get into CyberArk," we have to go through all of these other troubleshooting steps because the first thing we don't think of right now is, "The account is suspended." It doesn't say that anymore."
"The solution needs better features for end users to manage their own whitelisting for API retrieval."
"Sometimes the infrastructure team is hesitant to provide more resources."
"For users to access a system via CyberArk Privileged Session Manager, a universal connector needs to be coded in a language called AutoIT and its support for web browsers is so-so. Other products like Centrify have browser plugins that can help automate the process when using their products."
"I'm not a fan of technical support with CyberArk. It's like jumping through red tape and hoops. Quite frankly, it's almost like when you call CyberArk you get the Help Desk or the level-one. I'm a level-one. I got the CCD, I know how to do the initial troubleshooting. When I call CyberArk it's because I can't figure the problem out. So I need a level-two, three, four. I don't need you to tell me, "Hey, open a ticket and then give me logs.""
"Some aspects of the administration need improvement, though they have recently made improvements to the API. However, the management with the interface and configuration are not so user-friendly. It has not changed much during all the years that CyberArk has been on the market. The management part, like platform management as well as PSM connectors definition and management, could be improved, even if it has already been done with the API."
"The continuous scanning of the assets is limited to Windows and Unix. We like to have the solution scan any databases, network devices, and security devices for privileged accounts. That would be very helpful."
"I would like to see better usability for non-technical people."
"We have another system that is using the SAML system, and we also integrate with Active Directory only. If NetIQ Identity Manager can integrate directly, we would not need to use the Active Directory directory."
"NetIQ Identity Manager could improve by updating the user portal, it is out of date."
"Areas for improvement are further enhancing the access granting process to reduce time and improve accuracy."
"The integrations must be made easier."
"There's no huge thing missing, because it's already comprehensive. Now and then, however, there might be a minor issue."
"If it could be operated in such a way that anybody could use it, with just the user interface, and there's no need for programming, then that would be a great improvement."
"The solution architecture is somewhat complex. For some components, the necessary resilience is not inherent."
"The interface is old and outdated, and the design software seems archaic."
"I would like to have better support for multi-cloud sessions."
"We have a lot of problems when it comes to integrating with Active Directory."
"The database gets corrupted when used in the cluster. Sometimes it works, sometimes it doesn't."
"The security features could always use improvement, although there has already been a huge improvement from years ago."
"vIDM could be improved with the multi-tenant capabilities that VMware tends to offer—features like customization branding and the integration of the app catalog based on the branding. Since the integration has been at top-level OGs, you were not able to then do rebranding if you were required to use specific user groups to highlight specific applications. At the time, I was personally opening feature requests for these things. I haven't worked with the latest release, so I don't know if these features were already deployed or not."
"There are a lot of difficulties whenever people have a lot of configurations in it, basically related to security certificate configurations and integration with VMware Horizon."
"The mobile SSO doesn't work as well on Android."
"I would like better integration for deploying programs with binary files."
More CyberArk Privileged Access Manager Pricing and Cost Advice →