The most valuable feature is the password Vault which gives the administrator control over privileged accounts. The other components that are valuable are Private Session Manager, OPM, Viewfinity, and AIM, which came as an add-on to the organisation's needs. The ability to start the project, install and add the passwords in just a few days brings a big advantage for CyberArk.
Improvements to My Organization
The client can see all the users sessions through PSM, and can protect the applications on servers using AIM. Also, the Privileged Threat Assessment helps the organisation to see all the account risks, including accounts not managed by CyberArk, and accounts/machines with unusual behavior, etc.
Room for Improvement
The DNA scan should be able to scan Unix machines for privileged accounts.
Use of Solution
PIM tested in the last 2 years.
We didn't have any issues with the deployment.
The product is very stable.
I didn't have any issues with the stability. I usually recommend the client to increase the system requirements with 10%.
Customer Service and Technical Support
Customer service is OK in Romania. Technical Support
I had direct contact with the local team and they are OK.
Straightforward when you have the use cases and a SoW. Usually you follow the Installation Manual, and perform the after-installation tests, and you are sure that everything is OK. The only issue I had was with the anti-virus that was left on the server and that deleted some PSM files. You must always double-check the prerequisites, as you can have some surprises with the GPO that overrides your settings.
I was part of the implementation team with support from the vendor.
Other Solutions Considered
We also looked at BalaBit Shell Control Box.
Disclosure: My company has a business relationship with this vendor other than being a customer: Implementation partner with CyberArk.
Aug 08 2016