- Privileged account management
- Session management
- Session recording
- One stop access for all things involving privileged access management.
Privileged account management for Windows (domain and local) and Unix.
Service account management is a key area where the product needs to develop. Currently, the product supports service account discovery, but only if the host name of the server is known. For unknown host names, it is still a dark area.
In comparison with Thycotic and CyberArk, the service account management functionality needs to be extended to application pools, SQL database, PowerShell scripts, service account discovery, etc.
We experience stability issues after every patch upgrade. This is a place where CA needs to improve drastically.
The product is very scalable in terms of concurrent sessions that it can handle at a time, number of device it can support, accounts that it can manage, or number of nodes that you can deploy in a cluster. It comes in four forms.
The technical support has improved a lot in last year with the advent of the European technical support team.
No previous solution was used.
Initial setup is very straightforward and ease to configure. It is similar to any appliance-based network security device.
Pricing is fair compared to other top vendors, like CyberArk. The licensing is simple and scalable.
We did not evaluate any other solutions.
Go for it if your key areas are password/session management of Windows/Unix/database.
Be careful if you want to use this for service account management.
There are some technical challenges while integrating the web-based console (security devices) for transparent login/single sign-on.