Most Helpful Review
Find out what your peers are saying about ARCON Privileged Access Management vs. Thycotic Secret Server and other solutions. Updated: January 2020.
397,983 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Previously, we had to go through some effort to change the credentials of our devices. The process was subject to human error... For things like managing credentials, some kind of register had to be maintained. With the Password Vault of ARCON, all these processes are automated. The credentials are changed, as per the schedule. The information is encrypted, kept in our vault, and sent to all the email addresses within the ARCON solution itself.
One important feature is the administrator access, mainly for Windows machines as well as Linux machines. It is important for us because there is accountability associated with each user ID. And the recordings are also helpful.
For compliance, each change I do, in each of the servers, is clearly recorded. We recently faced an audit and this was an awesome feature. Even our auditor had praise for it saying, "This is really a good feature."
The user interface, overall, is really good. If I have some 20 servers in my ID, I can easily see for which servers I have read-only access, for which servers I have prompt-access, and for which servers I have server admin access.
It was very easy for us to move this application and database from on-premise to cloud, as well as configure new things, such as load balancing. The product is very compatible.
Video and audio logs are there for any activities that the privileged admin carries out.
With this log available, we can drill down to the activities performed by the people within our kiosk. There is a great feature where in the case of Unix servers, we have our own text-based logs. In the case of Window's server, we cannot create a text-based log, so our kiosk takes the screenshot or picture of the screen when I am working. It does this every three seconds.
The initial setup was very simple. There was only one server we had to setup. We needed to store all the passwords, and a secure database is used.
The user interface is quite good. It's very straightforward.
The most valuable feature is session monitoring.
Ease of use because of its monolithic software.
It offers the possibility of secure administration of hardware devices, as well as Linux systems administration from a Windows environment.
The most valuable feature of this solution is the random changing of passwords.
Provides us with the ability to control access [to secrets] by groups.
The ability to give some groups access to different kind of databases with the storage of a password is the most valuable feature.
Currently, we can manage only the SSH or RDP connections, but there are many more devices that are present, apart from our SSH and RDP. We want all this to be part of the ARCON solution. For the password management, they should increase the pool of supported devices, they should have more connectors.
Currently, along with the upgrade of the ARCON solution, we have to consider the desktops and the endpoints from where the solution will have to be accessed. We have to upgrade those endpoints and desktops as well. So upgrades are not smooth.
It should be browser-agnostic and, frankly, it is working well on Internet Explorer. It should work on popular browsers like Mozilla and Firefox.
I would like to see a "wild card" kind of a feature or something that would enable us to search the video.
It would be helpful to have a "Favorites" list. For example, if I have 100 servers but I only go to 10 servers frequently, a Favorites list would allow me to go through those ten servers only.
There are no APIs readily available... I'm working on automation for ARCON so that whatever the ARCON administrator is doing will be automated, rather than having to do it manually. For that, I had to spend months to get the API developed myself. Having that handy out of the box, that would really help...
For the in-house built applications, they need to provide good, solid access through their portal.
The auto-password change feature which was recently added. It is supposed to change the password. However, in some cases, while changing the password, it has caused me to lose to connection due to network-related issues or something similar. What we need to have is a type of log for failure of password change.
There could be tweaks here and there. For example, instead of going to one main function to do this and another main function to do that, the solution could remap the user interface so that a person only has to go through one function. The way that function branches off should make a bit more sense.
Having more detailed reporting would improve this solution.
Documentation could be improved if they were to include more about connectors. There is not enough documentation.
I would like to see the shadowing of ongoing terminal sessions (Remote Desktop Mirroring).
We could definitely use some help with API tokenization. If we had a way to store tokens that would be fabulous.
One of the things that we want is to be able to do some of the management of it using APIs.
I don't know what kind of a cryptographic it uses to encrypt the password but it should be one of the stronger ones. Some of the cryptos have been accessed by hackers.
Pricing and Cost Advice
The product's pricing is a good value. It's appropriately priced. The product has all the required features. It doesn't work in some of the areas but, right now overall, it's pretty good.
I definitely feel the product's pricing is a good value. It is one of the best products we have. The licensing is server-based.
Product pricing is based on users and connections. We did not have to pay more for additional features.
They do have some licenses, which are required for things like Linux servers. However, in my environment, we do not have Linux servers.
There are no major concerns with licensing because we can handle multiple servers in our kiosk system.
It is good value for our business. According to me, their competitors are more costly. Therefore, it is quite affordable. I find the ARCON to be much cheaper than the other products in the market.
The licensing is simple, and there are only two types licensing: device licensing and user-based licensing.
Their licensing model is very simple, as it is based on the number of endpoints which you want to manage along with the number of users and administrators which you want to use.
The price of this solution is good.
It isn't terribly expensive.
out of 24 in Privileged Access Management
Average Words per Review
out of 24 in Privileged Access Management
Average Words per Review
Compared 49% of the time.
Compared 11% of the time.
Compared 10% of the time.
Compared 25% of the time.
Compared 15% of the time.
Compared 14% of the time.
Also Known As
|ARCON PAM is a full blown Privileged Access Management solution. It has a robust password vaulting technology that comes with AES- 256 Database encryption. Dual Factor Authentication, 4Eye Authentication functionalities and Granular Access Control enables an enterprise to block any unauthorized access attempt to critical information assets. All access is based on “Need to know” and “Need to do” basis. It has the largest connector stack. Its Single Sign On enables seamless access to a host of devices with just a single click. The Solution enables an enterprise to monitor and analyze advanced threats in a real time. It has the best-in-class real-time threat analytics. It provides comprehensive audit trails and session recordings to ensure that all activities are tracked and these logs are encrypted and separately stored creating a legal hold. Further, it has a highly scalable architecture that easily integrates with Third Party SIEM Solutions. It also supports cloud environment. ARCON PAM is full-functionality solution at the most optimum pricing. More than 250 global enterprises spanning wide-ranging industries such as Banking, Financial Services and Insurance (BFSI), Government Organizations, Media, Health Care, and Fintech have deployed ARCON PAM as of today. While the company continues to be a leader in India and the Middle East, it has gained a solid traction in Africa and APAC market thanks to its well-distributed global channel network and strong industry reputation it enjoys in the cyber security domain.|
Secret Server is the only fully featured Privileged Account Management (PAM) solution available both on premise and in the cloud. It empowers security and IT ops teams to secure and manage all types of privileged accounts and offers the fastest time to value of any PAM solution.
Learn more about ARCON Privileged Access Management
Learn more about Thycotic Secret Server
Information Not Available
|Secure-24, University of San Diego, International Rescue Committee, San Francisco Ballet, Perkins Coie, University of San Diego, D.S.S. Limited, Turbo's Hoet, Eclipse Computing, Cathay Bank, Stellarise, J&R Consulting|
Financial Services Firm88%
Software R&D Company29%
Financial Services Firm25%
Comms Service Provider23%
Software R&D Company28%
Comms Service Provider12%
Financial Services Firm8%