Rodney DapilmotoSystems Admin Analyst 3 at CPS Energy
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"This solution serves as the basis to understand the MS SSO and MFA capabilities."
"The ability to grant access to other organizations is helpful."
"The interface is well laid out and it is easy to navigate."
"The most valuable feature is that it is very easy to implement, you don't need a lot of effort to set up the solution. This is the most advantageous point, that you can do anything on Azure without taking too much time."
"The single sign-on is very convenient for us."
"The most valuable feature is the ease of scalability."
"The single sign-on of the solution is the most valuable aspect."
"The most valuable feature is the ability to set up conditional access, where you can enforce users to connect using multifactor authentication."
"When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution."
"Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find the accounts that we're going to need to take under control."
"CyberArk is a very stable product and it's a stable product because it has a simple design and a simple architecture that allows you to leverage the economies of scale across the base of your infrastructure that you already have implemented. It doesn't really introduce any new complex pieces of infrastructure that would make it that much more difficult to scale."
"CyberArk has been easy for us to implement and the adoption has been good. We've been able to standardize a bunch of things. We've been able to standardize relatively easily with the use of the platforms and managing the policies."
"The risk of lost password and forbidden access to resources has been drastically reduced which increased the security level for the entire company,"
"The technical support is good."
"The most valuable feature is Special Monitoring."
"The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task."
"The SSO MyApps interface is very basic and needs better customization capabilities."
"Microsoft needs to add a single setup, so whenever resources join the company or are leaving the company, all of the changes can be made with a single click."
"My only pain point in this solution is creating group membership for devices."
"I would rate it an eight out of ten. The price plays a factor in the rating."
"It would be ideal if the solution moved to a passwordless type of environment. It's the future of authentification. It's also more secure and convenient."
"I think the documentation and configuration are both areas that need improvement."
"We would like to have more granularity in the Azure conditional access in order to be able to manage more groups for devices and for applications."
"Technical support could be faster."
"The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time."
"It's a big program. To scale excessively, locally, on an on-prem application, takes a lot of servers."
"CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms."
"There is a bit of a learning curve, but it's a pretty complex solution."
"It needs better documentation with more examples for the configuration files and API/REST integration"
"We found a lot of errors during the initial setup. They should work to improve the implementation experience and to remove errors from the process."
"The authentication port is available in CyberArk Alero but not Fortinet products."
"Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use."
"Licensing fees are paid on a monthly basis and the cost depends on the number of users."
"This product is sold as part of the enterprise package and our licensing fees are paid on a yearly basis."
"MFA and P2 licenses for two Azures for fully-enabled scenarios and features cost a lot of money. This is where Okta is trying to get the prices down."
"We are a non-profit organization, so we get good prices from Microsoft for their products. It is working well, but it could be cheaper. For the type of organization we are, it would be good if they could give a little bit more and be more generous like Google, which has completely free services. Microsoft has free versions or web services called Office 365 E1, which is free for use, but we want to have it with more qualified clients."
"We pay about $35 per user."
"I think we're on the E3 — I think it was about 35 dollars per user."
"We got a good deal. If you get rid of all the products providing features that Azure Suite can provide, then it makes sense cost-wise."
"Microsoft has a free version of Azure AD. So, if you don't do a lot of advanced features, then you can use the free version, which is no cost at all because it is underpinning Office 365. Because Microsoft gives it to you as a SaaS, so there are no infrastructure costs whatsoever that you need to incur. If you use the free version, then it is free. If you use the advanced features (that we use), it is a license fee per user."
"I believe that this solution is priced well. It's the market leader and I think that it's the best solution."
"Overall, its pricing is really good. The main difference from all the other vendors is that they have one package that covers all the functionality and modules of the basic PAM, except the add-on modules like adware and server protection. It also doesn't include the licenses for domain controller protection or maybe an API call-related feature. For the basic privileged access management, the bundle pricing is really good, but when it comes to an agent-based solution for advanced cyber protection or application identity managers, it is expensive. Services are also very expensive if you hire the services team from CyberArk, but these guys are really good. For a couple of large banking projects, we had an experience with them. The banks wanted to have things quickly and efficiently, so we had to hire them. If we take four weeks, these guys can do everything on a weekend. They charge quite a big sum of money, but they know the system well."
"The price of this solution is quite reasonable."
"The solution is very expensive and requires a license. We pay for an enterprise license."
"Pricing is quite high and it could be improved."
"They have two types of licensing: purchase and subscription. You have to pay for each admin user, such as Microsoft admin, mail admin, database admin, etc."
The Azure Active Directory (Azure AD) enterprise identity service provides single sign-on and multi-factor authentication to help protect your users from 99.9 percent of cybersecurity attacks. With Azure Active Directory, you get:
- Single sign-on enabling access to your apps from anywhere
- Conditional Access and multi-factor authentication to help protect and govern access
- A single identity platform to engage with internal and external users more securely
- Developer tools to easily integrate identity into your apps and services
To learn more about our solution, ask questions, and share feedback, join our Azure Active Directory Community.
CyberArk is the trusted expert in privileged access management and a global leader Identity Security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.
Azure Active Directory is ranked 1st in Single Sign-On (SSO) with 31 reviews while CyberArk Privileged Access Manager is ranked 1st in Privileged Access Management with 15 reviews. Azure Active Directory is rated 8.4, while CyberArk Privileged Access Manager is rated 8.2. The top reviewer of Azure Active Directory writes "Users don't have to remember multiple accounts and passwords since it is all single sign-on". On the other hand, the top reviewer of CyberArk Privileged Access Manager writes "Provides simplicity and ease of implementation for the right level of security controls". Azure Active Directory is most compared with Okta Workforce Identity, Google Cloud Identity, AWS Directory Service, ForgeRock and SailPoint IdentityNow, whereas CyberArk Privileged Access Manager is most compared with BeyondTrust Endpoint Privilege Management, Thycotic Secret Server, SailPoint IdentityIQ, Cisco ISE (Identity Services Engine) and WALLIX Bastion. See our Azure Active Directory vs. CyberArk Privileged Access Manager report.
See our list of .
We monitor all Single Sign-On (SSO) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.