Compare BeyondTrust Endpoint Privilege Management vs. CyberArk PAS
 |
Quotes From Members
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros | |
"I would say session management on the go is the most valuable feature. When the session is going on, you can stop the session without terminating it for justification. You can cancel it. The recording takes very little space. Those are some things which the customers are worried about when they talk about session recording." "The privileged access management into sensitive systems is very valuable. That includes control from the endpoint all the way through to the managing of passwords and credentials that are used by the person to access the sensitive information. It's very useful, because nobody ever really maintains passwords for those endpoint systems. It's maintained in the Dropbox password file." "The implementation is quite easy because the documents are always online." "The asset discovery feature is the solution's most valuable aspect. It's very easy to pull assets into the database of the solution manager." "The most valuable feature is the asset discovery, which makes it very easy to locate and identify assets and pull them into the manager." "BeyondTrust has very good integrations with quite a lot of security vendors such as SailPoint, IBM, FortiGuard, Splunk, etc." | "For a while, there were individual IDs having privileged access. We wanted to restrict that. We implemented the solution so that it can be more of internal control. We can have session recordings happening and reduce our attacks." "The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task." "When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution." "Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find the accounts that we're going to need to take under control." "CyberArk is a very stable product and it's a stable product because it has a simple design and a simple architecture that allows you to leverage the economies of scale across the base of your infrastructure that you already have implemented. It doesn't really introduce any new complex pieces of infrastructure that would make it that much more difficult to scale." "CyberArk has been easy for us to implement and the adoption has been good. We've been able to standardize a bunch of things. We've been able to standardize relatively easily with the use of the platforms and managing the policies." "The risk of lost password and forbidden access to resources has been drastically reduced which increased the security level for the entire company," "The technical support is good." |
Cons | |
"The other area to improve is that they rely on MS SQL servers only. You cannot have any other database behind them. They have to be on MS SQL. If they can do something about these issues, this would be a better alternative for some customers." "The program updates are very rare and the frequency is too far apart to take care of bug fixes and adding the latest features." "The deployment process should be clarified or made simpler. It would be helpful if the solution had in-app tutorials for users to look at as they progress through the system. Sometimes we get lost and need to go back to check what exactly the function was. There should be small hints around major key functions. It would go a long way in speeding up the deployment process." "The help system should be improved to provide a quick help guide with each tab within the solution, which explains what each particular function does." "Their technical support could be more responsive and helpful." | "Integration with the ticketing system should allow any number of fields to be used for validation before allowing a user to be evaluated and able to access a server." "Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use." "The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time." "It's a big program. To scale excessively, locally, on an on-prem application, takes a lot of servers." "CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms." "There is a bit of a learning curve, but it's a pretty complex solution." "It needs better documentation with more examples for the configuration files and API/REST integration" "We found a lot of errors during the initial setup. They should work to improve the implementation experience and to remove errors from the process." |
Pricing and Cost Advice | |
"This solution is expensive compared to its competitors." More BeyondTrust Endpoint Privilege Management Pricing and Cost Advice » | Information Not Available |
 Use our free recommendation engine to learn which Privileged Access Management solutions are best for your needs. 454,950 professionals have used our research since 2012. | |
Questions from the Community | |
Top Answer: This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpoint… more » Top Answer: The most valuable feature is the asset discovery, which makes it very easy to locate and identify assets and pull them into the manager. Top Answer: This solution is expensive compared to its competitors. | Ask a question Earn 20 points |
Ranking  | |
Views 8,434 Comparisons 4,932 Reviews 2 Average Words per Review 604 Rating 6.5 | Views 38,468 Comparisons 18,473 Reviews 21 Average Words per Review 546 Rating 9.1 |
Popular Comparisons | |
 Compared 11% of the time.  Compared 7% of the time.  Compared 5% of the time.  Compared 4% of the time.  Compared 3% of the time. | Compared 11% of the time.  Compared 10% of the time. Compared 8% of the time.  Compared 7% of the time. Compared 6% of the time. |
Also Known As | |
| BeyondTrust PowerBroker, PowerBroker, BeyondTrust Endpoint Privilege Management for Windows, BeyondTrust Endpoint Privilege Management for Mac, BeyondTrust Endpoint Privilege Management for Linux, BeyondTrust Endpoint Privilege Management for Unix | CyberArk Privileged Access Security, CyberArk Privileged Account Security, SSH Key Manager, Privileged Session Manager, Privileged Threat Analytics, Application Identity Manager, On-Demand Privileges Manager, Endpoint Privilege Manager |
Learn | |
| BeyondTrust | CyberArk |
Overview | |
BeyondTrust Endpoint Privilege Management enables organizations to mitigate attacks by removing excess privileges on Windows, Mac, Unix/Linux and networked devices. Remove excessive end user privileges and control applications on Windows, Mac, Unix, Linux, and networked devices without hindering end-user productivity. Key Solutions Include: -ENTERPRISE PASSWORD SECURITY Discover, manage and monitor all privileged accounts and SSH keys, secure privileged assets, and report on all privileged account activity in a single solution. -ENDPOINT LEAST PRIVILEGE Enforce least privilege across all Windows and Mac endpoints, gain visibility into target system vulnerabilities, and control access to privileged applications without disrupting user productivity or compromising security. -SERVER PRIVILEGE MANAGEMENT Gain control and visibility over Unix, Linux and Windows server user activity without sharing the root or administrator account. -A SINGLE PLATFORM FOR MANAGEMENT, POLICY, REPORTING AND THREAT ANALYTICS Utilize a single solution to manage PAM policies and deployment, understand vulnerability and threat analytics, and provide reporting to multiple stakeholders and complementary security systems. Learn more at https://www.beyondtrust.com/privilege-management | CyberArk is the trusted expert in privileged account security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution. |
Offer | |
Learn more about BeyondTrust Endpoint Privilege Management | Learn more about CyberArk PAS |
Sample Customers | |
| Aera Energy LLC, Care New England, James Madison University | Rockwell Automation |
Top Industries | |
Computer Software Company29% Comms Service Provider24% Financial Services Firm6% Insurance Company5% | Financial Services Firm25% Insurance Company15% Energy/Utilities Company10% Comms Service Provider8% Computer Software Company32% Comms Service Provider20% Financial Services Firm8% Government5% |
Company Size | |
Small Business58% Midsize Enterprise8% Large Enterprise33% | Small Business18% Midsize Enterprise11% Large Enterprise71% Small Business18% Midsize Enterprise9% Large Enterprise72% |
Find out what your peers are saying about BeyondTrust Endpoint Privilege Management vs. CyberArk PAS and other solutions. Updated: January 2021.
454,950 professionals have used our research since 2012.
BeyondTrust Endpoint Privilege Management is ranked 4th in Privileged Access Management with 6 reviews while CyberArk PAS is ranked 1st in Privileged Access Management with 20 reviews. BeyondTrust Endpoint Privilege Management is rated 6.6, while CyberArk PAS is rated 9.2. The top reviewer of BeyondTrust Endpoint Privilege Management writes "Great session management features and out-of-box connectors". On the other hand, the top reviewer of CyberArk PAS writes "Provides simplicity and ease of implementation for the right level of security controls". BeyondTrust Endpoint Privilege Management is most compared with Thycotic Secret Server, CyberArk Endpoint Privilege Manager, Cisco ISE (Identity Services Engine), WALLIX Bastion and Symantec Privileged Access Manager, whereas CyberArk PAS is most compared with Thycotic Secret Server, Microsoft Azure Active Directory Premium, Cisco ISE (Identity Services Engine), SailPoint IdentityIQ and WALLIX Bastion. See our BeyondTrust Endpoint Privilege Management vs. CyberArk PAS report.
See our list of best Privileged Access Management vendors.
We monitor all Privileged Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.