Compare CA SSO vs. CyberArk PAS

CA SSO is ranked 4th in Access Management with 8 reviews while CyberArk PAS is ranked 1st in Access Management with 53 reviews. CA SSO is rated 8.2, while CyberArk PAS is rated 9.0. The top reviewer of CA SSO writes "The flexibility helped us meet the requirements of our customer". On the other hand, the top reviewer of CyberArk PAS writes "Gives us the security of all credentials in one place and lightens our administrative load". CA SSO is most compared with Okta, Ping Identity and Oracle Access Manager, whereas CyberArk PAS is most compared with BeyondTrust Endpoint Privilege Management, SailPoint IdentityIQ and Cisco ISE (Identity Services Engine). See our CA SSO vs. CyberArk PAS report.
Cancel
You must select at least 2 products to compare!
CA SSO Logo
3,982 views|2,088 comparisons
CyberArk PAS Logo
31,377 views|15,909 comparisons
Most Helpful Review
Anonymous User
Find out what your peers are saying about CA SSO vs. CyberArk PAS and other solutions. Updated: November 2019.
383,725 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The most valuable feature is that it meets the requirements of the customer. You have a lot of features in the product. Every product has them, but the question is, are these products going to meet the requirement of the customer?I liked the debugging part. There are only two files (trace file and log file) that you need to look into while performing debugging, and the logs give you the exact info on where and what needs to be fixed.You can quickly deploy the entire product with a basic config within couple of hours.It has considerably reduced the amount of time that new users would take to join into the organization. Previously, it was a lengthy, manual process because it's a very secure environment, where they need to verify the user before they can actually grant him a user-ID and password. Integrating with the built-in custom application, and exposing CA Single Sign On to the internet, we were able to get the employees onboard. The time that we gained was: previously it would generally take from four to eight weeks for each employee, we brought it to one to two days.The most valuable feature is the Federation part of Single Sign On, which is customizable and is easily integrated with any customer application or any third party application.Federation is valuable, for sure, because we have a lot of third-party vendors that we need to integrate with, and this is a turnkey solution in some ways.The Directory is secure. It's our user store, and it's important to keep our members safe. The product does well with that.If you look at our organization, and really all financial institutions, we have a lot of legacy apps. So it really helps to get Single Sign-On.

Read more »

The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task.For a while, there were individual IDs having privileged access. We wanted to restrict that. We implemented the solution so that it can be more of internal control. We can have session recordings happening and reduce our attacks.There are no issues with scalability. Our clients are very happy to use the product.We are maintaining compliance in PCI, SOX and HIPPA, which is a big thing. Auditors really like it, and it has made us stay compliant.We are able to know who is accessing what and when; having accountability.This solution is quite stable.The most valuable feature is that it always provides flexibility, password quality and one-time user check-in and check-out.I really like the PTA (Privileged Threat Analytics). I find this the best feature.

Read more »

Cons
CA has reporting at the moment. With the reporting, every particular segmented product has a reporting engine. I would like to see centralized reporting for all of them together.The GUIs are not very clear, especially when integrating with other products from CA.The Federation part of CA Single Sign On, it's a bit complex to implement because it involves the SSL certificates, exchange of certificates, and lot of technical details. The documentation misses some important parts of this, so that's the reason it took some time for us to go live.I think they need to integrate some of the newer types of authentication into the product. I'm not seeing the innovation when it comes to biometrics in the product.They need to make configurations easier, and not have the engineer having to guess what will happen when he changes a particular setting.The initial setup was complex, painful. But that is to be expected of any new setup. When you're a big bank like us, any kind of migration to a new product is hard. I expect it to be painful, and it was painful. But it's not something that you can avoid.I would like to see a move towards the newer technologies, which is what we are doing right now. I think that's in the roadmap that's coming, in the 12.8 and 14 releases, but we would like to have it sooner than later.The main thing is we do not have the traceability and good monitoring that CA can provide us to capture problems when they occur.

Read more »

Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use.Integration with the ticketing system should allow any number of fields to be used for validation before allowing a user to be evaluated and able to access a server.The initial setup of CyberArk is a challenge if you do not have prior experience with it.Make it easier to deploy.I think having a distributed architecture would certainly help this solution.There was a functionality of the solution that was missing. I had noticed it in Beyond Trust, but not in this solution. But, recently they have incorporated something similar.If we could have some kind of out-of-the box feature that you can simply say "no" so they don't have to go into a development mode, that would a really helpful feature.Tech support staff can be more proactive.

Read more »

Pricing and Cost Advice
CA solutions are generally expensive but for the customer the ROI is big.I recommend conducting a PoC on every available product before choose one.

Read more »

In comparison to other products on the market, CyberArk is a more costly product.This solution is considered to be more expensive than others out there on the market today.I do not have any opinions to add about the pricing of the product.No, I do not have any advice on the price of the product.Network and security licenses are currently being managed by other outsource vendors, so they are facing some type of problems in the digital aspect.With reducing the privileged account access, there has been a huge improvement. They are now bringing more accounts on a little at a time.If you are looking at implementing this solution, buy the training and go to it.Our risk is definitely significantly lower. Also, our resources are low.

Read more »

report
Use our free recommendation engine to learn which Access Management solutions are best for your needs.
383,725 professionals have used our research since 2012.
Ranking
4th
out of 26 in Access Management
Views
3,982
Comparisons
2,088
Reviews
13
Average Words per Review
702
Avg. Rating
8.0
1st
out of 26 in Access Management
Views
31,377
Comparisons
15,909
Reviews
51
Average Words per Review
573
Avg. Rating
9.0
Top Comparisons
Compared 52% of the time.
Compared 17% of the time.
Compared 6% of the time.
Also Known As
Single Sign-On, SiteMinderCyberArk Privileged Access Security, CyberArk Privileged Account Security, SSH Key Manager, Privileged Session Manager, Privileged Threat Analytics, Application Identity Manager, On-Demand Privileges Manager, Endpoint Privilege Manager
Learn
CA (A Broadcom Company)
CyberArk
Overview

CA Single Sign-On provides secure single sign-on and flexible access management to applications and Web services on-premise, in the cloud, from a mobile device or a partner’s site. For over a decade, CA Single Sign-On has been a leader in enterprise-class secure Web single sign-on and identity federation, providing a comprehensive solution that addresses access to applications and cloud services.  CA Single Sign-On delivers unparalleled reliability, availability, scalability and manageability.

Take an Assessment

CyberArk is the trusted expert in privileged account security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.

Offer
Learn more about CA SSO
Learn more about CyberArk PAS
Sample Customers
British Telecom, CoreBlox, DBS, HMS, Itera ASA and SimeoRockwell Automation
Top Industries
REVIEWERS
Financial Services Firm42%
Healthcare Company8%
Comms Service Provider8%
Retailer6%
VISITORS READING REVIEWS
Software R&D Company25%
Manufacturing Company18%
Retailer10%
Healthcare Company8%
REVIEWERS
Financial Services Firm29%
Insurance Company14%
Energy/Utilities Company10%
Healthcare Company10%
VISITORS READING REVIEWS
Software R&D Company28%
Financial Services Firm14%
Comms Service Provider12%
Retailer7%
Company Size
REVIEWERS
Small Business3%
Midsize Enterprise3%
Large Enterprise94%
REVIEWERS
Small Business16%
Midsize Enterprise11%
Large Enterprise73%
VISITORS READING REVIEWS
Small Business6%
Midsize Enterprise11%
Large Enterprise83%
Find out what your peers are saying about CA SSO vs. CyberArk PAS and other solutions. Updated: November 2019.
383,725 professionals have used our research since 2012.
We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email