Compare CA SSO vs. CyberArk PAS

CA SSO is ranked 3rd in Access Management with 16 reviews while CyberArk PAS which is ranked 1st in Access Management with 53 reviews. CA SSO is rated 8.2, while CyberArk PAS is rated 9.0. The top reviewer of CA SSO writes "The flexibility helped us meet the requirements of our customer". On the other hand, the top reviewer of CyberArk PAS writes "Gives us the security of all credentials in one place and lightens our administrative load". CA SSO is most compared with Okta, Ping Identity and Oracle Access Manager, whereas CyberArk PAS is most compared with SailPoint IdentityIQ, BeyondTrust Endpoint Privilege Management and Cisco ISE (Identity Services Engine). See our CA SSO vs. CyberArk PAS report.
Cancel
You must select at least 2 products to compare!
CA SSO Logo
14,353 views|1,956 comparisons
CyberArk PAS Logo
48,137 views|15,836 comparisons
Most Helpful Review
Find out what your peers are saying about CA SSO vs. CyberArk PAS and other solutions. Updated: July 2019.
359,556 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The most valuable feature is that it meets the requirements of the customer. You have a lot of features in the product. Every product has them, but the question is, are these products going to meet the requirement of the customer?I liked the debugging part. There are only two files (trace file and log file) that you need to look into while performing debugging, and the logs give you the exact info on where and what needs to be fixed.You can quickly deploy the entire product with a basic config within couple of hours.It has considerably reduced the amount of time that new users would take to join into the organization. Previously, it was a lengthy, manual process because it's a very secure environment, where they need to verify the user before they can actually grant him a user-ID and password. Integrating with the built-in custom application, and exposing CA Single Sign On to the internet, we were able to get the employees onboard. The time that we gained was: previously it would generally take from four to eight weeks for each employee, we brought it to one to two days.The most valuable feature is the Federation part of Single Sign On, which is customizable and is easily integrated with any customer application or any third party application.Federation is valuable, for sure, because we have a lot of third-party vendors that we need to integrate with, and this is a turnkey solution in some ways.The Directory is secure. It's our user store, and it's important to keep our members safe. The product does well with that.If you look at our organization, and really all financial institutions, we have a lot of legacy apps. So it really helps to get Single Sign-On.

Read more »

For a while, there were individual IDs having privileged access. We wanted to restrict that. We implemented the solution so that it can be more of internal control. We can have session recordings happening and reduce our attacks.The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task.There are no issues with scalability. Our clients are very happy to use the product.We are maintaining compliance in PCI, SOX and HIPPA, which is a big thing. Auditors really like it, and it has made us stay compliant.We are able to know who is accessing what and when; having accountability.This solution is quite stable.The most valuable feature is that it always provides flexibility, password quality and one-time user check-in and check-out.I really like the PTA (Privileged Threat Analytics). I find this the best feature.

Read more »

Cons
CA has reporting at the moment. With the reporting, every particular segmented product has a reporting engine. I would like to see centralized reporting for all of them together.The GUIs are not very clear, especially when integrating with other products from CA.The Federation part of CA Single Sign On, it's a bit complex to implement because it involves the SSL certificates, exchange of certificates, and lot of technical details. The documentation misses some important parts of this, so that's the reason it took some time for us to go live.I think they need to integrate some of the newer types of authentication into the product. I'm not seeing the innovation when it comes to biometrics in the product.They need to make configurations easier, and not have the engineer having to guess what will happen when he changes a particular setting.The initial setup was complex, painful. But that is to be expected of any new setup. When you're a big bank like us, any kind of migration to a new product is hard. I expect it to be painful, and it was painful. But it's not something that you can avoid.I would like to see a move towards the newer technologies, which is what we are doing right now. I think that's in the roadmap that's coming, in the 12.8 and 14 releases, but we would like to have it sooner than later.The main thing is we do not have the traceability and good monitoring that CA can provide us to capture problems when they occur.

Read more »

Integration with the ticketing system should allow any number of fields to be used for validation before allowing a user to be evaluated and able to access a server.Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use.The initial setup of CyberArk is a challenge if you do not have prior experience with it.Make it easier to deploy.I think having a distributed architecture would certainly help this solution.There was a functionality of the solution that was missing. I had noticed it in Beyond Trust, but not in this solution. But, recently they have incorporated something similar.If we could have some kind of out-of-the box feature that you can simply say "no" so they don't have to go into a development mode, that would a really helpful feature.Tech support staff can be more proactive.

Read more »

Pricing and Cost Advice
CA solutions are generally expensive but for the customer the ROI is big.I recommend conducting a PoC on every available product before choose one.The price is quite comparable to the other enterprise-level solutions in that market.

Read more »

In comparison to other products on the market, CyberArk is a more costly product.This solution is considered to be more expensive than others out there on the market today.I do not have any opinions to add about the pricing of the product.No, I do not have any advice on the price of the product.Network and security licenses are currently being managed by other outsource vendors, so they are facing some type of problems in the digital aspect.With reducing the privileged account access, there has been a huge improvement. They are now bringing more accounts on a little at a time.If you are looking at implementing this solution, buy the training and go to it.Our risk is definitely significantly lower. Also, our resources are low.

Read more »

report
Use our free recommendation engine to learn which Access Management solutions are best for your needs.
359,556 professionals have used our research since 2012.
Ranking
3rd
out of 22 in Access Management
Views
14,353
Comparisons
1,956
Reviews
16
Average Words per Review
652
Avg. Rating
8.1
1st
out of 22 in Access Management
Views
48,137
Comparisons
15,836
Reviews
51
Average Words per Review
570
Avg. Rating
9.0
Top Comparisons
Compared 57% of the time.
Compared 9% of the time.
Compared 6% of the time.
Compared 10% of the time.
Also Known As
Single Sign-On, SiteMinderCyberArk Privileged Access Security, CyberArk Privileged Account Security, SSH Key Manager, Privileged Session Manager, Privileged Threat Analytics, Application Identity Manager, On-Demand Privileges Manager, Endpoint Privilege Manager
Learn
CA Technologies
CyberArk
Overview

CA Single Sign-On provides secure single sign-on and flexible access management to applications and Web services on-premise, in the cloud, from a mobile device or a partner’s site. For over a decade, CA Single Sign-On has been a leader in enterprise-class secure Web single sign-on and identity federation, providing a comprehensive solution that addresses access to applications and cloud services.  CA Single Sign-On delivers unparalleled reliability, availability, scalability and manageability.

Take an Assessment

CyberArk is the trusted expert in privileged account security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.

Offer
Learn more about CA SSO
Learn more about CyberArk PAS
Sample Customers
British Telecom, CoreBlox, DBS, HMS, Itera ASA and SimeoRockwell Automation
Top Industries
REVIEWERS
Financial Services Firm43%
Comms Service Provider9%
Healthcare Company9%
Retailer6%
REVIEWERS
Financial Services Firm28%
Insurance Company15%
Healthcare Company10%
Comms Service Provider8%
VISITORS READING REVIEWS
Financial Services Firm31%
Retailer14%
Energy/Utilities Company12%
Comms Service Provider11%
Company Size
REVIEWERS
Small Business3%
Midsize Enterprise3%
Large Enterprise94%
REVIEWERS
Small Business17%
Midsize Enterprise11%
Large Enterprise72%
VISITORS READING REVIEWS
Small Business11%
Midsize Enterprise12%
Large Enterprise77%
Find out what your peers are saying about CA SSO vs. CyberArk PAS and other solutions. Updated: July 2019.
359,556 professionals have used our research since 2012.
We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email