ChrisMorrisonTechnical Engineer at a tech services company
Anonymous UserSecurity Business Consultant at a tech services company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The privileged account management feature is what I like most."
"This is a cloud-based application, which makes it very easy to deploy."
"The solution's most valuable features are the efficiency and the quality of the recording."
"We use the solution’s “transparent mode” feature for privileged sessions. It is very easy because it is only a simple configuration for our users. We don't have to modify our network. We install it, configure it, and it works. So, it is super easy. The rollout for our users is seamless."
"We are able to log and get reporting on all privileged activity that is being performed. We like the fact that we can leverage the session recording feature, which is especially valuable when we're dealing with third-party vendors that have to remote into our our boxes and servers to do any work on behalf of the bank. Now, we can record everything they are doing to ensure that they're only doing the changes that were needed. In addition, we use it to leverage knowledge transfer with our internal staff."
"It's one of the best products we've seen. When you start looking at the functionality and use cases and usability of the product, it's straightforward. They designed this product with the end-user in mind, and they also had the sysadmin who is supporting the product in mind. They really did a nice job. Overall, it's a nice product to work with."
"There are a lot of features, so it's going to sound funny, but one of the most simplistic features, the Favorites feature, is the one we like the best. You do a full run-through of configuration to check out a server and then you can save that whole configuration as a favorite. So the next time you go in, you click on the favorite that you configured and it automatically takes you to the end so you can check the server out that much faster. It saves a lot of time..."
"All sessions are audited and they are indexed/searchable through the GUI."
"It has greatly helped improve our security posture. Safeguard has an option where it will reset passwords on service accounts, then go out to those servers where that service account is running as a service and update the password on it. That makes password changes very easy. We can regularly change passwords now and are planning on making it an annual activity, where all the people who own service accounts will go in and make sure all their passwords get changed, updated, and reset."
"The solution transparently integrates into the infrastructure and users do not notice it. I would give this feature the highest rating."
"The initial setup is a bit complex."
"This solution needs better integration with third-party solutions because their ability to support other tools is very weak."
"I would like to see an adjustment with more enterprise architecture. You can buy multiple appliances but you can not fully separate different functions, so scaling might be a bit more complicated."
"The interface is better now, but it still could be improved a lot. It needs more organization, menus, automatic refresh of information, and Web 2.0."
"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."
"From a usability perspective, what we are finding out is that our privileged domain admin users, in particular, want functionality for extending a checkout session. So we are working with One Identity support to see if there's an enhancement that can be made to the product."
"There is room for improvement in the launch module. They built in a launch button but they don't have effective instructions for configuring it to allow it to launch an RDP session. They're working on that, but the button is in the live product. If they were going to install something that wasn't useful, they should have just disabled it and not rolled it out with the product."
"Monitoring of the platform should be easier and more functional so that you can have a clear picture of the running service."
"Transparent mode was too cumbersome, so I don't foresee us being able to use it. On paper when we were initially talking about it, it was definitely going to be the preferred method until we realized the burden it would be on our network guys. Then, we had to step back and reevaluate what we wanted to do. That's when we changed our approach to use the RD Gateway feature."
"I would like to see support for RDP over HTTPS so this product can be used in conjunction with the Microsoft terminal."
"It is sad that people with a limited budget won't be able to afford it."
"The price model is based on the number of devices and opposed to the number of users, and it is not very flexible."
"Our licensing costs are on a yearly basis."
"It was definitely cheaper than the other two products that we evaluated."
"They offer a fair price for a robust solution."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."
"The pricing is about $80,000 per 100 servers. There are few elective costs."
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"Safeguard is cheaper than CyberArk."
Centrify Privilege Service provides all of your IT administration teams with secure, granular access to infrastructure regardless of location, and without the hassles of a VPN.
Secure browser-based access Authorized IT users launch management sessions for resources directly from the Privilege Service portal. Sessions use SSH and RDP protocols, and are always protected end-to-end.
Access across organizational boundaries Privilege Service enables you to authenticate your IT users through Active Directory, LDAP Centrify Cloud Directory, or Google G Suite
Directory. You can use one or any combination of these identity stores to grant granular access to employees, business partners and outside vendors.
Grant access to specific resources Unlike a VPN, Privilege Service enables you to grant access to
resources on a on a per-resource basis. This means that you can easily give your internal IT admins access to as much of your infrastructure as necessary, while limiting access by an outsourced
team to only the servers and network hardware their business role or IT function requires.
Access from any location Your IT admins can log in and securely access resources from any location that can reach the Privilege Service. For user logins outside the corporate network, you can require Centrify’s built-in multi-factor authentication for security stronger than a user name and password.
One Identity Safeguard securely stores, manages, records and analyzes privileged accounts and access. It is an integrated solution that combines a secure hardened password safe and a session management and monitoring solution with threat detection and analytics.
Prevent security breaches and limit damage by putting in place a privileged access management solution. Get a free 45-day trial, or request a demo of One Identity SafeGuard.
Centrify Privileged Access Service is ranked 9th in Privileged Access Management with 2 reviews while One Identity Safeguard is ranked 2nd in Privileged Access Management with 11 reviews. Centrify Privileged Access Service is rated 6.0, while One Identity Safeguard is rated 8.8. The top reviewer of Centrify Privileged Access Service writes "Has good privileged account management, multifactor authentication and auditing features". On the other hand, the top reviewer of One Identity Safeguard writes "Improved our security posture by making password changes easy and allowing us to make regular password changes to service accounts". Centrify Privileged Access Service is most compared with CyberArk Privileged Access Manager, Thycotic Secret Server, HashiCorp Vault, BeyondTrust Endpoint Privilege Management and ARCON Privileged Access Management, whereas One Identity Safeguard is most compared with CyberArk Privileged Access Manager, WALLIX Bastion, Fudo PAM, Thycotic Secret Server and ManageEngine Password Manager Pro. See our Centrify Privileged Access Service vs. One Identity Safeguard report.
See our list of best Privileged Access Management vendors.
We monitor all Privileged Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.