Most Helpful Review
Find out what your peers are saying about CyberArk Enterprise Password Vault vs. LastPass Enterprise and other solutions. Updated: January 2020.
389,978 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Service count rotation is probably one of my favorite features... The ability to automatically rotate any password I need to really helps with the entire enterprise strategy that we're pushing right now.
The most valuable feature is the special management. It records the activity and the actions that we use for auditing.
The most valuable feature is that it is flexible. It has many connectors. that have done well, the EPV and SSH sessions are all being recorded and everything works fine.
Session monitoring is excellent. It may be the solution's most valuable aspect.
Our most valuable features would probably be key rotation, the SKM or SSH key manager, and account discovery.
Security is the solution's most valuable feature. As far as I know, this solution is the most secure system of this class on the market today, even considering another management system like Fudo Security, which we also use. The integration capabilities are very good; it helps strengthen our overall security.
Thus far I can say technical support is excellent. We haven't had any issues or difficulties.
The ability to monitor privileged accounts throughout the enterprises.
The most valuable feature for me is being able to pair applications and user permissions.
It's improved security; we don't have to worry about people storing password loosely and secure them.
The most valuable feature is the liberty of keeping encrypted passwords and elevated information in a sealed vault.
The initial setup for this process is straightforward and extremely easy. It just works.
Until now, I haven't found anything like the dashboard. It gives you a security score. I find that to be really great. The Sharing Center is really great as well. And the Security Challenge is really great too.
It's always hard to put a value on return on investment. You avoid one breach and it's paid for a million times over. We got a penetration test company internally, just to see how secure our network is, and there happened to be one bit of software that had been overlooked by an external company that managed it. It hadn't been upgraded so that managed to get them into the network. They would've been able to access through the test thing a file that we had previously. If that was a real-life scenario they would have been able to get into our network and get full access to our organization's passwords. If they did get in, they would have gotten access to the cloud. The ROI we see is that we are completely secured compared to what we had previously where there was a vulnerability.
The stability has been rock solid. A couple of years ago, they were breached. However, if you had two-factor authentication enabled, it didn't affect you. We did, so it has been good.
This product helps keep us secure.
I'd like it to be a little more granular. I want a little bit more control over exactly what we do. I know if you do that, you add more knobs and dials to deal with, but that's just my personal approach: granular access.
The stability depends on the infrastructure it is installed on, which is important because CyberArk does not have the hardware appliance.
In the next release, they could simplify the setup and I would like some tasks added like file sharing. When a client connects to CyberArk and wants to put a file on the server, they cannot.
The initial setup could be simplified. Right now, in comparison to its nearest competitors, it's quite complex.
I think they can improve account onboarding. For instance, you have to use the Password Vault utility, whereas in Thycotic I think there is a feature in the user interface that allows you to upload your account with an Excel file. So I'd like to have a similar thing in CyberArk.
The solution is too big and complex for any businesses that are small or medium-sized. They should offer a more compact version or make a solution better suited to smaller businesses.
To get it to a ten it should give other possibilities to select if you could follow the keystrokes. It should have a flexibility with things where people can use it a lot faster.
We should be able to join small components.
LastPass has a problem syncing the passwords to all of the users.
I would like to be able to reduce the log out time of the session.
Right now we have two products; there is the password manager and there is the authenticator app. Ideally, these should be fully integrated and support better handling of two-factor authentication or any other authenticator data.
One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself.
I also don't like the add-in for Internet Explorer and Google Chrome, because when you do the add-in, you can actually save that to your credentials in your IE, and the problem is, if I left my screen open, or any of the IT people leave their screen open someone could come up and access all their credentials in LastPass without having to put a password in within your own network. I don't like that functionality. We've banned that from any of our staff adding that as an add-in because we see that as a security risk.
It is not super feature laden. It does not stand out versus the competition.
The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass.
We have issues from time to time where, for some reason, it just keeps auto logging-out the user and then, the next day, they'll come in and it will work just fine.
Pricing and Cost Advice
This solution is expensive.
The subscription model is rated at a fair price.
In terms of pricing, my feeling is that they are all roughly the same. LastPass is in line with its competitors, plus or minute a dollar or two per month.
I have been involved with many password managers. Passportal, Secret Server, CyberArk, and BeyondTrust. I chose LastPass for our organization because of the pricing. The organization didn't want to implement something really expensive. LastPass, for what it's offering, for the price that it's offering the service, is unbeatable.
LastPass was cheap as chips. It was very cheap, hence one of the reasons we went with it. If you're a small organization and you're after something that'll do 90% of your requirements, it's very good. Licensing and all that was really cheap and simple to understand.
It would be nice to do a quarterly true-up process with them versus having to buy 50 licenses at a time when we realize we're out, then we have to buy more. So far, they have been nice about letting us exceed our allotment and just letting us true-up on our own, but a more robust quarterly true-up process would be good.
The pricing and licensing are okay. Basically, at the last contract negotiation, they attempted to jack the rate up and we just said, "No." We still did negotiations with them, but they bumped everything up quite a bit.
The previous pricing was of good value. I don't really know, as of now, whether the new pricing is. The Enterprise license is $48 per license per year now. That is a steep increase of $24, which is what it was when we first signed up.
You do not have to purchase licenses for your entire organization. You can scale as adoption grows.
out of 22 in Enterprise Password Managers
Average Words per Review
out of 22 in Enterprise Password Managers
Average Words per Review
Compared 49% of the time.
Compared 12% of the time.
Compared 11% of the time.
Compared 23% of the time.
Compared 15% of the time.
Compared 11% of the time.
|CyberArk Enterprise Password Vault, a component of the CyberArk Privileged Account Security Solution, is designed to discover, secure, rotate and control access to privileged account passwords used to access systems throughout the enterprise IT environment. The solution enables organizations to understand the scope of their privileged account risks and put controls in place to mitigate those risks. Flexible policies enable organizations to enforce granular privileged access controls, automate workflows and rotate passwords at a regular cadence without requiring manual IT effort. To demonstrate compliance, organizations can easily report on which users accessed what privileged accounts, when and why.|
LastPass Enterprise is a complete login solution, designed for security. It secures your business and centralizes control of employee passwords and applications with Single Sign-On, a one-click access to every site and tool. LastPass Enterprise provides password management, directory integration which synchronizes users with Active Directory, LDAP and custom APIs. It also provides access to shared accounts, for users inside and outside the organization without losing accountability.
Learn more about CyberArk Enterprise Password Vault
No more forgotten or insecure passwords
With LastPass Enterprise, you don't need to worry about remembering or creating secure passwords. Start a Free 14-Day Trial of LastPass Enterprise to experience integrated single sign-on, and secure password generation.
|AstraZeneca, Time, DBS, Novartis, Motorola, BT, pwc, Braun, Deloitte, Williams, Revlon, Belgacom, Barclays||Hootsuite, Truenorthlogic, Zirtual, CashStar, GoodData, Mainstream Technologies|
Financial Services Firm25%
Comms Service Provider13%
Software R&D Company29%
Financial Services Firm10%
Software R&D Company25%
Comms Service Provider7%