Compare CyberArk PAS vs. One Identity Manager

CyberArk PAS is ranked 1st in Privileged Access Management with 51 reviews while One Identity Manager is ranked 1st in Identity Management (IM) with 31 reviews. CyberArk PAS is rated 9.0, while One Identity Manager is rated 8.0. The top reviewer of CyberArk PAS writes "Gives us the security of all credentials in one place and lightens our administrative load". On the other hand, the top reviewer of One Identity Manager writes "Enables us to find all sorts of questionable activity that we were able to address". CyberArk PAS is most compared with BeyondTrust Endpoint Privilege Management, SailPoint IdentityIQ and Cisco ISE (Identity Services Engine), whereas One Identity Manager is most compared with SailPoint IdentityIQ, CyberArk PAS and One Identity Active Roles.
Cancel
You must select at least 2 products to compare!
CyberArk PAS Logo
31,844 views|15,999 comparisons
One Identity Manager Logo
7,480 views|3,882 comparisons
Most Helpful Review
Anonymous User
Find out what your peers are saying about CyberArk, ARCON, BeyondTrust and others in Privileged Access Management. Updated: January 2020.
390,245 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
CyberArk has been easy for us to implement and the adoption has been good. We've been able to standardize a bunch of things. We've been able to standardize relatively easily with the use of the platforms and managing the policies.CyberArk is a very stable product and it's a stable product because it has a simple design and a simple architecture that allows you to leverage the economies of scale across the base of your infrastructure that you already have implemented. It doesn't really introduce any new complex pieces of infrastructure that would make it that much more difficult to scale.When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution.Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find the accounts that we're going to need to take under control.The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task.For a while, there were individual IDs having privileged access. We wanted to restrict that. We implemented the solution so that it can be more of internal control. We can have session recordings happening and reduce our attacks.There are no issues with scalability. Our clients are very happy to use the product.We are maintaining compliance in PCI, SOX and HIPPA, which is a big thing. Auditors really like it, and it has made us stay compliant.

Read more »

The short version is that we gained significant insight into the issues of access governance. This allowed us to turn an auditing nightmare into praise from our auditors.It gives the best user experience, enabling us an overview of all user entitlements.This solution is better on the IT personnel, because now they spend less (or almost no time) managing user rights.The most valuable feature for me is the built-in security, which is the best that I have seen.The connection with multiple systems is what makes it flexible. We can create the accounts flexibly, enabling access to other systems. In addition to Active Directory, it can extend to SAP, to Salesforce, to Office 365, etc.Nobody has to put people in AD groups by hand anymore. It goes automatically and that's very good. It's also very flexible. It's quite easy to customize and we have customized it a lot.For me, personally, the automation is the most valuable feature. I don't have to do things manually, like creating user accounts and provisioning them to the target systems.This is almost a complete solution for us.

Read more »

Cons
There is a bit of a learning curve, but it's a pretty complex solution.CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms.The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time.It's a big program. To scale excessively, locally, on an on-prem application, takes a lot of servers.Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use.Integration with the ticketing system should allow any number of fields to be used for validation before allowing a user to be evaluated and able to access a server.The initial setup of CyberArk is a challenge if you do not have prior experience with it.Make it easier to deploy.

Read more »

The support team could be improved on. The first level of support essentially looks up knowledge base articles and often can't provide the answer needed.The initial setup was complex. We have a lot of different systems. The journey from implementing to joining all the systems was difficult.The performance could use improvement. Sometimes synchronizations take too long.A feature that I would like to see is a mobile app that provides users the ability to make changes or add users to the Active Directory, on the fly.More integration with SAP and with the internet of things would be good. We also have system devices that we could manage as identities, so that would be a feature to add.One of the things we would like is the ability to have more than one system role manager. That would be nice. For example, when people are on vacation, sometimes it gets a little hard to administrate system roles.The system role manager, or some of the roles that are inside Identity Manager, are limited to one user. It would be more flexible if these responsibility roles could be attached to many people.It should be able to give a client version of the product, rather than just a web-portal.

Read more »

Pricing and Cost Advice
In comparison to other products on the market, CyberArk is a more costly product.This solution is considered to be more expensive than others out there on the market today.I do not have any opinions to add about the pricing of the product.No, I do not have any advice on the price of the product.Network and security licenses are currently being managed by other outsource vendors, so they are facing some type of problems in the digital aspect.With reducing the privileged account access, there has been a huge improvement. They are now bringing more accounts on a little at a time.If you are looking at implementing this solution, buy the training and go to it.Our risk is definitely significantly lower. Also, our resources are low.

Read more »

There is a one-time licensing cost, and there is also a yearly subscription fee.It's costlier that some other products, and there is nothing that fits every solution.We are using a self-built solution. It would cost too much to get that up to the standard of what we need. In the long-term, it is cheaper to buy a solution that has what we need. Though, we are still running the previous solution, as we are still in the implementation phase.It needs flexibility in the licensing or packaging, because you buy the entire package at once, and sometimes the customers are a bit overwhelmed with whatever they get. I would like if they could cut the licensing or packaging into somewhat smaller things.It has helped to reduce customer costs.We are paying for premium support, which is expensive. However, we do receive very good, fast support.It helps us save on licenses for applications because we are following the account lifecycle, as well as account reactivation.We have the premium support and are very satisfied. They are always answer our questions very quickly. For the moment, we are very satisfied, but I think it's because we are paying for the premium support.

Read more »

report
Use our free recommendation engine to learn which Privileged Access Management solutions are best for your needs.
390,245 professionals have used our research since 2012.
Ranking
Views
31,844
Comparisons
15,999
Reviews
54
Average Words per Review
634
Avg. Rating
8.9
1st
Views
7,480
Comparisons
3,882
Reviews
31
Average Words per Review
650
Avg. Rating
8.0
Top Comparisons
Compared 18% of the time.
Also Known As
CyberArk Privileged Access Security, CyberArk Privileged Account Security, SSH Key Manager, Privileged Session Manager, Privileged Threat Analytics, Application Identity Manager, On-Demand Privileges Manager, Endpoint Privilege ManagerQuest One Identity Manager, Dell One Identity Manager
Learn
CyberArk
One Identity
Overview

CyberArk is the trusted expert in privileged account security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.

One Identity Manager helps you mitigate risk, secure data, meet uptime requirements and satisfy compliance by giving your users access to data and applications they need and nothing more. IAM can be driven by business needs, not IT capabilities. With Identity Manager, you can manage user identities, privileges and security across the enterprise, putting you in control of identity management and taking the burden off your IT staff.

Offer
Learn more about CyberArk PAS
Learn more about One Identity Manager
Sample Customers
Rockwell AutomationTexas A&M, Sky Media, BHF Bank, Swiss Post, Union Investment, Wayne State University. More at OneIdentity.com/casestudies
Top Industries
REVIEWERS
Financial Services Firm29%
Insurance Company16%
Healthcare Company9%
Energy/Utilities Company9%
VISITORS READING REVIEWS
Software R&D Company29%
Comms Service Provider13%
Financial Services Firm12%
Retailer7%
REVIEWERS
Financial Services Firm36%
Manufacturing Company14%
Healthcare Company14%
Retailer9%
VISITORS READING REVIEWS
Software R&D Company29%
Comms Service Provider11%
Financial Services Firm10%
University9%
Company Size
REVIEWERS
Small Business15%
Midsize Enterprise11%
Large Enterprise73%
VISITORS READING REVIEWS
Small Business7%
Midsize Enterprise8%
Large Enterprise85%
REVIEWERS
Small Business21%
Midsize Enterprise3%
Large Enterprise76%
Find out what your peers are saying about CyberArk, ARCON, BeyondTrust and others in Privileged Access Management. Updated: January 2020.
390,245 professionals have used our research since 2012.
We monitor all Privileged Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.