Most Helpful Review
Good control over traffic with an advanced packet inspection engine, but it needs to include a secure web gateway
Find out what your peers are saying about CyberArk PAS vs. Palo Alto Networks VM-Series and other solutions. Updated: September 2019.
455,962 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"For a while, there were individual IDs having privileged access. We wanted to restrict that. We implemented the solution so that it can be more of internal control. We can have session recordings happening and reduce our attacks."
"The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task."
"When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution."
"Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find the accounts that we're going to need to take under control."
"CyberArk is a very stable product and it's a stable product because it has a simple design and a simple architecture that allows you to leverage the economies of scale across the base of your infrastructure that you already have implemented. It doesn't really introduce any new complex pieces of infrastructure that would make it that much more difficult to scale."
"CyberArk has been easy for us to implement and the adoption has been good. We've been able to standardize a bunch of things. We've been able to standardize relatively easily with the use of the platforms and managing the policies."
"The risk of lost password and forbidden access to resources has been drastically reduced which increased the security level for the entire company,"
"The technical support is good."
"The most valuable aspects of this solution are that it's simple and stable. It has better security aspects compared to other similar solutions."
"The most valuable features are security and support."
"The interface with Panorama makes it very easy to use."
"The most valuable features are web control and IPS/IDS."
"In Palo Alto the most important feature is the App-ID."
"The most valuable feature is the Posture Assessment."
"The most valuable feature is that you can control your traffic flowing out and coming it, allowing you to apply malware and threat protection, as well as vulnerability checks."
"The Palo Alto VM-Series is nice because I can move the firewalls easily."
"Integration with the ticketing system should allow any number of fields to be used for validation before allowing a user to be evaluated and able to access a server."
"Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use."
"The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time."
"It's a big program. To scale excessively, locally, on an on-prem application, takes a lot of servers."
"CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms."
"There is a bit of a learning curve, but it's a pretty complex solution."
"It needs better documentation with more examples for the configuration files and API/REST integration"
"We found a lot of errors during the initial setup. They should work to improve the implementation experience and to remove errors from the process."
"In the next release, I would like for them to develop an anti-malware functionality in which it checks for malicious files like Cisco has."
"There should be an option for direct integration with the Azure platform."
"The command-line interface is something that some people struggle with and I think that they should have an option to go straight to the GUI."
"I would like to have automatic daily reporting, such as how many users have connected via SSL VPN."
"The solution needs to have more easily searchable details or documentation about it online, so it's easier to Google if you have queries."
"In the next release, I would like to see better integration between the endpoints and the firewalls."
"The disadvantage with Palo Alto is that they don't have a cloud-based solution that includes a secure web gateway."
"The product needs improvement in their Secure Access Service Edge."
Pricing and Cost Advice
Information Not Available
"The price of this solution is very high for some parts of Africa, which makes it a challenge."
"Palo Alto can be as much as two times the price of competing products that have twice the capabilities."
"The cost of this product varies from customer to customer and the relationship with IBM, including how many offerings from IBM are already being used."
"Because I work for a university and the URL is for the institution, it's a free license for us."
Questions from the Community
Ask a question
Earn 20 points
Top Answer: I have been working with Palo Alto for more than 5 years now and I think I have worked with almost every other firewall platform out there. Palo Alto is my go to firewall for several reasons: Always a… more »
Top Answer: The most valuable features are web control and IPS/IDS.
Top Answer: The price of this solution is very high for some parts of Africa, which makes it a challenge. If it were lowered then it would be more popular.
out of 30 in Privileged Access Management
Average Words per Review
out of 46 in Firewalls
Average Words per Review
Compared 14% of the time.
Compared 11% of the time.
Compared 10% of the time.
Compared 8% of the time.
Compared 7% of the time.
Compared 40% of the time.
Compared 12% of the time.
Compared 11% of the time.
Compared 7% of the time.
Compared 3% of the time.
Also Known As
|CyberArk Privileged Access Security, CyberArk Privileged Account Security, SSH Key Manager, Privileged Session Manager, Privileged Threat Analytics, Application Identity Manager, On-Demand Privileges Manager, Endpoint Privilege Manager|
|CyberArk||Palo Alto Networks|
CyberArk is the trusted expert in privileged account security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.
The VM-Series is a virtualized form factor of our next-generation firewall that can be deployed in a range of private and public cloud computing environments based on technologies from VMware, Amazon Web Services, Microsoft, Citrix and KVM.
The VM-Series natively analyzes all traffic in a single pass to determine the application identity, the content within, and the user identity. These core elements of your business can then be used as integral components of your security policy, enabling you to improve your security efficacy through a positive control model and reduce your incident response time though complete visibility into applications across all ports.
In both private and public cloud environments, the VM-Series can be deployed as a perimeter gateway, an IPsec VPN termination point, and a segmentation gateway, protecting your workloads with application enablement and threat prevention policies.
Learn more about CyberArk PAS
Learn more about Palo Alto Networks VM-Series
|Rockwell Automation||Warren Rogers Associates|
Financial Services Firm25%
Comms Service Provider8%
Computer Software Company32%
Comms Service Provider20%
Financial Services Firm8%
Financial Services Firm17%
Computer Software Company31%
Comms Service Provider17%
CyberArk PAS is ranked 1st in Privileged Access Management with 12 reviews while Palo Alto Networks VM-Series is ranked 9th in Firewalls with 14 reviews. CyberArk PAS is rated 9.0, while Palo Alto Networks VM-Series is rated 8.4. The top reviewer of CyberArk PAS writes "Provides simplicity and ease of implementation for the right level of security controls". On the other hand, the top reviewer of Palo Alto Networks VM-Series writes "An excellent solution for the right situations and businesses". CyberArk PAS is most compared with BeyondTrust Endpoint Privilege Management, Thycotic Secret Server, Microsoft Azure Active Directory Premium, Cisco ISE (Identity Services Engine) and SailPoint IdentityIQ, whereas Palo Alto Networks VM-Series is most compared with Azure Firewall, Fortinet FortiGate, Cisco ASA Firewall, Fortinet FortiGate-VM and Check Point NGFW. See our CyberArk PAS vs. Palo Alto Networks VM-Series report.
See our list of .
We monitor all Privileged Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.