Rodney DapilmotoSystems Admin Analyst 3 at CPS Energy
Mohamed Yassine BenomarCyber Security Consultant at a tech company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution."
"Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find the accounts that we're going to need to take under control."
"CyberArk is a very stable product and it's a stable product because it has a simple design and a simple architecture that allows you to leverage the economies of scale across the base of your infrastructure that you already have implemented. It doesn't really introduce any new complex pieces of infrastructure that would make it that much more difficult to scale."
"CyberArk has been easy for us to implement and the adoption has been good. We've been able to standardize a bunch of things. We've been able to standardize relatively easily with the use of the platforms and managing the policies."
"The risk of lost password and forbidden access to resources has been drastically reduced which increased the security level for the entire company,"
"The technical support is good."
"The most valuable feature is Special Monitoring."
"The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task."
"The solution's most valuable feature is the authentication for the consumers. The integration with other third-party applications is excellent."
"The most valuable features are that it is easy to manage and it's stable."
"We create and define the permissions and configurations for the users."
"ForgeRock has CIAM, which other products didn't have, and they have DevOps ready."
"Even though we have very small business interests with them today, they see that we plan on growing drastically over the next two years. Therefore, we have excellent support and we are now at a point where we are not calling tech support. We pick up a phone and call the Account Manager and they'll get everything resolved for us. We don't have to queue along with everybody else and go through a long process."
"I like the intelligent authentication feature."
"Their access management solution, OpenAM, is most valuable because it meets the needs of a lot of users."
"The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time."
"It's a big program. To scale excessively, locally, on an on-prem application, takes a lot of servers."
"CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms."
"There is a bit of a learning curve, but it's a pretty complex solution."
"It needs better documentation with more examples for the configuration files and API/REST integration"
"We found a lot of errors during the initial setup. They should work to improve the implementation experience and to remove errors from the process."
"The authentication port is available in CyberArk Alero but not Fortinet products."
"Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use."
"The identity management model needs a bit of improvement."
"They should improve the solution by include reporting."
"I find that it's quite expensive for just an open-source system. Support is quite expensive."
"Automatic Deployment needs improvement. it could be made easier."
"We're worried about the scaling. We're told it will be okay and there won't be issues, however, I'm not 100% convinced."
"It should have a better user interface. Its flexibility should also be improved. It is not about simplifying; it is more about flexibility. Each company has its own requirements, and ForgeRock can provide more flexibility in terms of the use of existing modules to implement features for the customers."
"It should be a little bit easier to implement. It is user-friendly, but there is always scope for improvement."
"I believe that this solution is priced well. It's the market leader and I think that it's the best solution."
"Overall, its pricing is really good. The main difference from all the other vendors is that they have one package that covers all the functionality and modules of the basic PAM, except the add-on modules like adware and server protection. It also doesn't include the licenses for domain controller protection or maybe an API call-related feature. For the basic privileged access management, the bundle pricing is really good, but when it comes to an agent-based solution for advanced cyber protection or application identity managers, it is expensive. Services are also very expensive if you hire the services team from CyberArk, but these guys are really good. For a couple of large banking projects, we had an experience with them. The banks wanted to have things quickly and efficiently, so we had to hire them. If we take four weeks, these guys can do everything on a weekend. They charge quite a big sum of money, but they know the system well."
"The price of this solution is quite reasonable."
"The solution is very expensive and requires a license. We pay for an enterprise license."
"Pricing is quite high and it could be improved."
"They have two types of licensing: purchase and subscription. You have to pay for each admin user, such as Microsoft admin, mail admin, database admin, etc."
"It's a bit pricey and could be more competitive."
"We have multiple clients we are looking at right now. We are at a very small number, however, the idea and the goal is to grow. We are looking at about $100,000 and $50,000 a minimum a month cost. That'd be minimum maybe in a couple of years."
"Its price is comparable to other products in the market."
"Its licensing is on a yearly basis, but it also depends on the contract that you have with the vendor. They have multiple types of contracts. There are additional costs to the standard licensing fees. If you need some of the features, you have to pay more."
CyberArk is the trusted expert in privileged access management and a global leader Identity Security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.
CyberArk Privileged Access Manager is ranked 1st in Privileged Access Management with 15 reviews while ForgeRock is ranked 3rd in Access Management with 7 reviews. CyberArk Privileged Access Manager is rated 8.2, while ForgeRock is rated 7.6. The top reviewer of CyberArk Privileged Access Manager writes "Provides simplicity and ease of implementation for the right level of security controls". On the other hand, the top reviewer of ForgeRock writes "Good for multi-client setups and easy to implement but the scalability seems uncertain". CyberArk Privileged Access Manager is most compared with BeyondTrust Endpoint Privilege Management, Thycotic Secret Server, Azure Active Directory, SailPoint IdentityIQ and Fudo PAM, whereas ForgeRock is most compared with SailPoint IdentityIQ, Azure Active Directory, Okta Workforce Identity, OpenIAM Identity Governance and PingID. See our CyberArk Privileged Access Manager vs. ForgeRock report.
See our list of .
We monitor all Privileged Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.