We performed a comparison between LastPass, Okta Workforce Identity, and Symantec Siteminder based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, Auth0 and others in Single Sign-On (SSO)."It is easy to use."
"The stability has been rock solid. A couple of years ago, they were breached. However, if you had two-factor authentication enabled, it didn't affect you. We did, so it has been good."
"One feature that is really important to us is the ability to create secure notes."
"Reduction in number of sensitive passwords stored insecurely on local systems."
"This product helps keep us secure."
"Tech support has been good. We haven't needed it much, because it is not a complex application. There is not that much you have to do with it."
"The initial setup for this process is straightforward and extremely easy. It just works."
"The most valuable feature for me is being able to pair applications and user permissions."
"I am able to authenticate my users on cloud and SaaS applications such as Workday through Okta workflows."
"First of all, the solution is very simple."
"Valuable features include UD, SSO functionality, MFA and Adaptive MFA functionality, ability to link multiple Directory databases with UD."
"Enabled MFA to access federated applications as well as increased user satisfaction through improved provisioning times and more reliable processes."
"Okta has introduced the Universal Directory. It has custom attribute capability and user permissions to read/write on their profiles or hide them. Profile sources and identity profile sourcing are two different components that I haven't seen in other products."
"The provisioning functionality has been the most valuable. This solution has good performance, fast integration and is very responsive."
"It is a very scalable solution."
"Other than Okta being an easy and awesome integration tool, one of the best features it has is the provisioning and deprovisioning, which makes management way easier. You don't need to be too technical to understand how it works."
"I liked the debugging part. There are only two files (trace file and log file) that you need to look into while performing debugging, and the logs give you the exact info on where and what needs to be fixed."
"Authentication & Authorization are important because all the sites need authentication for security purposes. That has been handled pretty well all these years with SSO."
"Symantec Siteminder Is both scalable and stable."
"You can quickly deploy the entire product with a basic config within couple of hours."
"If you look at our organization, and really all financial institutions, we have a lot of legacy apps. So it really helps to get Single Sign-On."
"It is reliable."
"Ease of use is very good, for administrating it. It's very well known."
"All of our applications get a point, click, and you are in, while we increase security at the same time."
"I struggle a little bit with the mobile app. As a browser extension, it works really well, and we are able to get to what we need to. However, on the phone, it's not quite as easy to navigate."
"We have issues from time to time where, for some reason, it just keeps auto logging-out the user and then, the next day, they'll come in and it will work just fine."
"The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass."
"One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself."
"Our biggest issue over the years was around the stability of the LDAP sync to AD."
"The management through the plugin is poor. It consumes tons of client resources especially as an administrator."
"The ability to set up an account expiration limit/date would be very useful."
"Its user interface should be better, and there should probably be more information about scalability."
"We have experienced some challenges in integrating this solution with Scope and Cognito."
"They also have single sign-on (SSO). When we bought Okta Workforce Identity a year and a half ago, I was also looking at SSO, but not much documentation was available for SSO. The documentation for SSO should be a little more robust for somebody who is implementing it for the first time."
"The solution's user interface needs to be improved and made easy."
"The training is too costly."
"We still had to write several internal programs/scripts to complete the user-provisioning process. Okta does not have the ability to provision mailbox accounts for on-premise Exchange or in a hybrid O365 environment. The Group Push function from Okta to AD did not work reliably in our environment."
"The lifecycle management part can be improved. It should also have identity governance and the ability to choose a specific factor authentication at the application level. Its licensing and pricing can also be improved."
"The solution should have greater on-premises availability, not just cloud and more package customization in its processing."
"The only aspect in which it can be improved is that the interface could be cleaner. I found this even when I was trying to do my certification exam because the certification is hands-on. You find yourself fumbling around a little bit to find simple things. This happens even when you start to get familiar with the product."
"The technical support could be better."
"We're currently unable to find information about if the solution can do a full implementation with SQL. Some better and more accessible documentation for new users or those curious about the product would be helpful."
"The support could be faster."
"Better documentation. I went through some sessions on single sign-on for version 12.7."
"The GUIs are not very clear, especially when integrating with other products from CA."
"An area Siteminder could improve on is that there are a few limitations, in terms of new protocols for OpenID. If I want to have different scopes, the features are limited. They also do not have APIs exposed, which is a major drawback. API is a feature I would like to see included in the next release."
"We are finding some compatibility issues. We're still working with CA on them."
"I would prefer to see their SAML integration be a more streamlined and easier interface."
Earn 20 points
