Anonymous UserSecurity Business Consultant at a tech services company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The solution's most valuable features are the efficiency and the quality of the recording."
"We use the solution’s “transparent mode” feature for privileged sessions. It is very easy because it is only a simple configuration for our users. We don't have to modify our network. We install it, configure it, and it works. So, it is super easy. The rollout for our users is seamless."
"We are able to log and get reporting on all privileged activity that is being performed. We like the fact that we can leverage the session recording feature, which is especially valuable when we're dealing with third-party vendors that have to remote into our our boxes and servers to do any work on behalf of the bank. Now, we can record everything they are doing to ensure that they're only doing the changes that were needed. In addition, we use it to leverage knowledge transfer with our internal staff."
"It's one of the best products we've seen. When you start looking at the functionality and use cases and usability of the product, it's straightforward. They designed this product with the end-user in mind, and they also had the sysadmin who is supporting the product in mind. They really did a nice job. Overall, it's a nice product to work with."
"There are a lot of features, so it's going to sound funny, but one of the most simplistic features, the Favorites feature, is the one we like the best. You do a full run-through of configuration to check out a server and then you can save that whole configuration as a favorite. So the next time you go in, you click on the favorite that you configured and it automatically takes you to the end so you can check the server out that much faster. It saves a lot of time..."
"All sessions are audited and they are indexed/searchable through the GUI."
"It has greatly helped improve our security posture. Safeguard has an option where it will reset passwords on service accounts, then go out to those servers where that service account is running as a service and update the password on it. That makes password changes very easy. We can regularly change passwords now and are planning on making it an annual activity, where all the people who own service accounts will go in and make sure all their passwords get changed, updated, and reset."
"The solution transparently integrates into the infrastructure and users do not notice it. I would give this feature the highest rating."
"Comprehensive coverage of the required features for the PAM solution."
"I would like to see an adjustment with more enterprise architecture. You can buy multiple appliances but you can not fully separate different functions, so scaling might be a bit more complicated."
"The interface is better now, but it still could be improved a lot. It needs more organization, menus, automatic refresh of information, and Web 2.0."
"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."
"From a usability perspective, what we are finding out is that our privileged domain admin users, in particular, want functionality for extending a checkout session. So we are working with One Identity support to see if there's an enhancement that can be made to the product."
"There is room for improvement in the launch module. They built in a launch button but they don't have effective instructions for configuring it to allow it to launch an RDP session. They're working on that, but the button is in the live product. If they were going to install something that wasn't useful, they should have just disabled it and not rolled it out with the product."
"Monitoring of the platform should be easier and more functional so that you can have a clear picture of the running service."
"Transparent mode was too cumbersome, so I don't foresee us being able to use it. On paper when we were initially talking about it, it was definitely going to be the preferred method until we realized the burden it would be on our network guys. Then, we had to step back and reevaluate what we wanted to do. That's when we changed our approach to use the RD Gateway feature."
"I would like to see support for RDP over HTTPS so this product can be used in conjunction with the Microsoft terminal."
"The management console could be improved."
"Our licensing costs are on a yearly basis."
"It was definitely cheaper than the other two products that we evaluated."
"They offer a fair price for a robust solution."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."
"The pricing is about $80,000 per 100 servers. There are few elective costs."
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"Safeguard is cheaper than CyberArk."
Earn 20 points
One Identity Safeguard securely stores, manages, records and analyzes privileged accounts and access. It is an integrated solution that combines a secure hardened password safe and a session management and monitoring solution with threat detection and analytics.
CA Privileged Access Manager is a simple-to-deploy, automated, proven solution for privileged access management in physical, virtual and cloud environments. It enhances security by protecting sensitive administrative credentials such as root and administrator passwords, controlling privileged user access, proactively enforcing policies and monitoring and recording privileged user activity across all IT resources. It includes CA PAM Server Control (previously CA Privileged Identity Manager) for fine-grained protection of critical servers
Prevent security breaches and limit damage by putting in place a privileged access management solution. Get a free 45-day trial, or request a demo of One Identity SafeGuard.
One Identity Safeguard is ranked 2nd in Privileged Access Management (PAM) with 11 reviews while Symantec Privileged Access Manager is ranked 10th in Privileged Access Management (PAM) with 1 review. One Identity Safeguard is rated 8.8, while Symantec Privileged Access Manager is rated 0.0. The top reviewer of One Identity Safeguard writes "Improved our security posture by making password changes easy and allowing us to make regular password changes to service accounts". On the other hand, the top reviewer of Symantec Privileged Access Manager writes "Great features that provide comprehensive coverage of what's required for the PAM solution". One Identity Safeguard is most compared with CyberArk Privileged Access Manager, WALLIX Bastion, Fudo PAM, Thycotic Secret Server and ARCON Privileged Access Management, whereas Symantec Privileged Access Manager is most compared with Cisco ISE (Identity Services Engine), CyberArk Privileged Access Manager, ARCON Privileged Access Management, ForgeRock and Fudo PAM.
See our list of best Privileged Access Management (PAM) vendors.
We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.