We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"We are able to log and get reporting on all privileged activity that is being performed. We like the fact that we can leverage the session recording feature, which is especially valuable when we're dealing with third-party vendors that have to remote into our our boxes and servers to do any work on behalf of the bank. Now, we can record everything they are doing to ensure that they're only doing the changes that were needed. In addition, we use it to leverage knowledge transfer with our internal staff."
"We use the solution’s Approval Anywhere feature which enables us to add an extra layer of security for critical passwords without adding time-consuming approval processes. By using this platform, if someone goes on a vacation, out of office, or needs urgent/planned leave, then our setup will select the functions tied to that person and automatically delegate them to the next person. That person can start performing that duty based on their access. No sharing of passwords is required."
"The Transparent Mode is the number one advantage of the product."
"It is generally easy-to-use and install."
"All sessions are audited and they are indexed/searchable through the GUI."
"The solution transparently integrates into the infrastructure and users do not notice it. I would give this feature the highest rating."
"There are a lot of features, so it's going to sound funny, but one of the most simplistic features, the Favorites feature, is the one we like the best. You do a full run-through of configuration to check out a server and then you can save that whole configuration as a favorite. So the next time you go in, you click on the favorite that you configured and it automatically takes you to the end so you can check the server out that much faster. It saves a lot of time..."
"It has greatly helped improve our security posture. Safeguard has an option where it will reset passwords on service accounts, then go out to those servers where that service account is running as a service and update the password on it. That makes password changes very easy. We can regularly change passwords now and are planning on making it an annual activity, where all the people who own service accounts will go in and make sure all their passwords get changed, updated, and reset."
"I like that it's Linux-based, and you don't need to have separate implementations, extra database licenses, or enterprise licenses. I think because it's Linux-based, it's more seamless than Windows. I also like the access manager, which I think is a super tool. Everything is browser-based, and you don't need a VPN. So, that's a great thing."
"Its video recording capabilities have definitely been key for us."
"I would like to see support for RDP over HTTPS so this product can be used in conjunction with the Microsoft terminal."
"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."
"The product uses a lot of resources in current sessions."
"The multilanguage functionality does not support the Arabic language, even though this solution is deployed in an Arabic region."
"From a usability perspective, what we are finding out is that our privileged domain admin users, in particular, want functionality for extending a checkout session. So we are working with One Identity support to see if there's an enhancement that can be made to the product."
"The Transparent Mode could be somewhat easier to use."
"I just received a question from a customer in regards to a connection with Oracle OID. I tried to integrate Safeguard with the Oracle YAML as well as something else to manage the groups and users from a different system, like AD or LDAP. This one feature could be better. At this moment, the platform system can only use the integration with LDAP or AD. The software for research and development to create a connector to a YAML platform can be very complicated."
"There is room for improvement in the launch module. They built in a launch button but they don't have effective instructions for configuring it to allow it to launch an RDP session. They're working on that, but the button is in the live product. If they were going to install something that wasn't useful, they should have just disabled it and not rolled it out with the product."
"It would be better if I could manage multiple accounts in one place, like CyberArk. With WALLIX, you can only manage one account, and you are given a separate category. You have to click on each connection to do anything. For example, CyberArk might give three options for one connection if you want to have an interactive user-level experience. But with WALLIX, you have to click three times to get that access. Also, the biggest disadvantage of WALLIX is the reporting. I feel like it's very weak in reporting when compared to the other solutions. As a solution, they're good and stable. But they need to make their reports neater and better. Right now, we're going to the console and then pressing buttons every single time."
"For me, the main issue has to do with the system performance itself."
"Our licensing costs are on a yearly basis."
"The pricing is about $80,000 per 100 servers. There are few elective costs."
"They offer a fair price for a robust solution."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"It was definitely cheaper than the other two products that we evaluated."
"Safeguard is cheaper than CyberArk."
One Identity Safeguard securely stores, manages, records and analyzes privileged accounts and access. It is an integrated solution that combines a secure hardened password safe and a session management and monitoring solution with threat detection and analytics.
WALLIX offers cybersecurity and privileged access management solutions that secure and protect your most critical IT assets.
Prevent security breaches and limit damage by putting in place a privileged access management solution. Get a free 45-day trial, or request a demo of One Identity SafeGuard.
One Identity Safeguard is ranked 2nd in Privileged Access Management (PAM) with 10 reviews while WALLIX Bastion is ranked 6th in Privileged Access Management (PAM) with 2 reviews. One Identity Safeguard is rated 8.8, while WALLIX Bastion is rated 8.0. The top reviewer of One Identity Safeguard writes "Improved our security posture by making password changes easy and allowing us to make regular password changes to service accounts". On the other hand, the top reviewer of WALLIX Bastion writes "A stable privileged access managed service with an useful secure and seamless access management feature". One Identity Safeguard is most compared with CyberArk Privileged Access Manager, Fudo PAM, Thycotic Secret Server, BeyondTrust Endpoint Privilege Management and Securonix Security Analytics, whereas WALLIX Bastion is most compared with CyberArk Privileged Access Manager, BeyondTrust Privileged Remote Access, Thycotic Secret Server, Fudo PAM and ManageEngine Password Manager Pro. See our One Identity Safeguard vs. WALLIX Bastion report.
See our list of best Privileged Access Management (PAM) vendors.
We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.