CyberArk Enterprise Password Vault Room for Improvement

PAM Architect at a tech services company with 11-50 employees
CyberArk has two disadvantages; the first is that it's insanely expensive and the other is it's very complex. That's the downside because CyberArk was not built organically. It was built systematically. They're not built into the product. You have to shoehorn things in. You have to create programmatic interfaces to make things work, but that's why I said it's the most complex product. CyberArk is still in the model of managing accounts and passwords. When you're logged in as a domain admin, you're leaving footprints everywhere you go. These footprints can be picked up and replicated. So, I think CyberArk is behind the curve in that area. Customers are already having an issue with the cost of CyberArk and then you have to add another $100,000.00 to the bill for other application accounts. I would like to see a more streamlined and built-in programmatic onboarding and offboarding process. Something a little bit less complex than what they're currently doing. The price is the problem and also the architecture can be daunting because CyberArk really strongly encourages having hardware vaults. Most corporations are totally virtualized. I use virtualized vaults on everything including the high availability configuration. View full review »
Identity and Access Management Advisor at a energy/utilities company with 5,001-10,000 employees
I'd like it to be a little more granular. I want a little bit more control over exactly what we do. I know if you do that, you add more knobs and dials to deal with, but that's just my personal approach: granular access. View full review »
Consultant at a financial services firm with 5,001-10,000 employees
This solution does not support the SQL Developer. We have to purchase separately from CyberArk and we have to ask them to develop it. This solution is a bit complex compared to other solutions. The installation and administration are complex. Some things can be done through the interface, but the whole installation process and upgrade process can be done with the installation script but it's complex. This is too complex for some organizations that do not have a large scale. In the next release, they could simplify the setup and I would like some tasks added like file sharing. When a client connects to CyberArk and wants to put a file on the server, they cannot. I thought that the client would be able to drop a file onto the server and the file would be visible on the server. I have to disable the connection to provide a copy and this is a security issue, and I closed this file to the client then he can't upload and files to us. They need to come up with a way for the client to file share with CyberArk. View full review »
Learn what your peers think about CyberArk Enterprise Password Vault. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,536 professionals have used our research since 2012.
Technical Lead IMSS at a computer software company with 1,001-5,000 employees
I don't see any problems because it's highly secure and very flexible. It gives us all types of storage options and it gives us a high level of security. From my experience, overall, I don't see many problems that need to be rectified. The only problem involves granting access to people who are authorized to view it. This user management area is the most critical. We have to constantly check on that area and we have to review and give proper access. Nobody should have more access than they are authorized for. View full review »
Pre-sales Engineer at StarLink - Trusted Security Advisor
The deployment architecture, the ability to locate and change credentials and the stability need to be improved. They need to install or include an appliance-based option, which CyberArk does not have. The technical support can improve on the time that it takes to get a callback. The integration is great but needs to be a bit more user-friendly. Also, a feature with the ability to create password sync. In the next release, I would like to see the following: * Availability on the cloud and the appliance. * More documentation for the setup. * Simplify the deployment. * Continuous operation with this solution. * Simplify the infrastructure for better stability. * Increase the support for applications. * Invest in local on the ground staff in various regions. * The ability to search by the activities, especially for Windows Servers. * Improve the auditing capabilities for their searches. View full review »
Director at a tech services company with 11-50 employees
Having a cloud version would be very helpful. You have to invest a lot of money for the infrastructure hardware so the cloud version would help. View full review »
Director / Engineer at Provincia
I think they can add a new feature for the account onboarding like I've seen for another PAM tool: for instance they should give to the CyberArk administrator the chance to upload the accounts via the PVWA using a txt or an xls file. View full review »
Oleksiy Zaionchkovskyy
Lead Systems Architect at IT Specialist LLC
The interface and user experience could be improved. In comparison, in Fudo Security, items are very searchable and it's very comfortable to work with. CyberArk is not very good at that. It could be improved and it wouldn't be too complicated to do so. The solution is too big and complex for any business that is small or medium-sized. They should offer a more compact version or make a solution better suited to smaller businesses. View full review »
Security Architect at a financial services firm with 10,001+ employees
I would prefer that this is a fully-managed service, rather than have to manage the software ourselves and keep it up to date. A cloud-based deployment would ultimately be better for us than an on-premises appliance. View full review »
Saurav Sinha
Manager Engineering at KDDI India Pvt Ltd
The pricing is too expensive and should be reduced. This is our only concern. When a small industry wants to invest in these kinds of tools, they don't have the budget to spend a lot of money on security. If the price were more reasonable then many other small businesses would consider using it. The installation process should be easier and more user-friendly so that you don't need to hire a third party to deploy it. Instead, an in-house administrator could do it. View full review »
Clifton Franklin
User at a pharma/biotech company with 5,001-10,000 employees
Some folks would like to have keystroke tracking and some would not. I guess if they could make that an option that might be interesting for certain organizations. View full review »
Presales Engineer/Network Security Technical Consultant at a tech services company with 51-200 employees
The initial setup could be simplified. Right now, in comparison to its nearest competitors, it's quite complex. View full review »
Learn what your peers think about CyberArk Enterprise Password Vault. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,536 professionals have used our research since 2012.