We just raised a $30M Series A: Read our story

Thycotic Secret Server OverviewUNIXBusinessApplication

Thycotic Secret Server is the #3 ranked solution in our list of top Enterprise Password Managers. It is most often compared to CyberArk Privileged Access Manager: Thycotic Secret Server vs CyberArk Privileged Access Manager

What is Thycotic Secret Server?

Secret Server is a fully-featured Privileged Access Management (PAM) solution available both on premise and in the cloud. It empowers security and IT ops teams to secure and manage all types of privileged accounts and offers the fastest time to value of any PAM solution.

Thycotic Secret Server Buyer's Guide

Download the Thycotic Secret Server Buyer's Guide including reviews and more. Updated: October 2021

Thycotic Secret Server Customers

Secure-24, University of San Diego, International Rescue Committee, San Francisco Ballet, Perkins Coie, University of San Diego, D.S.S. Limited, Turbo's Hoet, Eclipse Computing, Cathay Bank, Stellarise, J&R Consulting

Thycotic Secret Server Video

Pricing Advice

What users are saying about Thycotic Secret Server pricing:
  • "Pricing is comparable to competing products."
  • "Secret Server is expensive when compared to the cost to some alternatives."
  • "There are different plans and additional licensing costs that can be instituted for add-ons."
  • "It would be beneficial if it were reduced."
  • "When comparing the price of Thycotic Secret Server with other solutions it is reasonable."
  • "Its price is okay. We don't compete on pricing. We seldom use price to win over our competitors. We prefer it this way because if we can sustain the price, we make more margin as well. We don't want the price to go down to the bottom where despite the win, there's no margin at all."

Thycotic Secret Server Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
Tor Nordhagen
Executive Director at Semaphore
Real User
Top 5
Excellent access management that can serve very large networks

Pros and Cons

  • "The GUI interface is well-designed and user-friendly."
  • "This product is excellent in every way except minor details in handling extremely large environments."

What is our primary use case?

The primary use case is managing access for user groups and individuals in a very large environment.  

What is most valuable?

One of the best things about Thycotic is that it is very easy-to-use. It is logical, it has well-designed screens and a nice GUI interface. It has good performance and is generally a pleasure to operate.  

What needs improvement?

If you look at Thycotic, it is a great product that has pretty much all the same features as CyberArk — which will be replacing it. There is not much difference between the two. We will be switching away from using Thycotic, however, before the end of the year.  

The catalyst for the change was a formal comparison of the two products that we did using each to evaluate how we would use it in solving actual use case issues. In the presentation of the scoring over specific categories, CyberArk had slightly better professional service marks and the same price. Besides that, the two products were neck-and-neck and almost identical in the scoring. CyberArk just came out just a little bit better than Thycotic in the details, and not by much at all. Be that as it may, the formal comparison is the reason for the change.  

For how long have I used the solution?

Thycotic has been in use in our Healthcare system for four years.  

What do I think about the stability of the solution?

Thycotic is a rock-solid product. Our organization never had any issues with it.  

What do I think about the scalability of the solution?

If you consider the shere physical size of the Healthcare environment, you can tell from that just how scalable the product is. Not every product can handle 55,000 network elements and 15,000 servers.  

How are customer service and technical support?

The technical support for Thycotic is very good as might be expected. The members of the support team that I have been in contact with are very much on the ball. Thycotic has  excellent service staff.  

Which solution did I use previously and why did I switch?

This will be the last year Thycotic will be in operation at Healthcare in Norway because it will be replaced by CyberArk at some time this year.  

I think there are some very small things in Thycotic which are a little harder to do, and that is only because the Healthcare environment is so large. Healthcare has 55,000 network elements and 15,000 servers. One of the few things that CyberArk does better than Thycotic is to more neatly group IT assets in smaller bundles using a 'safe' that could be assigned to groups or teams for access. By comparison, Thycotic — at least in the versions leading up to the competition — lists all the assets at one time, no matter how many there are. When there are lists which are 15,000 elements long, it is harder to locate items and divvy up the work. So it was some slight usability things like this that really made the difference in the outcome of our comparison.  

While this organizational feature in Thycotic was not so good, some other parts of the user interface that are included in it are really fabulous. Thycotic is more intuitive and it is more logical in many ways than CyberArk. So I really like the Thycotic product. But for this very large environment, it turned just to be slightly less applicable to our situation than its competition.  

As I probably indicate from my answer, if it was not for the fact that we did a formal comparison and scoring of the products — following the objective measures that we have to follow when we buy things in the public — we probably would have done well just keeping Thycotic. But when you follow the Government process and the idea is to be absolutely impartial, then the way the scoring is set up is the way it goes.  

What's my experience with pricing, setup cost, and licensing?

I think the pricing of Thycotic and CyberArk products are very similar.  

Which other solutions did I evaluate?


What other advice do I have?

On a scale from one to ten where one is the worst and ten is the best, I would rate Thycotic as probably a nine. That is only because I have to rank them slightly lower after we decided to make the switch to CyberArk, and replacing a product that is a ten would not make a lot of sense. So a nine-out-of-ten it is.  

Thycotic is a product that is so friendly that it can be used by nearly anyone and everyone, and that is a good place to be. As for the limitations in a very large environment, Thycotic could invest in making changes in the product to handle structuring in a segmented way. It would be costly for Thycotic to make that investment, but for Healthcare as a user group, that would have been the difference. We have already bought another product, so we are not going to change our minds again, but it may be worth considering for the team at Thycotic.  

I would probably recommend Thycotic for most businesses because it is simpler and easier to deal with than CyberArk. So really, I would recommend it to all businesses except for the extremely large ones.  

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
TS
Pre Sales/Technical Engineer at a tech services company with 11-50 employees
Real User
Top 20
Good user interface and session monitoring and easy to set up

Pros and Cons

  • "The user interface is quite good. It's very straightforward."
  • "There could be tweaks here and there. For example, instead of going to one main function to do this and another main function to do that, the solution could remap the user interface so that a person only has to go through one function. The way that function branches off should make a bit more sense."

What is our primary use case?

I primarily use the solution for PRAM management, privileged access management, and other similar tasks as well. We submit credentials and replicate and post them directly behind the scenes. There's also some session monitoring and issue recording, etc. that we handle.

What is most valuable?

The session monitoring and session recording aspects of the solution are valuable to us. The fact that, as a support, you can actually monitor sessions on the fly is really helpful. A lot of sessions are live. Therefore, if anything happens within the session, there is an alert, and the security can terminate the session. 

The fact that you can go back to any other session according to user or sequence, is quite useful. You can get a nice audit of the recording sessions. It's quite deep and quite useful.

Users are able to whitelist commands. It's very helpful.

The solution provides security for certain tasks as well. There's also regression on items like passwords.

The user interface is quite good. It's very straightforward.

The reporting is very powerful.

What needs improvement?

The solution is very good at improving based on customer feedback. If, for example, a customer asks for updated functionality, the next version will likely fit the requirements or requests. They're very responsive in that sense.

There could be tweaks here and there. For example, instead of going to one main function to do this and another main function to do that, the solution could remap the user interface so that a person only has to go through one function. The way that function branches off should make a bit more sense.

I'd like to see more automation on parts of the solution that cover APIs and disk space. There should be more automation in terms of what's out-of-the-box. It would help some customers as not all of them are knowledgable and well-skilled. It would make it easier for the layman.

For how long have I used the solution?

I've been using the solution for one year.

What do I think about the stability of the solution?

The solution is pretty stable.

What do I think about the scalability of the solution?

The solution is highly scalable. The architectural deployment is quite flexible. You can deploy it on multiple sites, you can do your load balancing, you can do your SQL storing, etc. It gives you various architectural deployment and flexibility options. It's very powerful.

How are customer service and technical support?

We've been in touch with technical support in the past and they've been very helpful. We've been satisfied with their level of support.

Which solution did I use previously and why did I switch?

We didn't previously use a different solution. This is my first foray into PRAM management and enterprise solutions.

How was the initial setup?

The initial setup is pretty straightforward. We didn't find it to be overly complex in any way.

Which other solutions did I evaluate?

I did look at a few other companies and compared a few different features before choosing this solution. I looked at FireEye, BeyondTrust, and CyberArk.

What other advice do I have?

I have a lot of hands-on experience with the solution and I present it to customers and do all the POCs for them.

I'd recommend the solution and advise others to look at cloud options, as most companies are moving to the cloud anyway right now. It's flexible, so users can deploy it both on-prem or on the cloud. There are lots of great custom features and network monitoring capabilities.

You can also patch the privileged behavior and it will, on the fly, give you nice digital printouts with privileged behavior also. If your system admin or one of your admins suddenly acts strangely, even at 2 AM on a Sunday, it will flag that because that's not normal behavior. That's due to the fact it has a lot of powerful machine learning built into the solution as well.

The endpoint application control of the privileged manager is powerful because of the authorizations, etc. The privileged manager can ensure that you actually are able to manage everything very well - everything from user privileges to admin. You can even escalate items easily.

I'd rate it nine out of ten, just because there's always room for improvement. However, for my purposes, it's a fantastic solution.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Learn what your peers think about Thycotic Secret Server. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
542,608 professionals have used our research since 2012.
Zebulon Griggs
Chief Executive Officer at Zigabyte
Real User
Top 10
Windows-based with a good function set, easy to deploy, and capable of scaling up and out depending on your needs

Pros and Cons

  • "I like that it is Windows-based. It is good that primarily, it is not an appliance. Some of the other applications in the space, such as a Quest Software CPAM or a Safeguard, are appliances, so you can't deploy the ends of them. With Thycotic, you can either install your Temporal Protection module physically in the VM host, or you can use BouncyCastle for high-security module capabilities."
  • "One thing that I wish they would do is to have a Kubernetes or container-based deployment supported, but they're not quite there yet. Containerization or support for containerization would be fantastic."

What is our primary use case?

We are a Thycotic partner. We use Thycotic extensively, and we also do a lot of implementations for them. Generally, it is for privilege access management and session recording capabilities. 

A few clients have used it as a proxy capability, and the functionality there is that the privileged accounts have access from their workstations to the servers. In order to get access, they have to be basically proxied through Thycotic for an SSH or RDP connection, and then you have a control capability for auditing and session recording.

We have used pretty much every version since 2018, including the latest version. We have deployed it to AWS and on-prem.

What is most valuable?

I like that it is Windows-based. It is good that primarily, it is not an appliance. Some of the other applications in the space, such as a Quest Software CPAM or a Safeguard, are appliances, so you can't deploy the ends of them. With Thycotic, you can either install your Temporal Protection module physically in the VM host, or you can use BouncyCastle for high-security module capabilities.

What needs improvement?

One thing that I wish they would do is to have a Kubernetes or container-based deployment supported, but they're not quite there yet. Containerization or support for containerization would be fantastic.

For how long have I used the solution?

I have been using this solution since 2018.

What do I think about the stability of the solution?

There is nothing major. There were minor things that were really edge cases. We've had an issue in 2019 where if you went through the web interface to change your password, the agent that actually did the password change on the backend would go and make the change to the main controller or the active directory domain controller. After that, without waiting long enough for the change to finish committing, meaning waiting for zero nanoseconds, it would go and check to see if the change had been accomplished. So, they introduced a slight delay of two to three milliseconds, and that fixed the problem. It was really straightforward, but it took a little while to demonstrate what the actual problem was.

What do I think about the scalability of the solution?

With our latest versions, the scalability is very good. They have a scale-out and scale-up capability depending on what your needs are and how distributed you want the capabilities to be. I don't know any other products on the market that are better at scaling.

We have deployed it to small organizations with 10,000 users. Our largest organization has 10 million users.

How are customer service and technical support?

I would rate them a nine out of 10. You get forwarded around a bit, but you actually get somebody who can really help and solve the problem for you.

How was the initial setup?

It is very straightforward. We generally do an automated deployment by using a script-based capability that we've created. It works out really well. 

What other advice do I have?

It is a kind of self-serving advice, but I would advise getting a partner to deploy it for you. There are a lot of really good partners out there, not just us.

In terms of the maturity of their product, there are a lot of Enterprise capabilities that they haven't yet brought into the market, but after it has been called out to them that there is a customer who needs a capability, they're very quick and responsive around doing development to get that capability in, which is something I like. There was an Enterprise scalability capability where you have high availability and multi-site failover. One of the versions that they had back in the 2018 and 2019 timeframe did not support that capability. We called out some recommendations to them, and they had it in the product in the next major revision.

I would rate Thycotic Secret Server a 10 out of 10 because I am not familiar with any products that are capable of going on-prem and have a superior function set.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
JK
DevOps Lead at a computer software company with 1,001-5,000 employees
Real User
Top 5
It performs its basic use case with no downtime but its API is no good

Pros and Cons

  • "It is able to manage storage and use of personal passwords."
  • "There has been no downtime this year."
  • "The API is no good."
  • "It is expensive compared to other solutions in this category and for what it does."

What is our primary use case?

The most common use case will be just for keeping personal passwords. There are other things that we use if for, but that is the most common use case.  

What is most valuable?

The ability to manage personal passwords is what it was built for and that is what makes it most valuable.  

What needs improvement?

The main part of the product that could be improved is the API (Application Programming Interface). The Thycotic API is not very good.  

For how long have I used the solution?

I have been using Thycotic Secret Server for a couple of years. It could be as many as four.  

What do I think about the stability of the solution?

I guess this should be considered a stable solution. There has been no downtime this year.  

What do I think about the scalability of the solution?

There are about 1200 users that are using this product at our organization. We are going to continue to use it at least for a while, but we are looking for some alternative solutions because it is not that good and there are better products available that can do what we need better. It seems to be able to scale with our user base.  

How are customer service and technical support?

I do not have any experience with technical support because I am not the person managing the product. We do have an internal IT crew that takes care of the application and they would be the ones who would be in contact with technical support if it were necessary.  

Which solution did I use previously and why did I switch?

When I came to this company, Secret Server was already in place. I do not know if the company may have had something in place before this. There is a consensus at the corporate level that we will continue using Thycotic Secret Server.  

How was the initial setup?

I do not think it is particularly straightforward if you do anything more than install it and turn it on. I do not have any feedback on the process of the installation itself because I did not install this product. as a DevOps, I find that modification is not straightforward.  

What about the implementation team?

I believe it was implemented in house by the team. We have maybe two people on staff who take care of this application.  

What's my experience with pricing, setup cost, and licensing?

I think that Secret Server is expensive when I compare the cost to some alternatives. There are different plans and additional licensing costs that can be added on, but I do not know the details exactly within our company.  

What other advice do I have?

I would not recommend this product. I would not because the basic functionality is okay, but we need some API access to use KPI (Key Performance Indicator) properly. We also need to automate some stuff using this secure vault. Attempting to do that is almost impossible because of the low quality of the API.  

Me, speaking as a lead DevOps, I would not recommend it for this office. It is not the best choice for what we need.  

On a scale from one to ten (where one is the worst and ten is the best), I would rate this product differently depending on what level or type of user is using the product. For the DevOps purposes, my rating would be zero. Each year it is less competitive and it can not be justified for the price.  

In general, for end-users, I do not know. They are not exposed to the development end so I think they might give it a five-out-of-ten.  

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PR
Technology Infrastructure Senior Analyst at a educational organization with 501-1,000 employees
Real User
Feature-rich, easy to scale, stable, and well-developed

Pros and Cons

  • "I like the one-way hash, as well as the ability to store it in the cloud and access it from anywhere."
  • "Although the password policy was interesting, the default setting was inadequate."

What is our primary use case?

We intend to replace our pairing password management solution with something more enterprise-friendly.

We are currently conducting a demonstration with Thycotic Secret Server.

I've only used this solution a few times as a demo and haven't explored everything it has to offer, but I have experience integrating it with our Active Directory and setting up the server.

What is most valuable?

I like the one-way hash, as well as the ability to store it in the cloud and access it from anywhere.

I like the fact that you don't have to have separate databases for each department in your organization. 

They have one central location, that they all go to it. 

They all go to the same central location. If they leave, we can disable their account, reset their password, and integrate it with our Active Directory.

At this early stage, and based on my demo experience over the last two weeks, it appears to have more features than we require, but we can grow into it.

It's a great product. It seems that you could do your privileged access and things like that where you do the IEM. You could also make it so that those individuals have access for a set period of time to do their administration. These are the types of features we haven't really used, but I can see them being very useful. I can also see where they're going with this product, which is an all-in-one solution. 

It appears to be well-developed.

What needs improvement?

Although the password policy was interesting, the default setting was inadequate. As a result, we had to change it to be 20 characters with symbols. It was an odd process, but it was relatively simple to adjust.

For how long have I used the solution?

I have been using the latest version of Thycotic Secret Server for a couple of weeks.

What do I think about the stability of the solution?

Thycotic Secret Server is a stable solution. We didn't encounter any bugs or glitches.

What do I think about the scalability of the solution?

It appears to be pretty easy to scale.

We have fewer than ten people to test the demo in our organization.

We may decide to use this solution, and we are attempting to budget for it. We must sell the features and show that the extra cost is justified.

How are customer service and support?

I have not contacted technical support. We had our representative involved, and he brought in a technical person to assist with the build, as well as being available to answer questions.

Which solution did I use previously and why did I switch?

We are working with Jira.

How was the initial setup?

The initial setup was fairly simple.

What's my experience with pricing, setup cost, and licensing?

We are going from a free product, which isn't necessarily a fair comparison because it brings many things to the table, but it appears to be reasonably priced.

It would be beneficial if it were reduced.

What other advice do I have?

I haven't tested many other products, but this one appears to be quite good. I believe it is comparable in the industry.

I haven't used this solution a lot, just in a demo capacity. I haven't explored all that it can office. I have worked on the integration with our Active Directory, and we set up the server.

I would rate Thycotic Secret Server an eight out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
FabioPericoli
Director / Engineer at Provincia
Real User
Top 5Leaderboard
Monolithic software that is easy to use but the documentation is insufficient

Pros and Cons

  • "Ease of use because of its monolithic software."
  • "Documentation could be improved if they were to include more about connectors. There is not enough documentation."

What is our primary use case?

I'm a director/engineer and we partnered with the company. Our primary use case was for a project that we followed from an administrator point of view, not the end-user point of view. My responsibility was to manage the migration-related to the project, installing and configuring the infrastructure, creating policies and so on. Technically speaking, it was at a high level. All of my clients are enterprise companies.

What is most valuable?

The most valuable aspects were its ease of use because the software is monolithic, so you only have to install the web services and then there's a database, so it's very easy to use and to configure. There are no further modules so installation is simple as is configuration. There are a lot of features out of the box. That was an interesting aspect.

What needs improvement?

I think the services could be improved by making it more 'friendly.' Documentation could be improved if they were to include more about connectors. Technically speaking, and in comparison to other software such as CyberArk, the documentation was not enough. CyberArk has extensive documentation and I believe Thycotic doesn't have enough.

The same applies for additional features - improved documentation in the next release would be helpful.

For how long have I used the solution?

I've used the product for five months. 

What do I think about the stability of the solution?

It's a very stable solution.

What do I think about the scalability of the solution?

It's very easy to scale the solution because it's a web server. If you want to install more than one server then you just have to add the additional server to the database. So it's very, very easy.

How are customer service and technical support?

Technical support is fine but as I said, it could be a little more friendly.

Which solution did I use previously and why did I switch?

There is a lot of risk management software around. I decided to switch to Thycotic, first of all, because we were starting a new project and it was a challenge for me and a new software I wanted to try. That was the main reason for the move. 

How was the initial setup?

Being a web server, the initial setup is very straightforward and easy to understand. It's one of the differences between Thycotic and CyberArk. CyberArk requires some study, it's a modular solution. 

What's my experience with pricing, setup cost, and licensing?

I'm a technicial person so I don't know about setup costs. 

What other advice do I have?

In general, I would recommend the product. It's very good and is cheaper than CyberArk. It's something that a team leader or project manager would take into consideration because even the cost of the license is something to keep in mind when planning a project. It really depends on the company's requirements. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Darius Radford
Principal Solutions Architect at a computer software company with 51-200 employees
Real User
Top 20
Robust discovery engine, easy to scale, and easy to use user interface

Pros and Cons

  • "The discovery engine is really robust and flexible. It had some session management features that are better compared to some other vendors. Overall the GUI is very good and straightforward to operate compared to other solutions. For example, CyberArk and Hitachi tend to be hard to navigate."
  • "When working with larger enterprises Thycotic Secret Server becomes a little cumbersome to work with because they do not allow as much flexibility as some of the other competitors, such as CyberArk. Thycotic Secret Server could improve by being more flexible when it comes to customization, and increase the number of API integrations."

What is our primary use case?

We have used Thycotic Secret Server for some secret management and integrated it with some applications. We mainly used it for Privileged Account Discovery and the management of them.

What is most valuable?

The discovery engine is really robust and flexible. It had some session management features that are better compared to some other vendors. Overall the GUI is very good and straightforward to operate compared to other solutions. For example, CyberArk and Hitachi tend to be hard to navigate.

What needs improvement?

When working with larger enterprises Thycotic Secret Server becomes a little cumbersome to work with because they do not allow as much flexibility as some of the other competitors, such as CyberArk. Thycotic Secret Server could improve by being more flexible when it comes to customization, and increase the number of API integrations.

In an upcoming release, there should be more AI and machine learning features. Some of the competitors are leaning in this direction.

For how long have I used the solution?

I have been using Thycotic Secret Server for approximately two years.

What do I think about the stability of the solution?

There can be some stability issues when you use the video record feature. You have to be careful when you turn on the video recording features and what you want to record because the data adds up quickly. There is a performance impact to your network as well, that has to be planned for. Users think it is a fancy feature and they want to use it but you have to plan ahead of time before you use it.

What do I think about the scalability of the solution?

The solution is able to be scaled and it is not too difficult.

The last organization I implemented the solution in they have approximately 900 users using the solution.

How are customer service and support?

The technical support is good. They were able to give us support when we needed it.

Which solution did I use previously and why did I switch?

I have used other solutions, such as CyberArk and Hitachi.

How was the initial setup?

The setup was straightforward.

What's my experience with pricing, setup cost, and licensing?

When comparing the price of Thycotic Secret Server with other solutions it is reasonable.

What other advice do I have?

My advice to those wanting to implement this solution is they should know their requirements. It is a great solution it fits your requirements. It is important to know what you need to integrate with and how.

I rate Thycotic Secret Server an eight out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
ML
VP - Enterprise Solutions at a comms service provider with 11-50 employees
Real User
Top 10
Its ease of integration and the use of power shells are really attractive features

Pros and Cons

  • "I have found the password management and the secret management features to be the most valuable. Our customers find its ease of integration and the use of power shells really attractive."
  • "We always ask for partner enablement, which is more like a soft requirement rather than a product requirement. It would be great if they can provide us deeper knowledge of their products for integration."

What is most valuable?

I have found the password management and the secret management features to be the most valuable. Our customers find its ease of integration and the use of power shells really attractive.

What needs improvement?

We always ask for partner enablement, which is more like a soft requirement rather than a product requirement. It would be great if they can provide us deeper knowledge of their products for integration.

For how long have I used the solution?

I have been working with Thycotic Secret Server for two to three years.

What do I think about the stability of the solution?

It is definitely stable.

What do I think about the scalability of the solution?

It is scalable.

How are customer service and technical support?

Their technical support is good. 

How was the initial setup?

The initial setup is very easy. The installation only takes a few hours. In fact, preparing the customer site takes most of the time, not the software installation.

What's my experience with pricing, setup cost, and licensing?

Its price is okay. We don't compete on pricing. We seldom use price to win over our competitors. We prefer it this way because if we can sustain the price, we make more margin as well. We don't want the price to go down to the bottom where despite the win, there's no margin at all.

Which other solutions did I evaluate?

We looked at ManageEngine and One Identity. We picked Thycotic Secret Server because it is easy to install and integrate.

What other advice do I have?

Before suggesting or implementing a solution, getting the customer requirements is the most important, for example, whether they have an isolated site or multiple sites and whether the bandwidth between sites is sufficient.

This solution is for big and medium-to-big enterprises. Small enterprises won't require Thycotic Secret Server because you need a certain number of administrators, at least 10, and enough secrets to justify it. I don't think small enterprises can afford it. 

It will be great if they can scale down the cloud version, in terms of the pricing and other things, to accommodate small enterprises. Currently, they are more focused on big enterprises. The Hong Kong market has a lot of small enterprises, so if they can accommodate or maybe cater specifically to the Hong Kong market, it will be great.

I would rate Thycotic Secret Server a nine out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Buyer's Guide
Download our free Thycotic Secret Server Report and get advice and tips from experienced pros sharing their opinions.