If you were talking to someone whose organization is considering Thycotic Secret Server, what would you say?
How would you rate it and why? Any other tips or advice?
I would rate Thycotic Secret Server a six out of 10.
It is a kind of self-serving advice, but I would advise getting a partner to deploy it for you. There are a lot of really good partners out there, not just us. In terms of the maturity of their product, there are a lot of Enterprise capabilities that they haven't yet brought into the market, but after it has been called out to them that there is a customer who needs a capability, they're very quick and responsive around doing development to get that capability in, which is something I like. There was an Enterprise scalability capability where you have high availability and multi-site failover. One of the versions that they had back in the 2018 and 2019 timeframe did not support that capability. We called out some recommendations to them, and they had it in the product in the next major revision. I would rate Thycotic Secret Server a 10 out of 10 because I am not familiar with any products that are capable of going on-prem and have a superior function set.
I rate Thycotic Secret Server an eight out of ten.
I would not recommend this product. I would not because the basic functionality is okay, but we need some API access to use KPI (Key Performance Indicator) properly. We also need to automate some stuff using this secure vault. Attempting to do that is almost impossible because of the low quality of the API. Me, speaking as a lead DevOps, I would not recommend it for this office. It is not the best choice for what we need. On a scale from one to ten (where one is the worst and ten is the best), I would rate this product differently depending on what level or type of user is using the product. For the DevOps purposes, my rating would be zero. Each year it is less competitive and it can not be justified for the price. In general, for end-users, I do not know. They are not exposed to the development end so I think they might give it a five-out-of-ten.
Before suggesting or implementing a solution, getting the customer requirements is the most important, for example, whether they have an isolated site or multiple sites and whether the bandwidth between sites is sufficient. This solution is for big and medium-to-big enterprises. Small enterprises won't require Thycotic Secret Server because you need a certain number of administrators, at least 10, and enough secrets to justify it. I don't think small enterprises can afford it. It will be great if they can scale down the cloud version, in terms of the pricing and other things, to accommodate small enterprises. Currently, they are more focused on big enterprises. The Hong Kong market has a lot of small enterprises, so if they can accommodate or maybe cater specifically to the Hong Kong market, it will be great. I would rate Thycotic Secret Server a nine out of ten.
This is a product that I recommend. My advice for anybody who is implementing it is to have full management support and to do good internal marketing so that the solution is accepted by everyone. I would rate this solution an eight out of ten.
On a scale from one to ten where one is the worst and ten is the best, I would rate Thycotic as probably a nine. That is only because I have to rank them slightly lower after we decided to make the switch to CyberArk, and replacing a product that is a ten would not make a lot of sense. So a nine-out-of-ten it is. Thycotic is a product that is so friendly that it can be used by nearly anyone and everyone, and that is a good place to be. As for the limitations in a very large environment, Thycotic could invest in making changes in the product to handle structuring in a segmented way. It would be costly for Thycotic to make that investment, but for Healthcare as a user group, that would have been the difference. We have already bought another product, so we are not going to change our minds again, but it may be worth considering for the team at Thycotic. I would probably recommend Thycotic for most businesses because it is simpler and easier to deal with than CyberArk. So really, I would recommend it to all businesses except for the extremely large ones.
I would recommend Thycotic. On a scale of one to ten, I would rate this product an 8.
I have a lot of hands-on experience with the solution and I present it to customers and do all the POCs for them. I'd recommend the solution and advise others to look at cloud options, as most companies are moving to the cloud anyway right now. It's flexible, so users can deploy it both on-prem or on the cloud. There are lots of great custom features and network monitoring capabilities. You can also patch the privileged behavior and it will, on the fly, give you nice digital printouts with privileged behavior also. If your system admin or one of your admins suddenly acts strangely, even at 2 AM on a Sunday, it will flag that because that's not normal behavior. That's due to the fact it has a lot of powerful machine learning built into the solution as well. The endpoint application control of the privileged manager is powerful because of the authorizations, etc. The privileged manager can ensure that you actually are able to manage everything very well - everything from user privileges to admin. You can even escalate items easily. I'd rate it nine out of ten, just because there's always room for improvement. However, for my purposes, it's a fantastic solution.
My advice to anybody who is considering this solution is to first understand their requirements and then define the scope before implementing it. The reason is that once deployed, there is a lot of integration into the existing environment. This is a product that I would recommend. I would rate this solution a seven out of ten.
In general, I would recommend the product. It's very good and is cheaper than CyberArk. It's something that a team leader or project manager would take into consideration because even the cost of the license is something to keep in mind when planning a project. It really depends on the company's requirements.
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.