We just raised a $30M Series A: Read our story
2018-06-28T05:25:00Z

What needs improvement with CyberArk Enterprise Password Vault?

8

Please share with the community what you think needs improvement with CyberArk Enterprise Password Vault.

What are its weaknesses? What would you like to see changed in a future version?

ITCS user
Guest
1616 Answers

author avatar
Top 5Real User

The solution is too complicated to use and should be simplified. It took me a long time to understand how to use it. There is a lot that the solution can improve for the future.

2021-09-28T15:52:21Z
author avatar
Real User

I would like to see more integration with more tools, for more APIs.

2021-02-23T02:28:15Z
author avatar
Top 20Real User

I don't see any problems because it's highly secure and very flexible. It gives us all types of storage options and it gives us a high level of security. From my experience, overall, I don't see many problems that need to be rectified. The only problem involves granting access to people who are authorized to view it. This user management area is the most critical. We have to constantly check on that area and we have to review and give proper access. Nobody should have more access than they are authorized for.

2020-11-23T14:40:53Z
author avatar
Top 5LeaderboardReal User

CyberArk has two disadvantages; the first is that it's insanely expensive and the other is it's very complex. That's the downside because CyberArk was not built organically. It was built systematically. They're not built into the product. You have to shoehorn things in. You have to create programmatic interfaces to make things work, but that's why I said it's the most complex product. CyberArk is still in the model of managing accounts and passwords. When you're logged in as a domain admin, you're leaving footprints everywhere you go. These footprints can be picked up and replicated. So, I think CyberArk is behind the curve in that area. Customers are already having an issue with the cost of CyberArk and then you have to add another $100,000.00 to the bill for other application accounts. I would like to see a more streamlined and built-in programmatic onboarding and offboarding process. Something a little bit less complex than what they're currently doing. The price is the problem and also the architecture can be daunting because CyberArk really strongly encourages having hardware vaults. Most corporations are totally virtualized. I use virtualized vaults on everything including the high availability configuration.

2020-09-06T08:04:41Z
author avatar
Top 20Real User

The pricing is too expensive and should be reduced. This is our only concern. When a small industry wants to invest in these kinds of tools, they don't have the budget to spend a lot of money on security. If the price were more reasonable then many other small businesses would consider using it. The installation process should be easier and more user-friendly so that you don't need to hire a third party to deploy it. Instead, an in-house administrator could do it.

2020-07-15T07:11:38Z
author avatar
Top 5LeaderboardReseller

Having a cloud version would be very helpful. You have to invest a lot of money for the infrastructure hardware so the cloud version would help.

2020-07-05T10:00:00Z
author avatar
Top 20Real User

I would prefer that this is a fully-managed service, rather than have to manage the software ourselves and keep it up to date. A cloud-based deployment would ultimately be better for us than an on-premises appliance.

2020-06-25T10:49:31Z
author avatar
Real User

I'd like it to be a little more granular. I want a little bit more control over exactly what we do. I know if you do that, you add more knobs and dials to deal with, but that's just my personal approach: granular access.

2019-12-15T09:11:00Z
author avatar
Top 20Consultant

This solution does not support the SQL Developer. We have to purchase separately from CyberArk and we have to ask them to develop it. This solution is a bit complex compared to other solutions. The installation and administration are complex. Some things can be done through the interface, but the whole installation process and upgrade process can be done with the installation script but it's complex. This is too complex for some organizations that do not have a large scale. In the next release, they could simplify the setup and I would like some tasks added like file sharing. When a client connects to CyberArk and wants to put a file on the server, they cannot. I thought that the client would be able to drop a file onto the server and the file would be visible on the server. I have to disable the connection to provide a copy and this is a security issue, and I closed this file to the client then he can't upload and files to us. They need to come up with a way for the client to file share with CyberArk.

2019-11-07T10:35:00Z
author avatar
Top 20Real User

The deployment architecture, the ability to locate and change credentials and the stability need to be improved. They need to install or include an appliance-based option, which CyberArk does not have. The technical support can improve on the time that it takes to get a callback. The integration is great but needs to be a bit more user-friendly. Also, a feature with the ability to create password sync. In the next release, I would like to see the following: * Availability on the cloud and the appliance. * More documentation for the setup. * Simplify the deployment. * Continuous operation with this solution. * Simplify the infrastructure for better stability. * Increase the support for applications. * Invest in local on the ground staff in various regions. * The ability to search by the activities, especially for Windows Servers. * Improve the auditing capabilities for their searches.

2019-11-07T10:35:00Z
author avatar
Top 20Consultant

The initial setup could be simplified. Right now, in comparison to its nearest competitors, it's quite complex.

2019-11-07T10:35:00Z
author avatar
Top 5LeaderboardReal User

I think they can add a new feature for the account onboarding like I've seen for another PAM tool: for instance they should give to the CyberArk administrator the chance to upload the accounts via the PVWA using a txt or an xls file.

2019-11-04T06:14:00Z
author avatar
Top 5Real User

The interface and user experience could be improved. In comparison, in Fudo Security, items are very searchable and it's very comfortable to work with. CyberArk is not very good at that. It could be improved and it wouldn't be too complicated to do so. The solution is too big and complex for any business that is small or medium-sized. They should offer a more compact version or make a solution better suited to smaller businesses.

2019-11-04T06:14:00Z
author avatar
Real User

Some folks would like to have keystroke tracking and some would not. I guess if they could make that an option that might be interesting for certain organizations.

2019-02-14T07:37:00Z
author avatar
Real User

* Implementation documentation could use some improvement in a few areas. LDAP integration would be one area. * Providing a way to group accounts by application would be nice.

2018-11-13T21:53:00Z
author avatar
MSP

It is currently a robust product, but we should be able to join together small components. This will improve support and understanding.

2018-06-28T05:25:00Z
Learn what your peers think about CyberArk Enterprise Password Vault. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
543,089 professionals have used our research since 2012.