Please share with the community what you think needs improvement with Thycotic Secret Server.
What are its weaknesses? What would you like to see changed in a future version?
The discovery of accounts could be improved. It is also very expensive, and its price should be lower. I'd prefer a better commercial model that includes partners and options for consulting around it. Where I've worked with my customers, we've only been able to use their professional services, and that has been a risk and constraint.
One thing that I wish they would do is to have a Kubernetes or container-based deployment supported, but they're not quite there yet. Containerization or support for containerization would be fantastic.
I would like to see scheduled reports in a future release.
The main part of the product that could be improved is the API (Application Programming Interface). The Thycotic API is not very good.
We always ask for partner enablement, which is more like a soft requirement rather than a product requirement. It would be great if they can provide us deeper knowledge of their products for integration.
I think that the main interface should integrate better with non-standard applications and clients, to connect with other systems. This would help to create a safe connection with non-standard systems. I would like the capability to assign rights directly to the target system. This is a different topic because, at this point, it only handles credentials. However, the goal is to be able to create the account and assign the correct access rights on an application or a system.
If you look at Thycotic, it is a great product that has pretty much all the same features as CyberArk — which will be replacing it. There is not much difference between the two. We will be switching away from using Thycotic, however, before the end of the year. The catalyst for the change was a formal comparison of the two products that we did using each to evaluate how we would use it in solving actual use case issues. In the presentation of the scoring over specific categories, CyberArk had slightly better professional service marks and the same price. Besides that, the two products were neck-and-neck and almost identical in the scoring. CyberArk just came out just a little bit better than Thycotic in the details, and not by much at all. Be that as it may, the formal comparison is the reason for the change.
There are some things that I know are really important to include like A/B version features that are available in Windows. I would say that they should be included in the road map.
The solution is very good at improving based on customer feedback. If, for example, a customer asks for updated functionality, the next version will likely fit the requirements or requests. They're very responsive in that sense. There could be tweaks here and there. For example, instead of going to one main function to do this and another main function to do that, the solution could remap the user interface so that a person only has to go through one function. The way that function branches off should make a bit more sense. I'd like to see more automation on parts of the solution that cover APIs and disk space. There should be more automation in terms of what's out-of-the-box. It would help some customers as not all of them are knowledgable and well-skilled. It would make it easier for the layman.
They need to open a data center in Malaysia so that we can better provide cloud-based services to our customers. I would like to see more training sessions made available online. Having more detailed reporting would improve this solution.
I think the services could be improved by making it more 'friendly.' Documentation could be improved if they were to include more about connectors. Technically speaking, and in comparison to other software such as CyberArk, the documentation was not enough. CyberArk has extensive documentation and I believe Thycotic doesn't have enough. The same applies for additional features - improved documentation in the next release would be helpful.
I would like to see the shadowing of ongoing terminal sessions (Remote Desktop Mirroring). Recording of keyboards in the current Remote Desktop session would be a helpful feature.
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.