BeyondTrust Endpoint Privilege Management vs One Identity Safeguard comparison

BeyondTrust Endpoint Privilege Management vs. One Identity Safeguard

Download the complete report

Helped 831,265 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

BeyondTrust Endpoint Privil...

Ranking in Privileged Access Management (PAM)

9th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Anti-Malware Tools (12th)

One Identity Safeguard

Ranking in Privileged Access Management (PAM)

3rd

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (6th)

Mindshare comparison

As of January 2025, in the Privileged Access Management (PAM) category, the mindshare of BeyondTrust Endpoint Privilege Management is 4.5%, down from 6.0% compared to the previous year. The mindshare of One Identity Safeguard is 4.3%, down from 5.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Privileged Access Management (PAM)

Featured Reviews

Prashant Uppuluri

Solution Architect at FVC

Provides critical application control and ensures security with a flexible setup process

Regarding the feedback scenario, it's a tough question as I have thoroughly gone through the entire partner portal and library of BeyondTrust, as well as BeyondTrust University. I have also interacted with support whenever a ticket is raised, ranging from P1 to P3 or P2. Most end users and partners seem happy and content with BeyondTrust. The deployment of the solution is generally easy, flexible, and scalable. However, it can be challenging in certain environments, especially regarding management. Improvements could focus on adding more AI features to automate processes that are currently manual or challenging for end users. In some cases of competition, I have noted specific use cases where the recording of sessions was an endpoint for BeyondTrust, providing an edge for higher management. The ability to view recorded live sessions of specific users is a crucial benefit.

Read full review

Tor Nordhagen

Executive Director at Semaphore

Transparent mode for privileged sessions will greatly simplify our client's administrative situation

We're introducing the solution's transparent mode for privileged sessions. This is part of what the client hasn't used before. It will simplify their administrative situation greatly. So far, the rollout of this feature has been a seamless process, but we're still in the midst of rolling it out. The benefits will be on the risk side. Right now, the way accounts are managed, you don't necessarily know who is using an account. There's a shared admin account, and that's not a good thing. And those accounts are shared in wallets by several people. One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The product is secure."

"The implementation is quite easy because the documents are always online."

"It is straightforward. It is a good technology, and it is made to do one single thing."

"Administrators need a tool that provides visibility and clarity about endpoint management within the organization. This addresses the issue of managing privileged users, which is crucial for any administrator or higher management team to control."

"The tool is easy to use and deploy. It has PAM capabilities like privilege access. The solution helps with the management of third parties and vendors. It is an effective solution compared to other alternatives."

"Technical support is good."

"AI adds value by automating the onboarding of assets and using smart rules to assign privileges."

"I'm a BeyondTrust partner and I have multiple deployments, four or five banks right now. The features that give us quite an edge compared to what our competitors are offering - like IBM or Thycotic - are the Session Management, that is quite a big one; also the recording of keystrokes. In addition, there is the password vaulting and state-of-the-art Password Management, which I haven't seen in other products."

More BeyondTrust Endpoint Privilege Management pros

"The transparent mode for privileged sessions is a very good solution."

"I like that One Identity Safeguard lets you configure the maximum number of connections to the target, a configuration I didn't find in its competitor."

"There are numerous valuable data protection features, including the content and information that offer us more scalable protection as needed."

"We deployed it into our company for controlling a client's behavior in our data center. It is very useful to control their connections, such as RDP."

"I have found the most useful feature of One Identity Safeguard to be Privileged Sessions."

"In terms of the user experience, it is a pretty useful product. It works in a good way."

"It is generally easy-to-use and install."

"One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network."

More One Identity Safeguard pros

Cons

"The deployment process should be clarified or made simpler. It would be helpful if the solution had in-app tutorials for users to look at as they progress through the system. Sometimes we get lost and need to go back to check what exactly the function was. There should be small hints around major key functions. It would go a long way in speeding up the deployment process."

"There is room for improvement in having the solution align more with standards. We're always shoehorning the product into the standards. It's not that it doesn't work for standards, it does. But Quick Start Policies are pretty close to what we need. The vendor needs to keep looking at GDPR, 27001, and 27701. That's why our clients buy the product."

"Improvements could focus on adding more AI features to automate processes that are currently manual or challenging for end users."

"Reports to the end user."

"They need to come up with better integrative options which should be customer-centric."

"Improvements could focus on adding more AI features to automate processes that are currently manual or challenging for end users."

"Reporting analytics is one of the areas that can be improved. It is a new cloud-based solution. So, many more specific reports can come out natively. Currently, we get all the events, and we put them in plug-ins. From there, we generate our own design of reports. If there is a much more solid or robust reporting analytics framework within the product itself, it would be helpful."

"How the accounts are presented in the solution's UI can be improved."

More BeyondTrust Endpoint Privilege Management cons

"Support for One Identity Safeguard could be improved because sometimes the support team doesn't have an answer or solution for some bugs. A feature I found in a competitor would make One Identity Safeguard better, and that is the ability to load balance the traffic in the target."

"Even though we have two nodes, there's no way to do an upgrade without taking everything completely offline. It would be nice if they could improve that."

"On a scale of one to ten, the stability is an eight."

"The deployment affects our privileged users because it takes a long time for them to request privileges, which impacts the SLA."

"We have issues using Safeguard to connect to and record from the cloud. Currently, they don't have a mechanism to record this type of connection."

"We currently have a problem with the Active Directory integrations on Windows. Some of our users need to be logged with Active Directory, but we are having communication issues between One Identity and Active Directory. It seems that Active Directory is not well-integrated."

"The multilanguage functionality does not support the Arabic language, even though this solution is deployed in an Arabic region."

"I just received a question from a customer in regards to a connection with Oracle OID. I tried to integrate Safeguard with the Oracle YAML as well as something else to manage the groups and users from a different system, like AD or LDAP. This one feature could be better. At this moment, the platform system can only use the integration with LDAP or AD. The software for research and development to create a connector to a YAML platform can be very complicated."

More One Identity Safeguard cons

Pricing and Cost Advice

"On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a seven out of ten."

"What BeyondTrust was providing was user-based licensing which was a great benefit from the client point of view. Recently, I don't know why, the licensing model has been changed, and that is the reason that they have lost a bit of their edge when it comes to the PAM, against our competition. The asset-based licensing, from the user's point of view, is not beneficial. The licensing should be based on the users. The greater the number of users, the greater will be the load and the greater the scalability problems. I presume that is why the licensing model has changed."

"Its pricing and licensing are okay. We were in the perpetual model when it was on-prem, and now, with the SaaS service, we have a subscription model. As a customer, I would always like to see a lower price, but it seems to be priced at the right model currently, and we are trying to get the maximum benefits out of it."

"The solution's pricing is high."

"The product’s licensing is different for Windows, Linux, and Mac. The tool’s licensing is yearly."

"Price-wise, it is very competitive. In our area, government entities and banks don't go for the monthly payment. It is a headache even for us in terms of finance and procurement to go for monthly payments. Quarterly might be more logical and reasonable, but the minimum that we go for is one year, and sometimes, we even try to compile and give one offering for three years."

"It was very expensive."

"It is relatively more cost-effective compared to the competing product."

More BeyondTrust Endpoint Privilege Management pricing and cost advice

"Our licensing costs are on a yearly basis."

"It was definitely cheaper than the other two products that we evaluated."

"They have comparable pricing. All identity products are essentially priced in a similar way. It's a per-user base."

"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."

"Its subscription cost is too much, and sometimes, it is very difficult to pitch the solution to the management for cost approval. If the cost is reduced a little bit, it would be easier. If its cost was less, many other organizations that currently cannot afford it would be able to use this technology. I'm sure many organizations around the globe are having issues with identity management, and it is a very difficult task for IT to manage privileged accounts."

"They offer a fair price for a robust solution."

"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."

"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."

More One Identity Safeguard pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.

See recommendations

831,265 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

17%

Computer Software Company

14%

Manufacturing Company

10%

Government

Computer Software Company

23%

Financial Services Firm

12%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats

This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...

What do you like most about BeyondTrust Endpoint Privilege Management?

The solution's least privilege enforcement has helped us ensure access is given to only the required people.

What is your experience regarding pricing and costs for BeyondTrust Endpoint Privilege Management?

We pay a yearly license fee.

What do you like most about One Identity Safeguard?

The identity discovery is good, and the performance is pretty good value.

What is your experience regarding pricing and costs for One Identity Safeguard?

One Identity Safeguard is expensive. The license is around $3,000 per month.

What needs improvement with One Identity Safeguard?

One Identity's support is not appropriately structured, and it has a lot of room to improve.

CyberArk Endpoint Privilege Manager vs BeyondTrust Endpoint Privilege Management

Comparisons

Compared 25% of the time

Cisco Identity Services Engine (ISE) vs BeyondTrust Endpoint Privilege Management

Compared 9% of the time

Tanium vs BeyondTrust Endpoint Privilege Management

Compared 7% of the time

Fortinet FortiAuthenticator vs BeyondTrust Endpoint Privilege Management

Compared 6% of the time

CyberArk Privileged Access Manager vs BeyondTrust Endpoint Privilege Management

Compared 5% of the time

More BeyondTrust Endpoint Privilege Management Competitors

CyberArk Privileged Access Manager vs One Identity Safeguard

Compared 37% of the time

WALLIX Bastion vs One Identity Safeguard

Compared 14% of the time

Delinea Secret Server vs One Identity Safeguard

Compared 11% of the time

BeyondTrust Privileged Remote Access vs One Identity Safeguard

Compared 8% of the time

SailPoint Identity Security Cloud vs One Identity Safeguard

Compared 7% of the time

More One Identity Safeguard Competitors

Product Reports

BeyondTrust Endpoint Privilege Management

Download BeyondTrust Endpoint Privilege Management product report

BeyondTrust Endpoint Privilege Management report

One Identity Safeguard

Download One Identity Safeguard product report

Also Known As

BeyondTrust PowerBroker, BeyondTrust Endpoint Privilege Management for Windows, BeyondTrust Endpoint Privilege Management for Mac, BeyondTrust Endpoint Privilege Management for Linux, BeyondTrust Endpoint Privilege Management for Unix, Avecto Defendpoint

No data available

Learn More

BeyondTrust

One Identity

Overview

BeyondTrust Endpoint Privilege Management enables organizations to mitigate attacks by removing excess privileges on Windows, Mac, Unix/Linux and networked devices. Remove excessive end user privileges and control applications on Windows, Mac, Unix, Linux, and networked devices without hindering end-user productivity.

Key Solutions Include:

-ENTERPRISE PASSWORD SECURITY

Discover, manage and monitor all privileged accounts and SSH keys, secure privileged assets, and report on all privileged account activity in a single solution.

-ENDPOINT LEAST PRIVILEGE

Enforce least privilege across all Windows and Mac endpoints, gain visibility into target system vulnerabilities, and control access to privileged applications without disrupting user productivity or compromising security.

-SERVER PRIVILEGE MANAGEMENT

Gain control and visibility over Unix, Linux and Windows server user activity without sharing the root or administrator account.

-A SINGLE PLATFORM FOR MANAGEMENT, POLICY, REPORTING AND THREAT ANALYTICS

Utilize a single solution to manage PAM policies and deployment, understand vulnerability and threat analytics, and provide reporting to multiple stakeholders and complementary security systems.

Learn more at https://www.beyondtrust.com/privilege-management

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

Sample Customers

Aera Energy LLC, Care New England, James Madison University

Cavium

BeyondTrust Endpoint Privilege Management vs. One Identity Safeguard