Try our new research platform with insights from 80,000+ expert users

BeyondTrust Password Safe vs BeyondTrust Privileged Remote Access comparison

BeyondTrust Password Safe and BeyondTrust Privileged Remote Access are both solutions in the Privileged Access Management (PAM) category. BeyondTrust Password Safe is ranked #8 with an average rating of 8.5, while BeyondTrust Privileged Remote Access is ranked #9 with an average rating of 8.2. BeyondTrust Password Safe holds a 3.2% mindshare in PAM, compared to BeyondTrust Privileged Remote Access’s 5.3% mindshare. Additionally, 81% of BeyondTrust Password Safe users are willing to recommend the solution, compared to 95% of BeyondTrust Privileged Remote Access users who would recommend it.
BeyondTrust Password Safe
Read 22 BeyondTrust Password Safe reviews
  • 1,140 Views
  • 757 Comparison Views
81% willing to recommend
BeyondTrust Privileged Remo...
Read 22 BeyondTrust Privileged Remote Access reviews
  • 1,961 Views
  • 1,328 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

BeyondTrust Password Safe and BeyondTrust Privileged Remote Access are both leaders in security management and remote access solutions. BeyondTrust Privileged Remote Access stands out with its robust features despite its higher pricing.

Features: BeyondTrust Password Safe is recognized for its seamless password management, secure environment, and cost-effectiveness. BeyondTrust Privileged Remote Access is known for its control over remote sessions, detailed access logs, and extensive features.

Room for Improvement: Enhancements in BeyondTrust Password Safe could include better reporting tools, integration capabilities, and improved user interface. BeyondTrust Privileged Remote Access might benefit from a more flexible session setup, improved access list management, and enhanced mobile access options.

Ease of Deployment and Customer Service: BeyondTrust Password Safe is noted for an easy deployment process and responsive customer service. BeyondTrust Privileged Remote Access, despite a longer setup time, provides comprehensive support and detailed guidance.

Pricing and ROI: BeyondTrust Password Safe is cost-effective with high ROI, attributed to its lower initial setup costs. BeyondTrust Privileged Remote Access, though more expensive initially, offers significant ROI through advanced features and strong performance.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed BeyondTrust Password Safe vs. BeyondTrust Privileged Remote Access Report (Updated: December 2024).
Buyer's Guide
BeyondTrust Password Safe vs. BeyondTrust Privileged Remote Access
December 2024
Download the complete report
Helped 824,053 peers since 2012
 

Categories and Ranking

BeyondTrust Password Safe
Ranking in Privileged Access Management (PAM)
8th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
22
Ranking in other categories
Enterprise Password Managers (6th)
BeyondTrust Privileged Remo...
Ranking in Privileged Access Management (PAM)
9th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
22
Ranking in other categories
Remote Access (9th)
 

Mindshare comparison

As of December 2024, in the Privileged Access Management (PAM) category, the mindshare of BeyondTrust Password Safe is 3.2%, up from 2.9% compared to the previous year. The mindshare of BeyondTrust Privileged Remote Access is 5.3%, down from 5.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Featured Reviews

Vinay Dabas - PeerSpot reviewer
Allows us to automatically rotate passwords, set the complexity, and enforce password policies on privileged accounts
The database instance onboarding should be simplified. The problem is that you can scan the assets and databases inside a server, but you cannot onboard them or manage them with the smart tools. It has to be done manually. I think they should try to include more custom platforms. With the databases, there were some issues. The databases are inside the servers, and it was a bit difficult to scan the databases. Apart from that, the rest of the assets were easy to scan and integrate. It's difficult to onboard the database. You can scan and find them, but you have to onboard the databases manually. You cannot onboard databases using Smart Rules databases. Database instances are difficult to onboard and must be done manually. The applications should be more like in the SDK. They have good API support now.
Read full review
Sean Rall - PeerSpot reviewer
Our support team can do so much more without having to actively engage our customers, which saves us time and money
In recent days, the most valuable feature would be the Vault. Overall, the most valuable feature would be that ability to do remote support. Vault does a good job of providing visibility for domain accounts, endpoints, and local accounts associated with discovery jobs. The report tools are very robust. I know they have their report tools that you can filter through, which also give you access to the data. So, if you ever want to just do a data dump and your own analytics on it, then you could, which is really nice. We also integrate with the API for reports, which is really nice as well.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is the architecture capabilities, which allow designated server components for high availability and failover. It works well with identity and access management solutions, allowing users to be automatically onboarded and offboarded. The account mapping feature makes rollout seamless. The session monitoring capabilities are excellent, with keystroke and graphical monitoring. This enhanced our security posture by providing detailed accounts of user actions. It helped us pass our SOX audits."
"The solution protects organizations from internal and external threats."
"The CI/CD and REST API are also satisfactory; the solution has a full PAM feature set and they all work well."
"The technical support and customer services are phenomenal."
"I like the session recording feature. I also like the analytics and reports. You can pull up a report, and the UI is fantastic. The system is recording when nobody's there, so we have a record of what's happening."
"The flexibility of the licensing model is significantly better as it offers both unlimited users and unlimited devices, unlike Delinea, which is based on the number of users."
"The product has improved security and login due to the system recordings. In case, there is a doubt that someone has done something which they shouldn't have been doing, we can just go back and check what the user actually did."
"The ability to manage privileged account passwords is the most valuable feature."
More BeyondTrust Password Safe pros
"Its security, simplicity, and ease of deployment and maintenance are the most valuable. It is FIPS compliant, so it goes through severe penetration testing every one year or two years. They have to maintain this compliance. It is very safe. Customers have been using it in the last eight years because of the simplicity of getting it deployed quickly. Most of the people using the solution had been hacked already, so they needed it quickly. As compared to the other solutions in the market, it can be turned on in production very quickly. You don't really need to have a server. It can be deployed very rapidly on VMware or Hyper-V, and you don't need to do an installation. It is a kind of an all-included package that you just deploy in a VM environment. It is basically a VM that is specifically built for a customer. The way the PRA data solutions work is that you need to build them for each customer because of being hard-coded with their SSL certificate, their web page name, and all that."
"When it comes to the Privileged Remote Access (PRA) solution, instead of depending on a VPN client, from Cisco or any other vendor, we can directly use this product from the internet. It is very easy to do the implementation, and it is easy for every user to access the server from outside of their organization. They can open the URL and put their name and password, and it'll do the multi-factor authentication. They can easily access the server. Prior to this solution, the users had to log into the VPN, which is not required with BeyondTrust. Now, they can use their computer over the internet."
"I like all of it. You can access computers that are on a DMZ. You can access computers that are off the network and on the network. You pretty much have access to computers wherever they are. As long as they have the client on them, you can get to them. So, it is convenient, but its main feature is that you can use your smart card to elevate your privileges remotely. That's a great feature."
"We like the integration with Active Directory. It allows us to discover the endpoints and user accounts that need protection. It's a good way of securing our privileged access."
"The secure access must be audited live, ensuring patient data protection."
"The security provided by PRA when it comes to access for remote and privileged users has been outstanding. It has met all of our objectives, everything from password rotation to securing and allowing us to clamp down access to the auditing and monitoring features."
"PRA stands on its own as a full solution. This is important because it reduces the need to maintain a lot of different services. Also, the integration between those services are sometimes not easy to maintain. So, having a solution like BeyondTrust Privileged Remote Access reducing our workload gives us enough time to work on our other issues. The system just runs and does what it is supposed to do."
"I like the enterprise credential manager. It's a connector that sits in PRA and tests the credentials for the end user with a process that will clean the password. This is one of PRA's primary features and simplifies user onboarding. There aren't many restrictions or complications. We can add the user while only opening one port, which is more than enough to access the PRA server. Every organization requires only four critical servers out of a hundred and some 50 production servers."
More BeyondTrust Privileged Remote Access pros
 

Cons

"We weren't aware that the Password Safe virtual appliance runs on a Windows server. As part of our monthly patching process, we ran into an issue. BeyondTrust Password Safe wasn't compatible with the patching we used to put on our server."
"Documentation is the primary area of improvement."
"There is a limited capacity on the appliance, which I wasn't informed about when I purchased the product. I can have a maximum of 150 rules per appliance; any more than that and rule processing becomes very complex, especially regarding password revision. Hitting a capacity limit you don't know about can be problematic. Ideally, we would not have a limited capacity, allowing us to be in a completely managed state with password rotation for every service account, not just the highly privileged ones."
"The pricing is not cheap, but it could be better."
"There are multiple features that have issues, although they could be specific to our environment. What we have seen is that whenever a user gets added to the authentication store, the sync between Password Safe and the authentication store, which is generally easy, takes a lot of time. It does not occur immediately."
"We'd like to have incremental backups to ensure the solution's information is protected regularly."
"The only improvement I could suggest would be standardizing documentation, but that's more the responsibility of the implementing engineer rather than BeyondTrust Password Trust itself. The documentation must be specific and narrow for implementation, not just broad guidelines."
"The only feature they could improve is the banners because they aren't informative. For example, if something is not correct and I open the error notification, the dialogue box simply says, "This is an error." It would be great if they could provide some valuable comments about how to fix the errors."
More BeyondTrust Password Safe cons
"There is no connectivity to the appliance side. There is no API, and it is just difficult for me to capture what version the device is on without going in and doing screenshots. It is a little too secure in that regard, where they don't even trust their product owner. Since a lot of hacks come from the inside, they are probably doing what they need to do out of necessity. It is just that I have to work pretty hard to produce compliance data on the box."
"The solution is very flexible, which is a plus, but I would say the implementation requires someone with knowledge and experience, as it can be easy to get lost in all the details. The implementation process could be streamlined and simplified. Though the complexity of the solution provides greater flexibility, it requires a lot of time to understand it fully."
"When doing protocol panel jumps, the tool does not restrict what is recorded on the user's computer."
"At the moment, I don't see any major problems with it. If anything, they can just change the look and feel of the login screen because it looks too simple to me. It does not have so much information. When you get to the login screen of the solution, you should have more information. We also have BeyondTrust Remote Support, and the login page looks similar to BeyondTrust Privilege Remote Access. I would love to see more rich information on the login screen or landing page so that rather than having a regular sign-in screen or page where you just provide a username and password and get into the solution, you should have more insight into what the solution does. I've mentioned this to them every time I have had an opportunity."
"The solution's Vault is a nice feature. It helps to securely share a security password in teams, but it is not at the level of a password management solution. So, it is just really a vault. We were expecting to have more features to better manage passwords, but that is something that you can work around if you also have a password safe solution. I would like them to have features like password rotation or password auditing, e.g., old passwords."
"The price is pretty expensive."
"The integration client, backup solution, and SSO setup and provisioning could be improved. There isn't any documented or supported user provisioning currently, which slows down the processes of onboarding and assigning permissions. I would like to see this improved soon."
"Multiple areas can be improved. We've seen lots of updates in the past year. They have a portal where we can submit our ideas. BeyondTrust is immediately implementing user suggestions. The UI could be more informative. Initially, there were two or three connectors, and now we have five or six. It would be nice if they added a few more connectors for third-party integration. There are multiple tools, but the clients may require more for their convenience."
More BeyondTrust Privileged Remote Access cons
 

Pricing and Cost Advice

"It has subscription-based licensing. BeyondTrust is three times less expensive than CyberArk."
"We just pay for Password Safe. Session management is included, but we don't use it. There aren't any additional costs besides the standard licensing fees. We pay for an annual license."
"The pricing structure is better than the competitors. It's much cheaper than CyberArk. They do the licensing on the basis of assets, not on the number of users. For CyberArk, they base the licensing on the number of users, and they have an expensive model of pricing. BeyondTrust has a cheaper model."
"At the time, BeyondTrust was significantly cheaper than CyberArk. Pricing-wise, if I remember correctly, it goes by assets. The pricing was negotiated for our instances based on the number of assets that we onboard into the system. It is a little different from CyberArk, where the pricing is by users. So, it depends. If you have a lot of assets, it can get very expensive."
"When you buy Password Safe and perform your initial Discovery, you have all these servers that are added to your assets in BeyondTrust, but you're not using a license until you actually start managing the systems. BeyondTrust's licensing is based on the systems when they're managed, which means when an administrator is able to connect to the server through BeyondTrust with a managed account. There would be a privileged account on the endpoint when the licensing starts. A significant advantage to that is that there are many organizations that want to evaluate their environment prior to automatic management."
"This solution is not cheap—it's a very expensive solution. Very, very expensive compared to the features and functions that they offer."
"The pricing of BeyondTrust is very good as compared to other products. That was the main reason we decided to go with BeyondTrust at first."
"The product is quite affordable."
More BeyondTrust Password Safe pricing and cost advice
"I wasn't directly involved in the licensing and pricing, but I can say that PRA is licensed per endpoint added to the Vault. I would advise users to take frequent exports of their license usage package; it's a simple feature that provides a spreadsheet of every machine in the Vault. This helps to cut down on duplicate licenses, which can happen by adding the same endpoint using an IP address and a fully qualified domain name, for instance. The implementation is an additional cost, and they offer several tiers, so the price varies. There are also some optional add-ons, so I would advise people to research the product well and find out precisely what they need regarding features. The Advanced Web Access add-on provides some required functionality when interfacing with websites; that's one to consider."
"PRA's pricing is competitive."
"PRA was one of the cheapest solutions that we evaluated."
"I rate the product's pricing a four on a scale of one to ten, where one is high, and ten is low. It is an expensive product."
"Don't get into a situation where you are licensing per desktop or per person until you fully understand the licensing."
"My client found the solution a bit expensive but considering their use case and requirements, they didn't have any other choice. As far as I know, implementation and licensing are the only costs."
"Though the solution was a bit expensive, the overall pricing was average."
"The price is pretty expensive, but you get what you pay for and this is a great product."
More BeyondTrust Privileged Remote Access pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
15%
Government
8%
Manufacturing Company
8%
Computer Software Company
19%
Financial Services Firm
11%
Manufacturing Company
10%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for BeyondTrust Password Safe?
The pricing model is more affordable with the option of going for either unlimited devices or users. It is cost-effective compared to other solutions.
See all answers
What needs improvement with BeyondTrust Password Safe?
As of today, I haven't found any issues. Adding user behavior analysis to the server or messaging would be beneficial. This would help in identifying suspicious activities immediately when users lo...
See all answers
What is your primary use case for BeyondTrust Password Safe?
Our customers are looking for a product that offers provisioning in their network, and for that reason, they choose BeyondTrust Password Safe.
See all answers
What do you like most about BeyondTrust Privileged Remote Access?
The product has improved remote support capabilities since it works fine.
See all answers
What needs improvement with BeyondTrust Privileged Remote Access?
The issue I found with the product revolves around the fact that RDP and SSH sessions take too much time, making it an area of concern where improvements are required. The product should be able to...
See all answers
What is your primary use case for BeyondTrust Privileged Remote Access?
I use the tool in my lab. I am involved in the product's testing phase in my lab, where I am trying to check out the solution.
See all answers
 

Comparisons

HashiCorp Vault vs BeyondTrust Password Safe Logo
HashiCorp Vault vs BeyondTrust Password Safe
Compared 17% of the time
Delinea Secret Server vs BeyondTrust Password Safe Logo
Delinea Secret Server vs BeyondTrust Password Safe
Compared 15% of the time
Azure Key Vault vs BeyondTrust Password Safe Logo
Azure Key Vault vs BeyondTrust Password Safe
Compared 14% of the time
LastPass vs BeyondTrust Password Safe Logo
LastPass vs BeyondTrust Password Safe
Compared 11% of the time
CyberArk Privileged Access Manager vs BeyondTrust Password Safe Logo
CyberArk Privileged Access Manager vs BeyondTrust Password Safe
Compared 7% of the time
More BeyondTrust Password Safe Competitors
CyberArk Privileged Access Manager vs BeyondTrust Privileged Remote Access Logo
CyberArk Privileged Access Manager vs BeyondTrust Privileged Remote Access
Compared 14% of the time
Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) vs BeyondTrust Privileged Remote Access Logo
Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) vs BeyondTrust Privileged Remote Access
Compared 12% of the time
Apache Guacamole vs BeyondTrust Privileged Remote Access Logo
Apache Guacamole vs BeyondTrust Privileged Remote Access
Compared 12% of the time
Delinea Secret Server vs BeyondTrust Privileged Remote Access Logo
Delinea Secret Server vs BeyondTrust Privileged Remote Access
Compared 11% of the time
BeyondTrust Remote Support vs BeyondTrust Privileged Remote Access Logo
BeyondTrust Remote Support vs BeyondTrust Privileged Remote Access
Compared 7% of the time
More BeyondTrust Privileged Remote Access Competitors
 

Product Reports

Buyer's Guide
BeyondTrust Password Safe
December 2024
BeyondTrust Password Safe reportDownload BeyondTrust Password Safe product report
Buyer's Guide
BeyondTrust Privileged Remote Access
December 2024
BeyondTrust Privileged Remote Access reportDownload BeyondTrust Privileged Remote Access product report
 

Also Known As

BeyondTrust PowerBroker Password Safe
Bomgar Privileged Access
 

Learn More

BeyondTrust
BeyondTrust
 

Overview

Beyond Trust Password Safe is an automated solution that combines password and privileged session management into a single platform. Password Safe delivers secure access control, auditing, alerting, recording, and monitoring.

This free and open-source password manager supports Windows and Linux, and some ports are available for other platforms as well. Their proprietary algorithm, Twofish, is considered highly secure, with the advantage that it is not affiliated with NIST. The Twofish algorithm secures the data while keys are delivered using SHA-256 authentication.

The application is easy to use, and you can download the Windows app from several sites. Additionally, the application is available in 14 languages.

Beyond Trust Password Safe Key Features

  • Continuous automated account discovery: Scan, identify and profile assets with the discovery engine. The solution has dynamic categorization that enables the automated onboarding of assets into groups.

  • Application-to-application password management: Password Safe offers an adaptable API interface including an unlimited number of password caches, therefore providing scalability and redundancy.

  • Secure SSH key management: The system automatically rotates SSH keys to enforce granular access control and workflow. Private keys securely log users onto systems without exposing them.

  • Adaptive access control: Evaluates context and provides access requests by considering factors such as time of access and location to determine the user’s authorization level.

  • Enhanced privileged session management: Admins can record, lock, and document suspicious behavior without disrupting productivity by managing sessions live.

  • Advanced privileged threat analytics: Password Safe monitors assets and user behavior every day, analyzing what are normal patterns and detecting deviations.

  • Multi-factor authentication: Password Safe supports 2FA (two-factor authentication) using Yubikey 4, Nano, or Neo.

What can you do with Password Safe?

  • Cross-device and cross-platform syncing: You can safely store encrypted password files online, where you can access them via Password Safe-compatible apps.

  • Drag and drop password: Password Safe has a “Dragbar,” which you can use to complete forms by dragging and dropping icons over the form - for example, passwords, usernames, design tiles, and emails.

  • Autotype: With Password Safe, when you click on a web page or login box, the autotype feature will try to fill in your credentials automatically for you.

  • Import and export: You can import passwords from text, XML, or CSV fails. You can also export passwords in text, XML, and the PSAFE format.

  • Password generator: Generate secure passwords by using the algorithm. You can also define your password rules.

Beyond Trust Password Safe Benefits

  • Controls third-party access: Password Safe secures the connection and automatically checks privileged credentials. The solution records all sessions.

  • Uses context to determine access: Password Safe considers risk factors like location, day, or time of access and uses them to adjust the permissions and privileges of each user.

  • Manages access for privileged and non-privileged accounts: By integrating with SailPoint IdentityIQ, Password Safe effectively manages user access for privileged as well as non-privileged accounts.

  • Reduces cloud risk: Password Safe simplifies secure storage and session management. It supports major cloud providers such as Azure, Amazon, Google, Rackspace, and GoGrid. It also supports social networks - Facebook, LinkedIn, and Twitter.

  • Integrates password and privilege management: Integrates with Endpoint Privilege Management to control the resources users can access and the actions they are allowed to take

Reviews from Real Users

A PAM Architect at a tech services company says, "BeyondTrust Password Safe's features that I have found most valuable are really those that are knitted in. That is their Smart Rules and Smart Groups, where you design your administration model so you create your AD groups and your asset groups, and configure Password Safe."

An I.S. Architect at a insurance company mentions that "Session recording, password rotation, and password vaulting are the most valuable features."

    "One of the most valuable features is that this is a product designed with enterprises in mind," adds a Cybersecurity Architect at a tech vendor.

        BeyondTrust Privileged Remote Access (formerly Bomgar Privileged Access) lets you secure, manage, and audit vendor and internal remote privileged access without a VPN.

        Privileged Remote Access provides visibility and control over third-party vendor access, as well as internal remote access, enabling your organization to extend access to important assets, but without compromising security.

        Features include:

        - Privileged Access Control: Enforce least privilege by giving users the right level of access.

        - Monitor Sessions: Control and monitor sessions using standard protocols for RDP, VNC, HTTP/S, and SSH connections.

        - Reduce the Attack Surface: Reduce attacks by consolidating the tracking, approval, and auditing of privileged accounts in one place and by creating a single access pathway.

        - Integrate with Password Management: Inject credentials directly into servers and systems with just one click, so users never need to know or see plain text credentials.

        - Mobile & Web Consoles: Use mobile apps or web-based consoles anytime, anywhere.

        - Audit & Compliance: Create audit trails, session forensics, and other reporting features by capturing detailed session data in real-time or post- session review, and provide attestation reports to prove compliance.

         

        Sample Customers

        Aera Energy LLC, Care New England, James Madison University
        Horizon Beverage, Air Liquide, Gateway Bank of Florida
        Buyer's Guide
        BeyondTrust Password Safe vs. BeyondTrust Privileged Remote Access
        December 2024
        Free Report: BeyondTrust Password Safe vs. BeyondTrust Privileged Remote Access
        Find out what your peers are saying about BeyondTrust Password Safe vs. BeyondTrust Privileged Remote Access and other solutions. Updated: December 2024.
        DOWNLOAD NOW
        824,053 professionals have used our research since 2012.
        See our BeyondTrust Password Safe vs. BeyondTrust Privileged Remote Access report.
        See our list of best Privileged Access Management (PAM) vendors.

        We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.