Try our new research platform with insights from 80,000+ expert users

BeyondTrust Privileged Remote Access vs One Identity Safeguard comparison

BeyondTrust and One Identity are both solutions in the Privileged Access Management (PAM) category. BeyondTrust is ranked #10 with an average rating of 8.2, while One Identity is ranked #3 with an average rating of 7.2. BeyondTrust holds a 5.4% mindshare in PAM, compared to One Identity’s 4.3% mindshare. Additionally, 95% of BeyondTrust users are willing to recommend the solution, compared to 93% of One Identity users who would recommend it.
BeyondTrust Privileged Remo...
Read 22 BeyondTrust Privileged Remote Access reviews
  • 1,896 Views
  • 1,312 Comparison Views
95% willing to recommend
One Identity Safeguard
Read 40 One Identity Safeguard reviews
  • 3,119 Views
  • 1,259 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

BeyondTrust Privileged Remote Access and One Identity Safeguard are leading in privileged access management. Users often prefer BeyondTrust for user satisfaction and support, while One Identity stands out for its features, making it a valuable investment.

Features: BeyondTrust offers secure remote access, extensive customizability, and remote session monitoring. One Identity provides advanced integration capabilities, comprehensive security features, and policy management tools.

Room for Improvement: BeyondTrust could enhance scalability, simplify updates, and improve mobile integration. One Identity may need improvements in its setup process, initial learning curve, and user interface complexity.

Ease of Deployment and Customer Service: BeyondTrust is valued for easy deployment and responsive support, appealing to those needing quick setup. One Identity entails a more lengthy setup but provides satisfactory customer service for users investing in long-term use.

Pricing and ROI: BeyondTrust is known for competitive pricing and satisfactory ROI. One Identity, while more expensive, offers strong long-term value through its extensive features, making it a worthy investment despite the higher cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed BeyondTrust Privileged Remote Access vs. One Identity Safeguard Report (Updated: December 2024).
Buyer's Guide
BeyondTrust Privileged Remote Access vs. One Identity Safeguard
December 2024
Download the complete report
Helped 831,020 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BeyondTrust Privileged Remo...
Ranking in Privileged Access Management (PAM)
10th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
22
Ranking in other categories
Remote Access (10th)
One Identity Safeguard
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
40
Ranking in other categories
User Entity Behavior Analytics (UEBA) (6th)
 

Mindshare comparison

As of January 2025, in the Privileged Access Management (PAM) category, the mindshare of BeyondTrust Privileged Remote Access is 5.4%, up from 5.3% compared to the previous year. The mindshare of One Identity Safeguard is 4.3%, down from 5.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Q&A Highlights

AG
Aug 14, 2023
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your specific needs and integrates seamlessly into your existing infrastructure. However, I recommend visiting the official website of Broadcom (the company that acquired Symantec's enterprise security business) or contacting their sales representatives to get the most up-to-date information about their PAM solutions, including any rebranding or changes that may have occurred. When evaluating any PAM solution, it's essential to consider factors such as security, integration capabilities, ease of use, vendor support, scalability, and alignment with your organization's specific needs and compliance requirements. It's also a good practice to request demonstrations, proofs of concept, and references from vendors to ensure that the solution meets your expectations. Remember to involve key stakeholders, such as IT, security, compliance, and management teams, in the decision-making process to ensure alignment with organizational goals and requirements.
See all answers
 

Featured Reviews

Hahn Rolf - PeerSpot reviewer
Securely manage high-privilege remote access with granular configurations
I recommend that we improve integration with other products like PasswordSafe, aiming for smoother integration. Better alignment between products would enhance manageability from a single point. Additionally, BeyondTrust should focus on automating the update process to reduce unnecessary ticket creation. Improved quality control for non-English language versions is needed to avoid translation and layout errors.
Read full review
Tor Nordhagen - PeerSpot reviewer
Transparent mode for privileged sessions will greatly simplify our client's administrative situation
We're introducing the solution's transparent mode for privileged sessions. This is part of what the client hasn't used before. It will simplify their administrative situation greatly. So far, the rollout of this feature has been a seamless process, but we're still in the midst of rolling it out. The benefits will be on the risk side. Right now, the way accounts are managed, you don't necessarily know who is using an account. There's a shared admin account, and that's not a good thing. And those accounts are shared in wallets by several people. One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We like the integration with Active Directory. It allows us to discover the endpoints and user accounts that need protection. It's a good way of securing our privileged access."
"Its initial setup process is straightforward."
"I like the enterprise credential manager. It's a connector that sits in PRA and tests the credentials for the end user with a process that will clean the password. This is one of PRA's primary features and simplifies user onboarding. There aren't many restrictions or complications. We can add the user while only opening one port, which is more than enough to access the PRA server. Every organization requires only four critical servers out of a hundred and some 50 production servers."
"The project goal was to allow staff to run applications with admin privileges without being admins, which was the product's most important feature."
"I'd rate the solution ten out of ten."
"PRA stands on its own as a full solution. This is important because it reduces the need to maintain a lot of different services. Also, the integration between those services are sometimes not easy to maintain. So, having a solution like BeyondTrust Privileged Remote Access reducing our workload gives us enough time to work on our other issues. The system just runs and does what it is supposed to do."
"Based on the feedback from my colleagues who have never complained about the technical support, I would say that the product's support team is good."
"The secure access must be audited live, ensuring patient data protection."
More BeyondTrust Privileged Remote Access pros
"All the features are promising, but we love the reporting feature because we can get each and every report. That's a major compliance requirement. Its reporting is really amazing, and it has made life a lot easier."
"I like that One Identity Safeguard lets you configure the maximum number of connections to the target, a configuration I didn't find in its competitor."
"One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network."
"All sessions are audited and they are indexed/searchable through the GUI."
"It offers high availability and enables end users to deploy the solution with 99.999 percent uptime, which is crucial in an enterprise environment with a large number of endpoints."
"We don't need to use VPN for remote access."
"We are able to log and get reporting on all privileged activity that is being performed. We like the fact that we can leverage the session recording feature, which is especially valuable when we're dealing with third-party vendors that have to remote into our our boxes and servers to do any work on behalf of the bank. Now, we can record everything they are doing to ensure that they're only doing the changes that were needed. In addition, we use it to leverage knowledge transfer with our internal staff."
"The Transparent Mode is the number one advantage of the product."
More One Identity Safeguard pros
 

Cons

"The solution is very flexible, which is a plus, but I would say the implementation requires someone with knowledge and experience, as it can be easy to get lost in all the details. The implementation process could be streamlined and simplified. Though the complexity of the solution provides greater flexibility, it requires a lot of time to understand it fully."
"Some of the capabilities in the solution were not as available or not as outstanding as CyberArk. We had to manage whatever little was available for us, especially its recording capabilities, logs, and a number of things."
"When doing protocol panel jumps, the tool does not restrict what is recorded on the user's computer."
"Changing your password should be simplified, and there should not be a charge for it."
"There is no connectivity to the appliance side. There is no API, and it is just difficult for me to capture what version the device is on without going in and doing screenshots. It is a little too secure in that regard, where they don't even trust their product owner. Since a lot of hacks come from the inside, they are probably doing what they need to do out of necessity. It is just that I have to work pretty hard to produce compliance data on the box."
"At the moment, I don't see any major problems with it. If anything, they can just change the look and feel of the login screen because it looks too simple to me. It does not have so much information. When you get to the login screen of the solution, you should have more information. We also have BeyondTrust Remote Support, and the login page looks similar to BeyondTrust Privilege Remote Access. I would love to see more rich information on the login screen or landing page so that rather than having a regular sign-in screen or page where you just provide a username and password and get into the solution, you should have more insight into what the solution does. I've mentioned this to them every time I have had an opportunity."
"It would be very nice if it has an enterprise vault. Currently, it can interact with Password Safe, which is a separate solution and equivalent to Thycotic Secret Server. Instead of having Password Safe as a separate entity, they should combine it with BeyondTrust Privileged Remote Access. They have done it in some way, but it is not an enterprise tech solution."
"The issue I found with the product revolves around the fact that RDP and SSH sessions take too much time, making it an area of concern where improvements are required."
More BeyondTrust Privileged Remote Access cons
"Some of our users find the functionality a bit complex, and it could be made more user-friendly."
"I just received a question from a customer in regards to a connection with Oracle OID. I tried to integrate Safeguard with the Oracle YAML as well as something else to manage the groups and users from a different system, like AD or LDAP. This one feature could be better. At this moment, the platform system can only use the integration with LDAP or AD. The software for research and development to create a connector to a YAML platform can be very complicated."
"Support for One Identity Safeguard could be improved because sometimes the support team doesn't have an answer or solution for some bugs. A feature I found in a competitor would make One Identity Safeguard better, and that is the ability to load balance the traffic in the target."
"Even though we have two nodes, there's no way to do an upgrade without taking everything completely offline. It would be nice if they could improve that."
"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."
"The high availability function of the box requires a long time to switch over from one appliance to another."
"I would like to see an adjustment with more enterprise architecture. You can buy multiple appliances but you can not fully separate different functions, so scaling might be a bit more complicated."
"On a scale of one to ten, the stability is an eight."
More One Identity Safeguard cons
 

Pricing and Cost Advice

"Don't get into a situation where you are licensing per desktop or per person until you fully understand the licensing."
"PRA's pricing is competitive."
"I wasn't directly involved in the licensing and pricing, but I can say that PRA is licensed per endpoint added to the Vault. I would advise users to take frequent exports of their license usage package; it's a simple feature that provides a spreadsheet of every machine in the Vault. This helps to cut down on duplicate licenses, which can happen by adding the same endpoint using an IP address and a fully qualified domain name, for instance. The implementation is an additional cost, and they offer several tiers, so the price varies. There are also some optional add-ons, so I would advise people to research the product well and find out precisely what they need regarding features. The Advanced Web Access add-on provides some required functionality when interfacing with websites; that's one to consider."
"PRA was one of the cheapest solutions that we evaluated."
"I rate the product's pricing a four on a scale of one to ten, where one is high, and ten is low. It is an expensive product."
"I wish it was a little bit cheaper, but when a product is as solid as this, I understand what the cost does. It helps them to make sure it stays that way. If you want a reliable, solid product, you're going to pay more."
"The price is pretty expensive, but you get what you pay for and this is a great product."
"My client found the solution a bit expensive but considering their use case and requirements, they didn't have any other choice. As far as I know, implementation and licensing are the only costs."
More BeyondTrust Privileged Remote Access pricing and cost advice
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"The pricing depends on our perspective, our budget, and, of course, the competitors we are taking into account."
"The pricing is about $80,000 per 100 servers. There are few elective costs."
"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."
"As compared to other products, it is reasonable, but the training sessions are too expensive."
"Our licensing costs are on a yearly basis."
"They offer a fair price for a robust solution."
"One Identity Safeguard is expensive and the cost goes up as we scale."
More One Identity Safeguard pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
831,020 professionals have used our research since 2012.
 

Answers from the Community

AG
Aug 14, 2023
Aug 14, 2023
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your...
See 2 answers
Nurlan Temirbulatov - PeerSpot reviewer
Dec 7, 2022
Hello Avinash, it all depends on the timeline and urgency of the project. If you need to deploy a PAM tool that focuses on standing privileges, stopping lateral movement, and incorporating Zero Standing Privileges as part of Zero Trust, then please consider looking at Remediant. I've worked for BeyondTrust and have gone up against the other big players such as Delinea, Centrify, CyberArk, and HashiCorp. They more or less all offer similar solutions, but looking at your current requirements, Remediant really excels in delivering a simple, yet very effective tool in a matter of days and weeks, not months and years. 
Read full answer
DN
Aug 14, 2023
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your specific needs and integrates seamlessly into your existing infrastructure. However, I recommend visiting the official website of Broadcom (the company that acquired Symantec's enterprise security business) or contacting their sales representatives to get the most up-to-date information about their PAM solutions, including any rebranding or changes that may have occurred. When evaluating any PAM solution, it's essential to consider factors such as security, integration capabilities, ease of use, vendor support, scalability, and alignment with your organization's specific needs and compliance requirements. It's also a good practice to request demonstrations, proofs of concept, and references from vendors to ensure that the solution meets your expectations. Remember to involve key stakeholders, such as IT, security, compliance, and management teams, in the decision-making process to ensure alignment with organizational goals and requirements.
Read full answer
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
11%
Manufacturing Company
9%
Government
8%
Computer Software Company
23%
Financial Services Firm
12%
Manufacturing Company
6%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about BeyondTrust Privileged Remote Access?
The product has improved remote support capabilities since it works fine.
See all answers
What needs improvement with BeyondTrust Privileged Remote Access?
I recommend that we improve integration with other products like PasswordSafe, aiming for smoother integration. Better alignment between products would enhance manageability from a single point. Ad...
See all answers
What is your primary use case for BeyondTrust Privileged Remote Access?
We use the tool for vendor access, providing secure vendor access to manage systems. Most of our use cases involve selling the product for vendor access with high privileges. We also use it when us...
See all answers
What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
One Identity Safeguard is expensive. The license is around $3,000 per month.
See all answers
What needs improvement with One Identity Safeguard?
One Identity's support is not appropriately structured, and it has a lot of room to improve.
See all answers
 

Comparisons

CyberArk Privileged Access Manager vs BeyondTrust Privileged Remote Access Logo
CyberArk Privileged Access Manager vs BeyondTrust Privileged Remote Access
Compared 13% of the time
Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) vs BeyondTrust Privileged Remote Access Logo
Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) vs BeyondTrust Privileged Remote Access
Compared 12% of the time
Apache Guacamole vs BeyondTrust Privileged Remote Access Logo
Apache Guacamole vs BeyondTrust Privileged Remote Access
Compared 12% of the time
Delinea Secret Server vs BeyondTrust Privileged Remote Access Logo
Delinea Secret Server vs BeyondTrust Privileged Remote Access
Compared 11% of the time
Cyolo vs BeyondTrust Privileged Remote Access Logo
Cyolo vs BeyondTrust Privileged Remote Access
Compared 3% of the time
More BeyondTrust Privileged Remote Access Competitors
CyberArk Privileged Access Manager vs One Identity Safeguard Logo
CyberArk Privileged Access Manager vs One Identity Safeguard
Compared 37% of the time
WALLIX Bastion vs One Identity Safeguard Logo
WALLIX Bastion vs One Identity Safeguard
Compared 14% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 11% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 8% of the time
Saviynt vs One Identity Safeguard Logo
Saviynt vs One Identity Safeguard
Compared 6% of the time
More One Identity Safeguard Competitors
 

Product Reports

Buyer's Guide
BeyondTrust Privileged Remote Access
January 2025
BeyondTrust Privileged Remote Access reportDownload BeyondTrust Privileged Remote Access product report
Buyer's Guide
One Identity Safeguard
December 2024
One Identity Safeguard reportDownload One Identity Safeguard product report
 

Also Known As

Bomgar Privileged Access
No data available
 

Learn More

BeyondTrust
One Identity
 

Overview

BeyondTrust Privileged Remote Access (formerly Bomgar Privileged Access) lets you secure, manage, and audit vendor and internal remote privileged access without a VPN.

Privileged Remote Access provides visibility and control over third-party vendor access, as well as internal remote access, enabling your organization to extend access to important assets, but without compromising security.

Features include:

- Privileged Access Control: Enforce least privilege by giving users the right level of access.

- Monitor Sessions: Control and monitor sessions using standard protocols for RDP, VNC, HTTP/S, and SSH connections.

- Reduce the Attack Surface: Reduce attacks by consolidating the tracking, approval, and auditing of privileged accounts in one place and by creating a single access pathway.

- Integrate with Password Management: Inject credentials directly into servers and systems with just one click, so users never need to know or see plain text credentials.

- Mobile & Web Consoles: Use mobile apps or web-based consoles anytime, anywhere.

- Audit & Compliance: Create audit trails, session forensics, and other reporting features by capturing detailed session data in real-time or post- session review, and provide attestation reports to prove compliance.

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

 

Sample Customers

Horizon Beverage, Air Liquide, Gateway Bank of Florida
Cavium
Buyer's Guide
BeyondTrust Privileged Remote Access vs. One Identity Safeguard
December 2024
Free Report: BeyondTrust Privileged Remote Access vs. One Identity Safeguard
Find out what your peers are saying about BeyondTrust Privileged Remote Access vs. One Identity Safeguard and other solutions. Updated: December 2024.
DOWNLOAD NOW
831,020 professionals have used our research since 2012.
See our BeyondTrust Privileged Remote Access vs. One Identity Safeguard report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.