Try our new research platform with insights from 80,000+ expert users

BeyondTrust Privileged Remote Access vs One Identity Safeguard comparison

BeyondTrust and One Identity are both solutions in the Privileged Access Management (PAM) category. BeyondTrust is ranked #9 with an average rating of 8.2, while One Identity is ranked #3 with an average rating of 7.3. BeyondTrust holds a 5.2% mindshare in PAM, compared to One Identity’s 4.5% mindshare. Additionally, 95% of BeyondTrust users are willing to recommend the solution, compared to 93% of One Identity users who would recommend it.
BeyondTrust Privileged Remo...
Read 21 BeyondTrust Privileged Remote Access reviews
  • 2,027 Views
  • 1,380 Comparison Views
95% willing to recommend
One Identity Safeguard
Read 40 One Identity Safeguard reviews
  • 3,341 Views
  • 1,365 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

BeyondTrust Privileged Remote Access and One Identity Safeguard are leading in privileged access management. Users often prefer BeyondTrust for user satisfaction and support, while One Identity stands out for its features, making it a valuable investment.

Features: BeyondTrust offers secure remote access, extensive customizability, and remote session monitoring. One Identity provides advanced integration capabilities, comprehensive security features, and policy management tools.

Room for Improvement: BeyondTrust could enhance scalability, simplify updates, and improve mobile integration. One Identity may need improvements in its setup process, initial learning curve, and user interface complexity.

Ease of Deployment and Customer Service: BeyondTrust is valued for easy deployment and responsive support, appealing to those needing quick setup. One Identity entails a more lengthy setup but provides satisfactory customer service for users investing in long-term use.

Pricing and ROI: BeyondTrust is known for competitive pricing and satisfactory ROI. One Identity, while more expensive, offers strong long-term value through its extensive features, making it a worthy investment despite the higher cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed BeyondTrust Privileged Remote Access vs. One Identity Safeguard Report (Updated: October 2024).
Buyer's Guide
BeyondTrust Privileged Remote Access vs. One Identity Safeguard
October 2024
Download the complete report
Helped 815,854 peers since 2012
 

Categories and Ranking

BeyondTrust Privileged Remo...
Ranking in Privileged Access Management (PAM)
9th
Average Rating
8.6
Number of Reviews
21
Ranking in other categories
Remote Access (9th)
One Identity Safeguard
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.0
Number of Reviews
40
Ranking in other categories
User Entity Behavior Analytics (UEBA) (6th)
 

Mindshare comparison

As of November 2024, in the Privileged Access Management (PAM) category, the mindshare of BeyondTrust Privileged Remote Access is 5.2%, down from 5.6% compared to the previous year. The mindshare of One Identity Safeguard is 4.5%, down from 5.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Q&A Highlights

AG
Aug 14, 2023
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your specific needs and integrates seamlessly into your existing infrastructure. However, I recommend visiting the official website of Broadcom (the company that acquired Symantec's enterprise security business) or contacting their sales representatives to get the most up-to-date information about their PAM solutions, including any rebranding or changes that may have occurred. When evaluating any PAM solution, it's essential to consider factors such as security, integration capabilities, ease of use, vendor support, scalability, and alignment with your organization's specific needs and compliance requirements. It's also a good practice to request demonstrations, proofs of concept, and references from vendors to ensure that the solution meets your expectations. Remember to involve key stakeholders, such as IT, security, compliance, and management teams, in the decision-making process to ensure alignment with organizational goals and requirements.
See all answers
 

Featured Reviews

Sean Rall - PeerSpot reviewer
Jul 6, 2022
Our support team can do so much more without having to actively engage our customers, which saves us time and money
In recent days, the most valuable feature would be the Vault. Overall, the most valuable feature would be that ability to do remote support. Vault does a good job of providing visibility for domain accounts, endpoints, and local accounts associated with discovery jobs. The report tools are very robust. I know they have their report tools that you can filter through, which also give you access to the data. So, if you ever want to just do a data dump and your own analytics on it, then you could, which is really nice. We also integrate with the API for reports, which is really nice as well.
Read full review
Tor Nordhagen - PeerSpot reviewer
Nov 22, 2023
Transparent mode for privileged sessions will greatly simplify our client's administrative situation
We're introducing the solution's transparent mode for privileged sessions. This is part of what the client hasn't used before. It will simplify their administrative situation greatly. So far, the rollout of this feature has been a seamless process, but we're still in the midst of rolling it out. The benefits will be on the risk side. Right now, the way accounts are managed, you don't necessarily know who is using an account. There's a shared admin account, and that's not a good thing. And those accounts are shared in wallets by several people. One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The scalability is excellent."
"It is a real fortress. Its security is very strong. Multi-factor came as a feature out-of-the-box, which was big for us. That helps us meet another compliance requirement. It enforces encryption. Nobody can see what we are doing in our remote system if they happen to be listening for unencrypted traffic. That is its biggest strength."
"The project goal was to allow staff to run applications with admin privileges without being admins, which was the product's most important feature."
"One of the features that I really like about it is the ability to set a start date, time, and end date for the access. For example, you can set the access for a person from tomorrow, Monday, or Tuesday and ending on a specific period of the day or a specific date. That's really quite helpful."
"PRA stands on its own as a full solution. This is important because it reduces the need to maintain a lot of different services. Also, the integration between those services are sometimes not easy to maintain. So, having a solution like BeyondTrust Privileged Remote Access reducing our workload gives us enough time to work on our other issues. The system just runs and does what it is supposed to do."
"We like the integration with Active Directory. It allows us to discover the endpoints and user accounts that need protection. It's a good way of securing our privileged access."
"I like the enterprise credential manager. It's a connector that sits in PRA and tests the credentials for the end user with a process that will clean the password. This is one of PRA's primary features and simplifies user onboarding. There aren't many restrictions or complications. We can add the user while only opening one port, which is more than enough to access the PRA server. Every organization requires only four critical servers out of a hundred and some 50 production servers."
"The product has improved remote support capabilities since it works fine."
More BeyondTrust Privileged Remote Access pros
"It offers high availability and enables end users to deploy the solution with 99.999 percent uptime, which is crucial in an enterprise environment with a large number of endpoints."
"One Identity Safeguard is stable and provides great performance."
"The transparent mode for privileged sessions is a very good solution."
"We use the solution’s “transparent mode” feature for privileged sessions. It is very easy because it is only a simple configuration for our users. We don't have to modify our network. We install it, configure it, and it works. So, it is super easy. The rollout for our users is seamless."
"The identity discovery is good, and the performance is pretty good value."
"Safeguard can define and update processes and procedures into the security framework of a company, including mobile. It allows us to change the policies and configurations on a mass scale in regards to security."
"The initial setup is very easy."
"It has greatly helped improve our security posture. Safeguard has an option where it will reset passwords on service accounts, then go out to those servers where that service account is running as a service and update the password on it. That makes password changes very easy. We can regularly change passwords now and are planning on making it an annual activity, where all the people who own service accounts will go in and make sure all their passwords get changed, updated, and reset."
More One Identity Safeguard pros
 

Cons

"At the moment, I don't see any major problems with it. If anything, they can just change the look and feel of the login screen because it looks too simple to me. It does not have so much information. When you get to the login screen of the solution, you should have more information. We also have BeyondTrust Remote Support, and the login page looks similar to BeyondTrust Privilege Remote Access. I would love to see more rich information on the login screen or landing page so that rather than having a regular sign-in screen or page where you just provide a username and password and get into the solution, you should have more insight into what the solution does. I've mentioned this to them every time I have had an opportunity."
"It would be very nice if it has an enterprise vault. Currently, it can interact with Password Safe, which is a separate solution and equivalent to Thycotic Secret Server. Instead of having Password Safe as a separate entity, they should combine it with BeyondTrust Privileged Remote Access. They have done it in some way, but it is not an enterprise tech solution."
"The price is pretty expensive."
"There is no connectivity to the appliance side. There is no API, and it is just difficult for me to capture what version the device is on without going in and doing screenshots. It is a little too secure in that regard, where they don't even trust their product owner. Since a lot of hacks come from the inside, they are probably doing what they need to do out of necessity. It is just that I have to work pretty hard to produce compliance data on the box."
"The solution is very flexible, which is a plus, but I would say the implementation requires someone with knowledge and experience, as it can be easy to get lost in all the details. The implementation process could be streamlined and simplified. Though the complexity of the solution provides greater flexibility, it requires a lot of time to understand it fully."
"I would love to have a web console and the ability to use the smart card with the web console to provide remote support. If you are on a computer that doesn't have the Bomgar console, you should be able to use the web console to provide support. That's the only thing right now. A web console is nice when you're jumping into a computer, but if you need to elevate the privileges, you currently can't do it with the smart card. If they could figure that out, that would be money."
"Its management is through two different portals, and you can't get from one portal to the other. I have to literally open up another website and go into it a different way. There are no inner links between the two. They should interlink the actual virtual server and the appliance. In general, there should be one interface for management for admins."
"The solution's Vault is a nice feature. It helps to securely share a security password in teams, but it is not at the level of a password management solution. So, it is just really a vault. We were expecting to have more features to better manage passwords, but that is something that you can work around if you also have a password safe solution. I would like them to have features like password rotation or password auditing, e.g., old passwords."
More BeyondTrust Privileged Remote Access cons
"The deployment affects our privileged users because it takes a long time for them to request privileges, which impacts the SLA."
"The multilanguage functionality does not support the Arabic language, even though this solution is deployed in an Arabic region."
"For some users, the physical appliance has been a bit buggy."
"The SPS could be a lot easier to administrate and the parts should be unified, from a design perspective, so that I can recognize the systems as being part of the same package. They feel like they have been forced together."
"The Transparent Mode could be somewhat easier to use."
"Even though we have two nodes, there's no way to do an upgrade without taking everything completely offline. It would be nice if they could improve that."
"The GUI has room for improvement because it is confusing and cumbersome."
"The automated change of the passwords, which is now integrated, could be improved to be more flexible regarding different systems."
More One Identity Safeguard cons
 

Pricing and Cost Advice

"I wish it was a little bit cheaper, but when a product is as solid as this, I understand what the cost does. It helps them to make sure it stays that way. If you want a reliable, solid product, you're going to pay more."
"The price is pretty expensive, but you get what you pay for and this is a great product."
"I wasn't directly involved in the licensing and pricing, but I can say that PRA is licensed per endpoint added to the Vault. I would advise users to take frequent exports of their license usage package; it's a simple feature that provides a spreadsheet of every machine in the Vault. This helps to cut down on duplicate licenses, which can happen by adding the same endpoint using an IP address and a fully qualified domain name, for instance. The implementation is an additional cost, and they offer several tiers, so the price varies. There are also some optional add-ons, so I would advise people to research the product well and find out precisely what they need regarding features. The Advanced Web Access add-on provides some required functionality when interfacing with websites; that's one to consider."
"My client found the solution a bit expensive but considering their use case and requirements, they didn't have any other choice. As far as I know, implementation and licensing are the only costs."
"PRA's pricing is competitive."
"Though the solution was a bit expensive, the overall pricing was average."
"Its price is pretty good for the features and services that it provides. It is not outrageous. I'm not aware of any additional charges or anything like that."
"PRA was one of the cheapest solutions that we evaluated."
More BeyondTrust Privileged Remote Access pricing and cost advice
"One Identity Safeguard is expensive and the cost goes up as we scale."
"Its subscription cost is too much, and sometimes, it is very difficult to pitch the solution to the management for cost approval. If the cost is reduced a little bit, it would be easier. If its cost was less, many other organizations that currently cannot afford it would be able to use this technology. I'm sure many organizations around the globe are having issues with identity management, and it is a very difficult task for IT to manage privileged accounts."
"Setup cost, pricing and licensing are all very expensive."
"It was definitely cheaper than the other two products that we evaluated."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"As compared to other products, it is reasonable, but the training sessions are too expensive."
"They offer a fair price for a robust solution."
More One Identity Safeguard pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
815,854 professionals have used our research since 2012.
 

Answers from the Community

AG
Aug 14, 2023
Aug 14, 2023
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your...
See 2 answers
Nurlan Temirbulatov - PeerSpot reviewer
Dec 7, 2022
Hello Avinash, it all depends on the timeline and urgency of the project. If you need to deploy a PAM tool that focuses on standing privileges, stopping lateral movement, and incorporating Zero Standing Privileges as part of Zero Trust, then please consider looking at Remediant. I've worked for BeyondTrust and have gone up against the other big players such as Delinea, Centrify, CyberArk, and HashiCorp. They more or less all offer similar solutions, but looking at your current requirements, Remediant really excels in delivering a simple, yet very effective tool in a matter of days and weeks, not months and years. 
Read full answer
DN
Aug 14, 2023
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your specific needs and integrates seamlessly into your existing infrastructure. However, I recommend visiting the official website of Broadcom (the company that acquired Symantec's enterprise security business) or contacting their sales representatives to get the most up-to-date information about their PAM solutions, including any rebranding or changes that may have occurred. When evaluating any PAM solution, it's essential to consider factors such as security, integration capabilities, ease of use, vendor support, scalability, and alignment with your organization's specific needs and compliance requirements. It's also a good practice to request demonstrations, proofs of concept, and references from vendors to ensure that the solution meets your expectations. Remember to involve key stakeholders, such as IT, security, compliance, and management teams, in the decision-making process to ensure alignment with organizational goals and requirements.
Read full answer
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
12%
Manufacturing Company
9%
Government
8%
Computer Software Company
22%
Financial Services Firm
12%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about BeyondTrust Privileged Remote Access?
The product has improved remote support capabilities since it works fine.
See all answers
What needs improvement with BeyondTrust Privileged Remote Access?
The issue I found with the product revolves around the fact that RDP and SSH sessions take too much time, making it an area of concern where improvements are required. The product should be able to...
See all answers
What is your primary use case for BeyondTrust Privileged Remote Access?
I use the tool in my lab. I am involved in the product's testing phase in my lab, where I am trying to check out the solution.
See all answers
What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
One Identity Safeguard is expensive. The license is around $3,000 per month.
See all answers
What needs improvement with One Identity Safeguard?
One Identity's support is not appropriately structured, and it has a lot of room to improve.
See all answers
 

Comparisons

CyberArk Privileged Access Manager vs BeyondTrust Privileged Remote Access Logo
CyberArk Privileged Access Manager vs BeyondTrust Privileged Remote Access
Compared 14% of the time
Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) vs BeyondTrust Privileged Remote Access Logo
Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) vs BeyondTrust Privileged Remote Access
Compared 12% of the time
Apache Guacamole vs BeyondTrust Privileged Remote Access Logo
Apache Guacamole vs BeyondTrust Privileged Remote Access
Compared 12% of the time
WALLIX Bastion vs BeyondTrust Privileged Remote Access Logo
WALLIX Bastion vs BeyondTrust Privileged Remote Access
Compared 10% of the time
F5 BIG-IP Access Policy Manager (APM) vs BeyondTrust Privileged Remote Access Logo
F5 BIG-IP Access Policy Manager (APM) vs BeyondTrust Privileged Remote Access
Compared 4% of the time
More BeyondTrust Privileged Remote Access Competitors
CyberArk Privileged Access Manager vs One Identity Safeguard Logo
CyberArk Privileged Access Manager vs One Identity Safeguard
Compared 38% of the time
WALLIX Bastion vs One Identity Safeguard Logo
WALLIX Bastion vs One Identity Safeguard
Compared 14% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 10% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 6% of the time
Fudo PAM vs One Identity Safeguard Logo
Fudo PAM vs One Identity Safeguard
Compared 6% of the time
More One Identity Safeguard Competitors
 

Product Reports

Buyer's Guide
BeyondTrust Privileged Remote Access
November 2024
BeyondTrust Privileged Remote Access reportDownload BeyondTrust Privileged Remote Access product report
Buyer's Guide
One Identity Safeguard
November 2024
One Identity Safeguard reportDownload One Identity Safeguard product report
 

Also Known As

Bomgar Privileged Access
No data available
 

Learn More

BeyondTrust
One Identity
 

Overview

BeyondTrust Privileged Remote Access (formerly Bomgar Privileged Access) lets you secure, manage, and audit vendor and internal remote privileged access without a VPN.

Privileged Remote Access provides visibility and control over third-party vendor access, as well as internal remote access, enabling your organization to extend access to important assets, but without compromising security.

Features include:

- Privileged Access Control: Enforce least privilege by giving users the right level of access.

- Monitor Sessions: Control and monitor sessions using standard protocols for RDP, VNC, HTTP/S, and SSH connections.

- Reduce the Attack Surface: Reduce attacks by consolidating the tracking, approval, and auditing of privileged accounts in one place and by creating a single access pathway.

- Integrate with Password Management: Inject credentials directly into servers and systems with just one click, so users never need to know or see plain text credentials.

- Mobile & Web Consoles: Use mobile apps or web-based consoles anytime, anywhere.

- Audit & Compliance: Create audit trails, session forensics, and other reporting features by capturing detailed session data in real-time or post- session review, and provide attestation reports to prove compliance.

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

 

Sample Customers

Horizon Beverage, Air Liquide, Gateway Bank of Florida
Cavium
Buyer's Guide
BeyondTrust Privileged Remote Access vs. One Identity Safeguard
October 2024
Free Report: BeyondTrust Privileged Remote Access vs. One Identity Safeguard
Find out what your peers are saying about BeyondTrust Privileged Remote Access vs. One Identity Safeguard and other solutions. Updated: October 2024.
DOWNLOAD NOW
815,854 professionals have used our research since 2012.
See our BeyondTrust Privileged Remote Access vs. One Identity Safeguard report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.