Try our new research platform with insights from 80,000+ expert users

Bitwarden vs CyberArk Privileged Access Manager comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

Bitwarden
Ranking in Enterprise Password Managers
8th
Average Rating
9.2
Number of Reviews
7
Ranking in other categories
No ranking in other categories
CyberArk Privileged Access ...
Ranking in Enterprise Password Managers
2nd
Average Rating
8.6
Number of Reviews
193
Ranking in other categories
User Activity Monitoring (1st), Privileged Access Management (PAM) (1st), Mainframe Security (3rd), Operational Technology (OT) Security (3rd)
 

Featured Reviews

Marcus Quinn - PeerSpot reviewer
Oct 17, 2023
Good Documentation, reliable, zero failure and fast
I often use another password manager as well to keep my passwords separate, ensuring redundancy. But one simple thing Bitwarden could improve is providing an option to duplicate credentials. Often, you're creating many sets of credentials for the same thing. If they all have the same information, notes, login, collection, and naming - all you're changing is the password. The ability to duplicate credential records quickly would be a big win. It doesn't do that right now. A feature I appreciate in another app, EndPass, is a shortcut that opens a mini window for quick access to credentials. Bitwarden could benefit from something like this, in addition to duplicating credentials. Other functionalities like team management and collections in Bitwarden are already simple. It doesn't need much more. We appreciate the simplicity and slow evolution rather than being overwhelmed with unnecessary features. It doesn't need to be pretty, just functional and accessible. And accessibility is crucial. If you're deploying to many people resistant to change, accessibility can be an objection. When someone claims they can't use a tool because of an accessibility issue, you're faced with a compliance challenge. Bitwarden does well in this regard. Still, accessibility should never be overlooked in favor of features. As you add more features, you potentially increase complexity and risk.
SatishIyer - PeerSpot reviewer
Jun 21, 2022
Lets you ensure relevant, compliant access in good time and with an audit trail, yet lacks clarity on MITRE ATT&CK
When I was a component owner for PAM's Privileged Threat Analytics (PTA) component, what I wanted was a clear mapping to the MITRE ATT&CK framework, a framework which has a comprehensive list of use cases. We reached out to the vendor and asked them how much coverage they have of the uses cases found on MITRE, which would have given us a better view of things while I was the product owner. Unfortunately they did not have the capability of mapping onto MITRE's framework at that time. PTA is essentially the monitoring interface of the broker (e.g. Privileged Access Management, the Vault, CPM, PSM, etc.), and it's where you can capture your broker bypass and perform related actions. For this reason, we thought that this kind of mapping would be required, but CyberArk informed us that they did not have the capability we had in mind with regard to MITRE ATT&CK. I am not sure what the situation is now, but it would definitely help to have that kind of alignment with one of the more well-known frameworks like MITRE. For CyberArk as a vendor, it would also help them to clearly spell out in which areas they have full functionality and in which ares they have partial or none. Of course, it also greatly benefits the customers when they're evaluating the product.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I've found something else that is extremely valuable. Bitwarden refers to it as "emergency access". It's essentially a digital legacy where you can assign approved users who can request access. If you don't decline within a certain timeframe, they can access it in case you're incapacitated or deceased. When I last checked, only a few services offered this feature. Bitwarden had the simplest and best implementation."
"Having all the passwords in one place is helpful."
"In our organization, we use Bitwarden for managing product credentials. Bitwarden's collection feature enables us to securely create and store credentials, and we can easily provide team members with access to the relevant collections."
"The customer service and support are good. The technician is on time and the follow-up is amazing."
"The product has a very friendly community."
"Its integration capabilities and versatility, like the ability to securely save passwords and other critical information, make it incredibly useful."
"It is open source and the premium package is reasonable."
"CyberArk has a lot of modules."
"The most valuable feature of the solution stems from the fact that it's the best in the market. I haven't seen any other PAM solutions better than CyberArk Enterprise Password Vault."
"It's secure and reliable. I especially appreciate that it's locked down and only allows access to authorized components."
"The tool has safe vaults. We keep our passwords in the Vault. The tool’s recording feature is also valuable for us."
"Its' quite stable."
"It is a single tool that isolates possible kinds of malware. You get lateral movement blocking and auditing information, e.g., you know who is doing what. You are getting protections from the service as well as a useful environment. All your admins can easily go in and out of your company while accessing your servers in a secure way, even if they are working abroad."
"Service count rotation is probably one of my favorite features... The ability to automatically rotate any password I need to really helps with the entire enterprise strategy that we're pushing right now."
"I found it valuable that CyberArk Privileged Access Manager can be integrated with PTA (privileged threat analytics), and this means that it will tell you if there's a risk to the logins and signs of risk and if risky behavior is observed. It's a good feature. Another good feature is the CPM (central password manager) because it helps you rotate the passwords automatically without involving the admins. It can go and update the scheduled tasks and the services. At the same time, if there's an application where it cannot do all of these, CPM will trigger an automatic email to the application owners, telling them that they should go ahead and change the password. This allows you to manage the account password that CyberArk cannot manage, which helps mitigate the risk of old passwords, where the password gets compromised, and also allows you to manage the security of the domain."
 

Cons

"Enhancing the tool by including additional security variables would be a valuable improvement."
"I often use another password manager as well to keep my passwords separate, ensuring redundancy. But one simple thing Bitwarden could improve is providing an option to duplicate credentials. Often, you're creating many sets of credentials for the same thing. If they all have the same information, notes, login, collection, and naming - all you're changing is the password. The ability to duplicate credential records quickly would be a big win. It doesn't do that right now."
"It would be ideal if the application could be seamlessly integrated into our open-source software, especially for the purpose of enabling straightforward logging."
"The product could be cheaper."
"The solution should be made more secure as it has the banking sector and assets saved."
"The product must be a bit more unified and refined."
"I would like to log in with a master account using a passkey, that would be easy."
"The solution could improve by adding more connectors."
"They need to provide better training for the System Integrator."
"Sometimes the infrastructure team is hesitant to provide more resources."
"PAM could be more user-friendly and CyberArk could update the documentation to include more real-world examples. You have to learn it yourself through trial and error. In particular, the online documentation should have more information about troubleshooting."
"The tool's UI has bugs and lags. It needs to be improved. The deployment process can be complex due to multiple components for various functionalities, each requiring separate infrastructure management. To simplify this process, consolidating all these components into a single platform could be beneficial. The product's pricing could be cheaper."
"We require IAM (identify and access management) capability at the administrator level because we need more identification."
"If we could have some kind of out-of-the box feature that you can simply say "no" so they don't have to go into a development mode, that would a really helpful feature."
"The solution is too complicated to use and should be simplified. It took me a long time to understand how to use it. There is a lot that the solution can improve for the future."
 

Pricing and Cost Advice

"I use a free version and it works well for me."
"In our region, it comes at an affordable price."
"The solution is reasonably priced."
"It is an open-source tool."
"The product is not costly. I pay $10 per month."
"Cost efficiency is the number one thing that can be improved in my mind. This would change lots of companies minds on purchasing the product."
"If you are looking at implementing this solution, buy the training and go to it."
"Network and security licenses are currently being managed by other outsource vendors, so they are facing some type of problems in the digital aspect."
"Pricing and licensing depend on the environment."
"The price of CyberArk Privileged Access Manager could be less expensive."
"Licensing fees are paid on a yearly basis."
"The price of the solution is reasonable."
"The license CyberArk Privileged Access Manager is on an annual basis."
report
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Government
10%
Manufacturing Company
8%
Financial Services Firm
7%
Educational Organization
30%
Financial Services Firm
13%
Computer Software Company
11%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Bitwarden?
I've found something else that is extremely valuable. Bitwarden refers to it as "emergency access". It's essentially a digital legacy where you can assign approved users who can request access. If ...
What is your experience regarding pricing and costs for Bitwarden?
The product is not costly. I pay $10 per month. I use the basic plan, so I don't need the higher plan with more compliance features.
What needs improvement with Bitwarden?
The functionality to fully utilize passkeys could be improved. The last time I spoke to support, they said the development team was working on it. So far, it's working okay on my personal devices. ...
How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the m...
What do you like most about CyberArk Privileged Access Manager?
The most valuable features of the solution are control and analytics.
What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?
CyberArk Privileged Access Manager comes at a high cost. But the solution is worth its price.
 

Also Known As

No data available
CyberArk Privileged Access Security, CyberArk Enterprise Password Vault
 

Overview

 

Sample Customers

Information Not Available
Rockwell Automation
Find out what your peers are saying about Bitwarden vs. CyberArk Privileged Access Manager and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.