Try our new research platform with insights from 80,000+ expert users

Cisco Identity Services Engine (ISE) vs CyberArk Endpoint Privilege Manager comparison

The compared Cisco and CyberArk solutions aren't in the same category. Cisco is ranked #2 in NAC , with an average rating of 7.9, and holds a 21.7% mindshare in the category. CyberArk is ranked #4 in PAM , with an average rating of 8.8, and holds a 2.5% mindshare. Additionally, 87% of Cisco users are willing to recommend the solution, compared to 86% of CyberArk users who would recommend it.
Cisco Identity Services Eng...
Read 145 Cisco Identity Services Engine (ISE) reviews
  • 15,137 Views
  • 9,839 Comparison Views
87% willing to recommend
CyberArk Endpoint Privilege...
Read 38 CyberArk Endpoint Privilege Manager reviews
  • 4,241 Views
  • 1,272 Comparison Views
86% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Identity Services Engine (ISE) and CyberArk Endpoint Privilege Manager based on real PeerSpot user reviews.

Find out what your peers are saying about Hewlett Packard Enterprise, Cisco, Fortinet and others in Network Access Control (NAC).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Network Access Control (NAC) Report (Updated: January 2026).
Buyer's Guide
Network Access Control (NAC)
January 2026
Download the complete report
Helped 881,360 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.1
Cisco Identity Services Engine enhances security, simplifies operations, and reduces costs while boosting productivity and ensuring regulatory compliance.
Sentiment score
7.2
CyberArk Endpoint Privilege Manager enhances security, reduces risks and costs, saves resources, and protects sensitive information effectively.
Direct comparisons with Forescout reveal up to 30% to 40% difference in cost savings.
SunilkumarNaganuri
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
We also save money because we increased security, stopped incidents, and reduced breaches and security breaches.
Mohamed Fouad
Cybersecurity Team Leader at EMAK For Integrated Solutions
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
Deploying CyberArk Endpoint Privilege Manager has secured the infrastructure, which saves money, time, and resources.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
I consider CyberArk Endpoint Privilege Manager's return on investment to be good since it effectively accomplishes the goals expected from privilege access management solutions.
Diego Rivera
Commercial and Technical Professional Manager at Evolution Technologies Group
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
SunilkumarNaganuri - PeerSpot reviewerMohamed Fouad - PeerSpot reviewerSumit Chavan - PeerSpot reviewer
DR
 

Customer Service

Sentiment score
6.7
Cisco ISE support is highly rated for knowledge and responsiveness but struggles with response times and communication challenges.
Sentiment score
6.2
CyberArk Endpoint Privilege Manager support is knowledgeable but needs improvements in response times, accessibility, and first-level assistance.
I rate the technical support as one out of ten.
SunilkumarNaganuri
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
Cisco support has pretty good teams for support and every time we had good answers and we could somehow solve the issues we had.
NicolasFigaro
Network and Technology Information Manager at Akkodis
TAC support from Cisco is a notable feature; it provides very professional support.
Mohamed Fouad
Cybersecurity Team Leader at EMAK For Integrated Solutions
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
They respond immediately to our inquiries, resolve issues promptly, and provide valuable guidance, especially in critical situations.
Jayasree Sriram
Security Delivery Analyst at Accenture
We engage them when needed and receive prompt responses that typically resolve our issues.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
Earlier, we received support for normal tickets within a day, but now it takes one or two days to resolve issues.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
SunilkumarNaganuri - PeerSpot reviewer
NF
Mohamed Fouad - PeerSpot reviewerJayasree Sriram - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.3
Cisco ISE supports smooth scalability for diverse enterprises, but virtualization and hardware challenges may require strategic solutions.
Sentiment score
7.7
CyberArk Endpoint Privilege Manager efficiently scales for large deployments, praised for growth-centered architecture despite integration complexities.
You can run an all-in-one deployment and switch to distributed mode as your company grows, relying on Cisco Identity Services Engine (ISE) to support your scalability needs.
Mohamed Fouad
Cybersecurity Team Leader at EMAK For Integrated Solutions
Factors like architecture, business nature, and legal limitations such as GDPR affect it.
SunilkumarNaganuri
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
However, you can have some latency issues depending on where your devices are.
NicolasFigaro
Network and Technology Information Manager at Akkodis
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
We can set permissions per team or department, allowing some teams to elevate specific applications while others have different permissions.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
CyberArk Endpoint Privilege Manager is quite scalable.
Jayasree Sriram
Security Delivery Analyst at Accenture
The available reports and other security tools assist in scaling it according to my organization's needs.
Gani Habib
Cybersecurity Manager at a consultancy with 10,001+ employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
Mohamed Fouad - PeerSpot reviewerSunilkumarNaganuri - PeerSpot reviewer
NF
reviewer2600361 - PeerSpot reviewerJayasree Sriram - PeerSpot reviewer
GH
 

Stability Issues

Sentiment score
7.7
Cisco ISE is stable and reliable, but large deployments may face challenges, requiring proper configuration and effective support.
Sentiment score
8.2
CyberArk Endpoint Privilege Manager is stable, with 99.99% uptime, reliable on Windows, needing console improvements and minimal memory.
Cisco Identity Services Engine (ISE) is considered very reliable and stable.
reviewer2590572
Solution Architect, Presales Engineer at a computer software company with 51-200 employees
The stability of Cisco Identity Services Engine (ISE) is poor for certain use cases, like authentication.
SunilkumarNaganuri
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
Sometimes when we have upgrades or failovers with Cisco Identity Services Engine (ISE), we had some minor issues.
NicolasFigaro
Network and Technology Information Manager at Akkodis
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
It is a robust solution that has effectively supported our environment without major issues.
Jayasree Sriram
Security Delivery Analyst at Accenture
Since implementing it, we have not experienced any outages or stability issues.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
CyberArk Endpoint Privilege Manager offers multiple options for creating and stopping policies.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
reviewer2590572 - PeerSpot reviewerSunilkumarNaganuri - PeerSpot reviewer
NF
Jayasree Sriram - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewer
 

Room For Improvement

Cisco ISE is hindered by complexity, compatibility issues, costly licensing, and needs improvements in usability, support, and performance.
CyberArk Endpoint Privilege Manager needs improved integration, user interface, and pricing, along with enhanced compatibility and functionality.
The whole setup works well with Cisco access points and Cisco switches, but when you have multiple vendors in the environment, such as HP switches or access points like Aruba, you'll find they will not work well with Cisco Identity Services Engine (ISE).
Jeremiah Ngure
Technical Services Lead at Telenet Solutions
Pricing can be more expensive compared to other vendors, and there is a significant price gap observed, which doesn't seem justified by some specific features.
reviewer2590572
Solution Architect, Presales Engineer at a computer software company with 51-200 employees
They are very poor in asset classification and should focus on improving the preauthentication profiling, especially for NAC use cases.
SunilkumarNaganuri
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
CyberArk Endpoint Privilege Manager could be improved by simplifying the administration process, specifically when setting up policies and applications.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
Currently, no user-based policy option is available inside the EPM console.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
Some features provided in the self-hosted version of EPM are not supported in the software as a service version, like connection to some analysis applied by Palo Alto.
Marek Neumann
Solution Architect at a consultancy with 10,001+ employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
JN
reviewer2590572 - PeerSpot reviewerSunilkumarNaganuri - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewerMarek Neumann - PeerSpot reviewer
 

Setup Cost

Cisco ISE pricing is complex and costly, with strong vendor partnerships needed for discounts, favoring large enterprises over smaller businesses.
CyberArk Endpoint Privilege Manager's high pricing is justified by its quality, features, and appeal to large enterprises in finance.
Compared to other solutions like HPE ClearPass, Cisco is more costly, and the conversation suggests a possible forty percent price gap compared to competitors.
reviewer2590572
Solution Architect, Presales Engineer at a computer software company with 51-200 employees
The license costs can range between $50,000 to $100,000 per year for enterprises.
Jeremiah Ngure
Technical Services Lead at Telenet Solutions
Cloud solutions are expensive, while on-prem setups with shared environments are cheaper but not effective.
SunilkumarNaganuri
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive.
Gani Habib
Cybersecurity Manager at a consultancy with 10,001+ employees
CyberArk Endpoint Privilege Manager is costly compared to other solutions.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
I've received feedback that the pricing is high, however, for me, the value it brings is worth the cost.
Padmanabha Hegde
Manager at a computer software company with 1,001-5,000 employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
reviewer2590572 - PeerSpot reviewer
JN
SunilkumarNaganuri - PeerSpot reviewer
GH
Sumit Chavan - PeerSpot reviewer
PH
 

Valuable Features

Cisco ISE excels in security, network access control, and integration, offering adaptability, scalability, and centralized management for organizations.
CyberArk Endpoint Privilege Manager enhances security by managing privileges, integrating seamlessly, and preventing ransomware while ensuring regulatory compliance.
Cisco Identity Services Engine (ISE) offers authentication using RADIUS, enhancing network security by separating and segregating networks.
Jeremiah Ngure
Technical Services Lead at Telenet Solutions
There is value because it helps us secure the network and prevents certain things from happening which could cause financial loss.
John Ntambi
Ag Systems & Networks Head at UNBS
The adaptability of Cisco Identity Services Engine (ISE) policy enforcement can fit to the site we have depending on which kind of devices we have on site and then the needs for authentication, granting access and then assigning each device into its correct network for segmentation.
NicolasFigaro
Network and Technology Information Manager at Akkodis
For more quotes and insights, download the Cisco Identity Services Engine (ISE) report
CyberArk Endpoint Privilege Manager effectively reduces malicious content in applications by allowing us to identify and block dangerous applications.
Jayasree Sriram
Security Delivery Analyst at Accenture
It allows them to granularly manage controls to prevent some malicious activities on the endpoint machine.
reviewer1247523
Head of Sales Services Department at a comms service provider with 51-200 employees
CyberArk Endpoint Privilege Manager enhances computer security by providing minimal access, effectively preventing ransomware attacks.
Gani Habib
Cybersecurity Manager at a consultancy with 10,001+ employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
JN
JN
NF
Jayasree Sriram - PeerSpot reviewerreviewer1247523 - PeerSpot reviewer
GH
 

Categories and Ranking

Cisco Identity Services Eng...
Average Rating
8.2
Reviews Sentiment
6.6
Number of Reviews
145
Ranking in other categories
Network Access Control (NAC) (2nd), Cisco Security Portfolio (4th)
CyberArk Endpoint Privilege...
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (5th), Privileged Access Management (PAM) (4th), Anti-Malware Tools (5th), Application Control (3rd), Ransomware Protection (5th)
 

Mindshare comparison

Cisco Identity Services Engine (ISE) and CyberArk Endpoint Privilege Manager aren’t in the same category and serve different purposes. Cisco Identity Services Engine (ISE) is designed for Network Access Control (NAC) and holds a mindshare of 21.7%, down 27.9% compared to last year.
CyberArk Endpoint Privilege Manager, on the other hand, focuses on Privileged Access Management (PAM), holds 2.5% mindshare, down 3.6% since last year.
Network Access Control (NAC) Market Share Distribution
ProductMarket Share (%)
Cisco Identity Services Engine (ISE)21.7%
Aruba ClearPass21.2%
Fortinet FortiNAC15.5%
Other41.6%
Network Access Control (NAC)
Privileged Access Management (PAM) Market Share Distribution
ProductMarket Share (%)
CyberArk Endpoint Privilege Manager2.5%
CyberArk Privileged Access Manager11.2%
Delinea Secret Server5.0%
Other81.3%
Privileged Access Management (PAM)
 

Featured Reviews

NF
NicolasFigaro
Network and Technology Information Manager at Akkodis
Has improved authentication management and simplified visitor network access
The log capacity in Cisco Identity Services Engine (ISE) could be enhanced because today natively on the ISE can only have a look at the logs from the day before. You cannot search into the oldest logs; you have to use another tool for that. This can be blocking if you don't have any log consolidation solution. To do a search for an issue or something that happened two days ago, you cannot search directly in there. The capacity of Cisco Identity Services Engine (ISE) could be enhanced. Something between one week and one month for the log capacity would be nice.
Read full review
Sumit Chavan - PeerSpot reviewer
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
Helps secure the infrastructure and control users with admin rights
There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Network Access Control (NAC) solutions are best for your needs.
See recommendations
881,360 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
11%
Computer Software Company
10%
Financial Services Firm
9%
Government
8%
Financial Services Firm
14%
Manufacturing Company
11%
Computer Software Company
10%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise32
Large Enterprise91
By reviewers
Company SizeCount
Small Business17
Midsize Enterprise9
Large Enterprise18
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
See all answers
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
See all answers
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
See all answers
Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...
See all answers
 

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE) Logo
Aruba ClearPass vs Cisco Identity Services Engine (ISE)
Compared 25% of the time
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)
Compared 19% of the time
Forescout Platform vs Cisco Identity Services Engine (ISE) Logo
Forescout Platform vs Cisco Identity Services Engine (ISE)
Compared 7% of the time
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE) Logo
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
Portnox vs Cisco Identity Services Engine (ISE) Logo
Portnox vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
More Cisco Identity Services Engine (ISE) Competitors
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 10% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 9% of the time
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 9% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 8% of the time
Tanium vs CyberArk Endpoint Privilege Manager Logo
Tanium vs CyberArk Endpoint Privilege Manager
Compared 4% of the time
More CyberArk Endpoint Privilege Manager Competitors
 

Product Reports

Buyer's Guide
Cisco Identity Services Engine (ISE)
January 2026
Cisco Identity Services Engine (ISE) reportDownload Cisco Identity Services Engine (ISE) product report
Buyer's Guide
CyberArk Endpoint Privilege Manager
January 2026
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
 

Also Known As

Cisco ISE
Viewfinity
 

Overview

Cisco Identity Services Engine offers robust authentication, posture profiling, guest and secure access, and dynamic policy management. Known for its seamless integration with Cisco tools and network access control features, it ensures secure device and user authentication across networks.

Cisco Identity Services Engine is renowned for its capabilities in managing authentication, guest access, and policy management through segmentation. Its TrustSec functionality, alongside RADIUS and TACACS+ support, provides enhanced security, further augmented by its ability to operate in diverse environments. Its scalability and integration with Cisco solutions aid in maintaining network visibility and access control. Challenges include the complexity of initial deployments, somewhat cumbersome documentation, and limited integration in multi-vendor environments. While encountering issues in stability and updates, the demand for better analytics and straightforward troubleshooting alongside cost-effective licensing is notable.

What are the key features of Cisco Identity Services Engine?
  • Authentication: Secures user and device access to networks using robust authentication protocols.
  • Posture Profiling: Provides in-depth analysis of device compliance with security policies.
  • Guest Access Management: Allows controlled network access for guest users through streamlined processes.
  • Dynamic Policy Management: Enables automatic adjustment of security policies based on real-time data.
  • Segmentation via TrustSec: Enhances security levels by segmenting network traffic based on identity.
What benefits or ROI should users expect from Cisco Identity Services Engine?
  • Comprehensive Security: Ensures enforceable security policies across network access points.
  • Enhanced Integration: Facilitates seamless collaboration with existing Cisco infrastructures.
  • Improved Compliance: Helps meet industry security standards for network access and user rights.
  • Increased Visibility: Provides detailed insights into network traffic and user activities.
  • Device Management Efficiency: Streamlines the process of managing diverse devices within a single framework.

Industries implement Cisco Identity Services Engine primarily for network access control, ensuring secure authentication and segmentation in both wired and wireless environments. Supporting policies like bring-your-own-device and compliance standards, ISE manages identity-based access control, especially beneficial for entities that require detailed user rights management and integration within enterprise networks.

Cisco

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk
 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
Information Not Available
Buyer's Guide
Network Access Control (NAC)
January 2026
Download Free Report
Find out what your peers are saying about Hewlett Packard Enterprise, Cisco, Fortinet and others in Network Access Control (NAC). Updated: January 2026.
DOWNLOAD NOW
881,360 professionals have used our research since 2012.

We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.