Try our new research platform with insights from 80,000+ expert users

CyberArk Endpoint Privilege Manager vs One Identity Safeguard comparison

CyberArk and One Identity are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #5 with an average rating of 8.3, while One Identity is ranked #3 with an average rating of 7.2. CyberArk holds a 4.0% mindshare in PAM, compared to One Identity’s 4.3% mindshare. Additionally, 83% of CyberArk users are willing to recommend the solution, compared to 93% of One Identity users who would recommend it.
CyberArk Endpoint Privilege...
Read 31 CyberArk Endpoint Privilege Manager reviews
  • 1,381 Views
  • 957 Comparison Views
83% willing to recommend
One Identity Safeguard
Read 40 One Identity Safeguard reviews
  • 3,119 Views
  • 1,259 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and One Identity Safeguard are leading solutions in the endpoint security sector. CyberArk appears to have the upper hand in user satisfaction, particularly in pricing and support, whereas One Identity Safeguard is valued for its rich features that justify its higher cost.

Features: Users identify CyberArk Endpoint Privilege Manager for its integration capabilities, effective privilege management, and streamlined user controls. One Identity Safeguard stands out with its comprehensive session management, scalability, and robust security features.

Room for Improvement: CyberArk users suggest enhancements in reporting capabilities, simplified update processes, and more user-friendly interfaces. For One Identity Safeguard, improvements in response time, configuration simplicity, and user documentation are highlighted.

Ease of Deployment and Customer Service: CyberArk Endpoint Privilege Manager offers straightforward deployment and responsive customer service, making it a good fit for fast implementation. One Identity Safeguard, despite requiring more complex setup, provides a comprehensive support framework appreciated by users.

Pricing and ROI: CyberArk Endpoint Privilege Manager is seen as cost-effective with its competitive setup costs and quick ROI. One Identity Safeguard, although higher in upfront costs, provides long-term value due to its extensive features, offering a justified investment for many organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. One Identity Safeguard Report (Updated: January 2025).
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
January 2025
Download the complete report
Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CyberArk Endpoint Privilege...
Ranking in Privileged Access Management (PAM)
5th
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
31
Ranking in other categories
Endpoint Compliance (4th), Anti-Malware Tools (5th), Application Control (6th), Ransomware Protection (7th)
One Identity Safeguard
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
40
Ranking in other categories
User Entity Behavior Analytics (UEBA) (6th)
 

Mindshare comparison

As of January 2025, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 4.0%, up from 3.9% compared to the previous year. The mindshare of One Identity Safeguard is 4.3%, down from 5.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Featured Reviews

Anish R - PeerSpot reviewer
Foolproof and good for controlling access but can be expensive
I've worked in BeyondTrust, also. They have Asian-based solutions, and it's not as heavy as CyberArk. Since I have been working with CyberArk for some time, I feel a little bit more comfortable with CyberArk. BeyondTrust is also not that bad. However, they did not have all the capabilities that CyberArk was offering at that time. That said, this was maybe four or five years ago. I haven't explored anything after that. I'm sure a lot of things have changed. There used to be IBM Privilege Identity Manager as well, but it's not there anymore. Saviynt has its own solution as well. Basically, there are multiple solutions there, however, CyberArk was definitely been our choice for Privilege Identity Manager.
Read full review
Tor Nordhagen - PeerSpot reviewer
Transparent mode for privileged sessions will greatly simplify our client's administrative situation
We're introducing the solution's transparent mode for privileged sessions. This is part of what the client hasn't used before. It will simplify their administrative situation greatly. So far, the rollout of this feature has been a seamless process, but we're still in the midst of rolling it out. The benefits will be on the risk side. Right now, the way accounts are managed, you don't necessarily know who is using an account. There's a shared admin account, and that's not a good thing. And those accounts are shared in wallets by several people. One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is that it does lifecycle management and that it will change to whatever the end target is."
"The feature called PTA, which stands for Privileged Threat Analytics keeps track of what admins are doing and works with Centimeters. If something fishy is going on with a user's credentials, it alerts the security team so they can act fast. Plus, it automates stuff like resetting credentials or blocking users. So, if there's a potential hack, CyberArk can change passwords and lock out users in a snap. It also gives you a heads-up if anything unusual is going on with server activities, like someone creating new users with uncontrolled credentials."
"It has drastically reduced the attack surface for local administrative rights and the chance of escalation of privilege. We've removed, at this point, close to 98 percent of the local administrative accounts on workstations. If there were an incident, it would stop at that point and we'd be able to know."
"The most valuable feature is that their database is completely encrypted and protected with multiple layers."
"The password rotation and the session recording are the most valuable features."
"What sets CyberArk apart is its continuous innovation, staying ahead of the competition."
"It offers great performance."
"The tool is an endpoint management system. It monitors everything a standard user does and helps elevate privileges when necessary for advanced users. It keeps an auditable trail of all activities. Practically, it stops and blocks potentially hazardous user behavior, whether intentional or unintentional. Certain companies must use endpoint management software because of national or international rules or ISO norms."
More CyberArk Endpoint Privilege Manager pros
"Safeguard has the ability to record and retrieve in the full-video format."
"All the features are promising, but we love the reporting feature because we can get each and every report. That's a major compliance requirement. Its reporting is really amazing, and it has made life a lot easier."
"The system is easy to manage, as it is not a system that you will change everything all of a sudden. It evolves most of the time with customer requests."
"There are numerous valuable data protection features, including the content and information that offer us more scalable protection as needed."
"Being able to use a proxy server is an advantage."
"I like Safeguard's snapshot feature that enables us to review the last time an application was opened and by whom. If there are any issues, we can look behind the scenes to see what has been done. We can suspend a user's access or close off a server."
"The customer service and technical support are very good."
"Safeguard can define and update processes and procedures into the security framework of a company, including mobile. It allows us to change the policies and configurations on a mass scale in regards to security."
More One Identity Safeguard pros
 

Cons

"CyberArk Endpoint Privilege Manager could be improved by simplifying the administration process, specifically when setting up policies and applications."
"The price of the product is an area of concern where improvements are required. The product's price should be made more flexible."
"One area that has room for improvement is in managing the credentials for network devices."
"The solution can be complex to use at times."
"Can be improved by allowing computers to be excluded from policies."
"CyberArk has some performance issues. For example, servers could not handle the solution when we first took CyberArk Endpoint Privilege Manager."
"The product's threat protection and defense capabilities need enhancement."
"The price of the solution should improve."
More CyberArk Endpoint Privilege Manager cons
"For some users, the physical appliance has been a bit buggy."
"We sometimes face issues with configuration and things like that, but we manage to solve them."
"Something for One Identity to look at is having integration guidelines for how to logically group accounts."
"The interface is better now, but it still could be improved a lot. It needs more organization, menus, automatic refresh of information, and Web 2.0."
"There is room for improvement in the launch module. They built in a launch button but they don't have effective instructions for configuring it to allow it to launch an RDP session. They're working on that, but the button is in the live product. If they were going to install something that wasn't useful, they should have just disabled it and not rolled it out with the product."
"Our experience with technical support has been disappointing. We require more prompt and faster response times. We require answers to our questions right away but we haven't received that level of support."
"The product uses a lot of resources in current sessions."
"Transparent mode was too cumbersome, so I don't foresee us being able to use it. On paper when we were initially talking about it, it was definitely going to be the preferred method until we realized the burden it would be on our network guys. Then, we had to step back and reevaluate what we wanted to do. That's when we changed our approach to use the RD Gateway feature."
More One Identity Safeguard cons
 

Pricing and Cost Advice

"The price of CyberArk Endpoint Privilege Manager is expensive."
"I think that it was in the range of $200,000 that had to get approved."
"The cost for CyberArk is very high."
"We pay about $17 per user."
"I rate the solution's pricing an eight out of ten since the price can be too high for smaller businesses."
"The tool is a bit pricey compared to its competitors. My company does work with competitors, but I don't have hands-on experience with other software. I've just done some comparisons."
"I feel that the price of the product is nominal. It must be around 10 to 15 USD per installation. I rate the product price an eight to nine out of ten, where one is high price, and ten is low price."
"Pricing depends on how many devices you use. Right now, on-premise, it costs us a little, but it's worth it. It seems like the cloud solution is much more expensive. We got this solution one year ago, and it's like we bought the solution, and now they are not going to support it on-premise anymore. We are in the implementation phase, and we missed this, and we already paid for the licenses. This is wasted time from my perspective, and CyberArk should be more customer-friendly."
More CyberArk Endpoint Privilege Manager pricing and cost advice
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"They have comparable pricing. All identity products are essentially priced in a similar way. It's a per-user base."
"The pricing depends on our perspective, our budget, and, of course, the competitors we are taking into account."
"They offer a fair price for a robust solution."
"The license is around $3,000 per month."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"Safeguard is cheaper than CyberArk."
"It was definitely cheaper than the other two products that we evaluated."
More One Identity Safeguard pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
831,158 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
11%
Government
8%
Computer Software Company
23%
Financial Services Firm
12%
Manufacturing Company
6%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
The tool's pricing is reasonable for customers.
See all answers
What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
One Identity Safeguard is expensive. The license is around $3,000 per month.
See all answers
What needs improvement with One Identity Safeguard?
One Identity's support is not appropriately structured, and it has a lot of room to improve.
See all answers
 

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 24% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 18% of the time
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 16% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 9% of the time
Tanium vs CyberArk Endpoint Privilege Manager Logo
Tanium vs CyberArk Endpoint Privilege Manager
Compared 5% of the time
More CyberArk Endpoint Privilege Manager Competitors
CyberArk Privileged Access Manager vs One Identity Safeguard Logo
CyberArk Privileged Access Manager vs One Identity Safeguard
Compared 37% of the time
WALLIX Bastion vs One Identity Safeguard Logo
WALLIX Bastion vs One Identity Safeguard
Compared 14% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 11% of the time
BeyondTrust Privileged Remote Access vs One Identity Safeguard Logo
BeyondTrust Privileged Remote Access vs One Identity Safeguard
Compared 8% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 8% of the time
More One Identity Safeguard Competitors
 

Product Reports

Buyer's Guide
CyberArk Endpoint Privilege Manager
January 2025
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
Buyer's Guide
One Identity Safeguard
January 2025
One Identity Safeguard reportDownload One Identity Safeguard product report
 

Also Known As

Viewfinity
No data available
 

Learn More

CyberArk
One Identity
 

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

 

Sample Customers

Information Not Available
Cavium
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
January 2025
Free Report: CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. One Identity Safeguard and other solutions. Updated: January 2025.
DOWNLOAD NOW
831,158 professionals have used our research since 2012.
See our CyberArk Endpoint Privilege Manager vs. One Identity Safeguard report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.