Idira Endpoint Privilege Manager vs WALLIX Bastion comparison

Idira by Palo Alto Networks and WALLIX are both solutions in the Privileged Access Management (PAM) category. Idira by Palo Alto Networks is ranked #5 with an average rating of 8.7, while WALLIX is ranked #8 with an average rating of 6.8. Idira by Palo Alto Networks holds a 2.3% mindshare in PAM, compared to WALLIX’s 3.8% mindshare. Additionally, 86% of Idira by Palo Alto Networks users are willing to recommend the solution, compared to 86% of WALLIX users who would recommend it.

Idira Endpoint Privilege Ma...

Read 38 Idira Endpoint Privilege Manager reviews

5,857 Views
1,757 Comparison Views

86% willing to recommend

WALLIX Bastion

Read 13 WALLIX Bastion reviews

3,319 Views
3,253 Comparison Views

86% willing to recommend

Idira Endpoint Privilege Ma...

WALLIX Bastion

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 2, 2026

Idira Endpoint Privilege Manager and WALLIX Bastion compete in the endpoint security and privilege management category. WALLIX Bastion seems to have the upper hand due to its comprehensive session monitoring and flexible licensing, which provide significant functionality and cost advantages in larger implementations.

Features: Idira Endpoint Privilege Manager offers advanced application control and password management, enhancing security by managing user privileges and blocking potential threats. It supports a flexible deployment across different environments, which can be a key advantage. WALLIX Bastion emphasizes password management and session monitoring with unique features like workflow processes and video recording capabilities, ensuring secure access control and audit trail creation.

Room for Improvement: Idira Endpoint Privilege Manager struggles with performance issues and complex installations that require significant resources and expertise. Improvements in documentation and integration with other systems are needed. WALLIX Bastion could enhance its reporting with more robust analytics and customization options. Simplifying its password management and licensing complexities would improve user acceptance.

Ease of Deployment and Customer Service: Idira Endpoint Privilege Manager supports deployment across on-premises, public, and hybrid cloud environments, though its customer support is inconsistent, with varying response quality and required certifications for ticket submission. WALLIX Bastion is primarily an on-premises solution with limited cloud deployment options. It faces challenges with long response times in customer service, with usability and support documentation needing improvement.

Pricing and ROI: Idira Endpoint Privilege Manager is considered costly, particularly for small businesses, though its security features may justify the investment with potential cost savings and security enhancements. WALLIX Bastion offers a flexible licensing model that can be more cost-effective in larger deployments. Despite challenges in cost justification, both solutions provide significant security improvements with potential long-term benefits.

To learn more, read our detailed Idira Endpoint Privilege Manager vs. WALLIX Bastion Report (Updated: April 2026).

Buyer's Guide

Idira Endpoint Privilege Manager vs. WALLIX Bastion

April 2026

Download the complete report

Helped 896,803 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Idira Endpoint Privilege Ma...

Ranking in Privileged Access Management (PAM)

5th

Average Rating

8.2

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Endpoint Compliance (5th), Anti-Malware Tools (11th), Application Control (5th), Ransomware Protection (6th)

WALLIX Bastion

Ranking in Privileged Access Management (PAM)

8th

Average Rating

7.4

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of June 2026, in the Privileged Access Management (PAM) category, the mindshare of Idira Endpoint Privilege Manager is 2.3%, down from 3.4% compared to the previous year. The mindshare of WALLIX Bastion is 3.8%, down from 8.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Privileged Access Management (PAM) Mindshare Distribution
Product	Mindshare (%)
CyberArk Endpoint Privilege Manager	2.3%
WALLIX Bastion	3.8%
Other	93.9%

Privileged Access Management (PAM)

Featured Reviews

Diego Rivera

Commercial and Technical Professional Manager at Evolution Technologies Group

Strengthening financial services infrastructure by safeguarding and integrating with ecosystems

We use CyberArk Endpoint Privilege Manager to complement a privilege access management solution in order to avoid golden ticket attacks and strengthen services against attacks. It serves as a complement to our asset management solution. The architecture of CyberArk Endpoint Privilege Manager is beneficial for integrating with all customer ecosystems; it's easy to deploy, and achieving that level of integration and control is more challenging with other solutions. The ability of CyberArk Endpoint Privilege Manager to safeguard our financial services infrastructure is very important, as we need to record actions on privileges in our information systems. Regarding the granularity of the managed controls in CyberArk Endpoint Privilege Manager, we have different levels of features to define compensations and capabilities, which help us verify configurations and access, ultimately keeping the safety of rights intact. Our initial challenge with CyberArk Endpoint Privilege Manager is to comply with Colombian regulations in the financial sector, particularly identifying users and managing password changes and rotations. We needed to certify the identities and provide necessary information for government investigations, if required. CyberArk Endpoint Privilege Manager is very important for helping our organization meet compliance and regulatory requirements. We have to comply with international regulations such as SOC, but also with local regulations unique to the financial sector, which is crucial for us due to the high risks involved. CyberArk Endpoint Privilege Manager helped us reduce the time for regulatory processes to approximately two to four months, completing the solution and training. CyberArk Endpoint Privilege Manager has helped us reduce the mean time to detect within our organization. That's our main goal. Regarding MTTD, the solution provides enough information to enhance our overall detection process. We have an 85% improvement in MTTD. CyberArk Endpoint Privilege Manager helps ensure data privacy through strategies that manage information in real-time. CyberArk Endpoint Privilege Manager helps save costs by avoiding risks and future expenses associated with security incidents. It's essential to communicate the value of CyberArk Endpoint Privilege Manager to users, as its controls help improve system security. My role at the company involves service and sales activities.

Read full review

René DRABO

Team Lead at a tech services company with 1,001-5,000 employees

Security has improved with monitored privileged sessions but the complex interface still needs work

I do not find WALLIX Bastion easy to use and ergonomic, but I have no clue about how much it costs. When I say it is not easy to use, I mean the interface is complex, but it might not be directly linked to the product; it might be linked to the way we implemented it in our context. The way we have to connect to a third Bastion and then launch another session bothers me. We also have some limitations, but I think this is linked to our context regarding how many times the session can stay open on the Windows session, which is not aligned with my needs. I am more of a promoter of other kinds of handling privileged access management with my use case, but it might not be linked to the tool; it is just because the implementation we made is not what I expect for my needs and it is not the way I want to work on my servers. In the past, I used the leader in PAM but cannot remember the name. I was more satisfied because the connection was more straightforward: I click on a button, make my authentication, and have my servers open, and this is the way I want it. The UI was the main reason why I thought the previous tool I was using was better.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The biggest benefit of CyberArk EPM for our customers is control over privileged access for endpoints. Endpoints are often the starting point for attackers to enter and move within a network. CyberArk EPM bridges the gap between security and operations teams. Operations teams are happy because work isn't stopped due to admin rights issues, while security teams are satisfied that full admin rights aren't given to all users."

"There are many valuable aspects of the product, but the most common feature is working with the privileges. The controls of CyberArk Endpoint Privilege Manager influence the visibility into endpoints for my customers. It allows them to granularly manage controls to prevent some malicious activities on the endpoint machine."

"The product is stable."

"The tool is an endpoint management system. It monitors everything a standard user does and helps elevate privileges when necessary for advanced users. It keeps an auditable trail of all activities. Practically, it stops and blocks potentially hazardous user behavior, whether intentional or unintentional. Certain companies must use endpoint management software because of national or international rules or ISO norms."

"The solution is pretty mature and can accommodate our use cases quite well."

"This is the number one product for privilege account security."

"The solution allows me to give access and privileges to each user individually"

"Product-wise we don't face that many issues, and basic integration of users and assigning them the rules and other stuff like that is, compared to other options, very straightforward."

More Idira Endpoint Privilege Manager pros

"WALLIX Bastion's most valuable feature is the Access Manager because you can use it and access the data center without any client VPN."

"I feel WALLIX is better because it's simple, seamless, and easy to integrate."

"The solution's technical support team is helpful."

"I like that it's Linux-based, and you don't need to have separate implementations, extra database licenses, or enterprise licenses. I think because it's Linux-based, it's more seamless than Windows. I also like the access manager, which I think is a super tool. Everything is browser-based, and you don't need a VPN. So, that's a great thing."

"The most valuable feature of WALLIX Bastion is its password management capability, which is central to safeguarding sensitive information."

"We use WALLIX Bastion to provide access and to monitor sessions."

"WALLIX Bastion is a security tool that protects us, and I think we are protected with this tool."

"The interface is very simple. It doesn't need any plug-ins, just browsers that are installed at the beginning."

More WALLIX Bastion pros

Cons

"The CyberArk team is working on a feature to identify devices without the Endpoint Privilege Manager running, which is currently missing."

"The price of the product is an area of concern where improvements are required. The product's price should be made more flexible."

"The product's threat protection and defense capabilities need enhancement."

"My recommendation for improvement is to add functionality for when users request access to an application. There's a pop-up UI, but it's not very customizable. I suggest creating a UI where we can write scripts or use SDKs to enhance it. This could automatically create tickets in a system like ServiceNow when users request an application. If a manager approves, we could automatically push policies to those users."

"It is hard to deal with technical support if you are not certified."

"The price of the solution should improve."

"The solution's pricing could be better."

"CyberArk is a pretty heavy solution. There are a lot of moving components and a lot of things involved."

More Idira Endpoint Privilege Manager cons

"Also, the biggest disadvantage of WALLIX is the reporting or behavioral analysis limited. I feel like it's very weak in reporting when compared to the other solutions."

"The main problem of Bastion, CyberArk, and WALLIX is that they have the same interface for both administration and users, which is not a good idea from a security perspective."

"The password management needs improvement. Management of Access Manager should be improved as well."

"WALLIX Bastion is GUI-driven, but it sometimes needs some management."

"The performance of WALLIX Bastion's password manager is very low."

"The product doesn't have behavior analytics."

"There could be more automation features for the solution."

"The product doesn't have behavior analytics. They promised to develop this, but only for the cloud, not for on-premise versions."

More WALLIX Bastion cons

Pricing and Cost Advice

"licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record."

"The price of CyberArk Endpoint Privilege Manager is expensive."

"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."

"The professional services for one eight-hour day would be $1,800."

"Pricing depends on how many devices you use. Right now, on-premise, it costs us a little, but it's worth it. It seems like the cloud solution is much more expensive. We got this solution one year ago, and it's like we bought the solution, and now they are not going to support it on-premise anymore. We are in the implementation phase, and we missed this, and we already paid for the licenses. This is wasted time from my perspective, and CyberArk should be more customer-friendly."

"We pay about $17 per user."

"The solution requires an annual license to use it. There can be some extra costs in some cases."

"The tool is priced high. I would rate its pricing an eight out of ten."

More Idira Endpoint Privilege Manager pricing and cost advice

"Some extra price needs to be paid for license."

"The solution's price is mid-ranged."

"The solution's pricing is comparable to that of other products."

See which vendors are best for you

Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.

See recommendations

896,803 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

14%

Manufacturing Company

11%

Computer Software Company

Government

Computer Software Company

12%

Financial Services Firm

11%

Comms Service Provider

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	18
Midsize Enterprise	9
Large Enterprise	19

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	1
Large Enterprise	5

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats

This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...

See all answers

What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?

I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...

See all answers

What needs improvement with CyberArk Endpoint Privilege Manager?

While CyberArk Endpoint Privilege Manager is a great tool, I believe the functionality could be wider. If it could work not only with permissions but also involve pure EDR tasks or User and Entity ...

See all answers

What is your experience regarding pricing and costs for WALLIX Bastion?

The price of WALLIX Bastion is rated five out of ten, positioning it in the middle. The cost is justified by the features and capabilities we receive.

See all answers

What needs improvement with WALLIX Bastion?

See all answers

What is your primary use case for WALLIX Bastion?

The major use cases for WALLIX Bastion are general privileged access management, such as connecting to a server or securing SSH.

See all answers

Comparisons

BeyondTrust Endpoint Privilege Management vs Idira Endpoint Privilege Manager

Compared 7% of the time

Idira Privileged Access Manager vs Idira Endpoint Privilege Manager

Compared 6% of the time

Microsoft Defender for Endpoint vs Idira Endpoint Privilege Manager

Compared 5% of the time

Ivanti Endpoint Security for Endpoint Manager vs Idira Endpoint Privilege Manager

Compared 5% of the time

CrowdStrike Falcon vs Idira Endpoint Privilege Manager

Compared 4% of the time

More Idira Endpoint Privilege Manager Competitors

Idira Privileged Access Manager vs WALLIX Bastion

Compared 14% of the time

Teleport vs WALLIX Bastion

Compared 8% of the time

BeyondTrust Privileged Remote Access vs WALLIX Bastion

Compared 7% of the time

Fudo PAM vs WALLIX Bastion

Compared 6% of the time

BeyondTrust Endpoint Privilege Management vs WALLIX Bastion

Compared 6% of the time

More WALLIX Bastion Competitors

Product Reports

Buyer's Guide

Idira Endpoint Privilege Manager

May 2026

Download Idira Endpoint Privilege Manager product report

Buyer's Guide

WALLIX Bastion

May 2026

Download WALLIX Bastion product report

Also Known As

Viewfinity

Bastion

Overview

CyberArk Endpoint Privilege Manager enhances security by controlling access, removing admin rights, and managing privileges. It supports diverse environments with simple integration, focusing on credential detection, threat protection, and compliance.

CyberArk Endpoint Privilege Manager secures enterprise passwords, monitors session connections, and enhances cybersecurity by controlling privileged access. It blocks unauthorized applications, monitors user activities, and secures credentials across platforms. Key areas include Just-In-Time Access, privilege separation, and local administrator password rotation. While robust, challenges exist with performance, complexity, and setup. Integration with Linux and Unix needs improvement, requiring advanced reporting tools and easier policy management. Pricing concerns and maintenance issues with Windows servers persist, as well as database issues in the on-prem version.

What are the key features of CyberArk Endpoint Privilege Manager?

Admin Rights Removal: Eliminates unnecessary permissions to enhance security.
Privilege Management: Offers detailed control over user access rights.
Password Rotation: Automatically updates passwords to protect sensitive data.
Threat Protection: Blocks malicious applications and threats proactively.
Audit Capabilities: Provides comprehensive security and compliance tracking.
Application Control: Confines access to authorized applications only.
Automatic Updates: Ensures security protocols and software remain current.

What benefits should organizations expect from CyberArk Endpoint Privilege Manager?

Enhanced Security: Reduces risks by controlling credential and application access.
Compliance Assurance: Meets industry standards through thorough tracking and reporting.
Scalable Integration: Adapts to different environments smoothly.
Reduced Management Efforts: Automates credential and policy management.

Organizations deploying CyberArk Endpoint Privilege Manager in industries such as finance, healthcare, and technology benefit from secure credential management across Unix, AWS, and GCP. By implementing privilege separation and monitoring user activities, they achieve effective risk mitigation and compliance across multiple platforms.

Idira by Palo Alto Networks

WALLIX Bastion is a Linux-based solution designed for password management, access control, and session monitoring. Its browser-based access minimizes VPN needs while supporting third-party access, focusing on compliance and security.

WALLIX Bastion offers comprehensive security features like password rotation and session recording. It ensures secure connections and limits public port exposure, integrating seamlessly with other systems. Although the interface requires simplification, it provides intelligent privilege control and supports secure external vendor connections.

What are the most noteworthy features of WALLIX Bastion?

Password Management: Automatically rotates and secures access credentials.
Access Manager: Offers control and visibility over privileged accounts.
Seamless Integration: Easily aligns with existing IT infrastructure.
Session Management: Records and monitors user activity.
Browser-based Access: Eliminates the need for VPNs with secure web access.

What benefits and ROI should users consider?

Enhanced Security: Prevents unauthorized access and data breaches.
Compliance Assurance: Meets industry regulations for data protection.
Efficient Access Control: Streamlines management of multiple accounts.
Cost-Effectiveness: Reduces operational costs with optimized resource use.
User-Friendly Interface: Simplifies privileged access management.

In medical industries, WALLIX Bastion aids in maintaining HIPAA compliance by monitoring sessions, offering secure remote access management crucial for international companies auditing CLI commands. It supports Active Directory security training, benefiting enterprises managing sensitive data and application access.

WALLIX

Sample Customers

Information Not Available

RTBF, Pharmagest, Michelin Group, Niort Hospital

Buyer's Guide

Idira Endpoint Privilege Manager vs. WALLIX Bastion

April 2026

Free Report: Idira Endpoint Privilege Manager vs. WALLIX Bastion

Find out what your peers are saying about Idira Endpoint Privilege Manager vs. WALLIX Bastion and other solutions. Updated: April 2026.

DOWNLOAD NOW

896,803 professionals have used our research since 2012.

See our Idira Endpoint Privilege Manager vs. WALLIX Bastion report.

See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.