CyberArk Endpoint Privilege Manager vs WALLIX Bastion comparison

CyberArk and WALLIX are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #4 with an average rating of 8.8, while WALLIX is ranked #6 with an average rating of 7.2. CyberArk holds a 2.6% mindshare in PAM, compared to WALLIX’s 5.1% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 85% of WALLIX users who would recommend it.

CyberArk Endpoint Privilege...

Read 38 CyberArk Endpoint Privilege Manager reviews

3,967 Views
1,190 Comparison Views

86% willing to recommend

WALLIX Bastion

Read 12 WALLIX Bastion reviews

2,776 Views
2,720 Comparison Views

85% willing to recommend

CyberArk Endpoint Privilege...

WALLIX Bastion

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and WALLIX Bastion are competitors in the endpoint and access management category. Based on user reviews, WALLIX Bastion has the upper hand in terms of features, while CyberArk excels in customer support and pricing, making it ideal for cost-conscious buyers.

Features: CyberArk offers granular policy management, ease of integration with existing systems, and a straightforward setup process. WALLIX Bastion is recognized for comprehensive session management, scalability, and its capability for large-scale deployments.

Room for Improvement: CyberArk users desire an improved reporting mechanism, better analytics, and enhanced documentation. WALLIX users seek more robust operational documentation, better onboarding processes, and improved user guides.

Ease of Deployment and Customer Service: CyberArk is noted for its seamless deployment and responsive support. WALLIX requires more time to deploy, but its advanced features justify this complexity. Both products offer distinct strengths in setup ease and support quality.

Pricing and ROI: CyberArk provides competitive pricing with a quicker ROI, appealing to budget-sensitive users. WALLIX involves a higher initial investment but offers valuable returns over time due to its robust features.

To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. WALLIX Bastion Report (Updated: December 2025).

Buyer's Guide

CyberArk Endpoint Privilege Manager vs. WALLIX Bastion

December 2025

Download the complete report

Helped 879,477 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

CyberArk Endpoint Privilege...

Ranking in Privileged Access Management (PAM)

4th

Average Rating

8.2

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Endpoint Compliance (4th), Anti-Malware Tools (5th), Application Control (3rd), Ransomware Protection (5th)

WALLIX Bastion

Ranking in Privileged Access Management (PAM)

6th

Average Rating

7.6

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of January 2026, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 2.6%, down from 3.6% compared to the previous year. The mindshare of WALLIX Bastion is 5.1%, down from 8.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Privileged Access Management (PAM) Market Share Distribution
Product	Market Share (%)
CyberArk Endpoint Privilege Manager	2.6%
WALLIX Bastion	5.1%
Other	92.3%

Privileged Access Management (PAM)

Featured Reviews

Sumit Chavan

Lead Consultant at a tech vendor with 501-1,000 employees

Helps secure the infrastructure and control users with admin rights

There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.

Read full review

Abdulaziz Alghamdi

System Engineer at Saudia technic

Password management secures sessions but auditing features need enhancement

The most valuable feature of WALLIX Bastion is its password management capability, which is central to safeguarding sensitive information. The password rotation feature changes passwords after eight sessions, thus protecting both our sessions and assets. Additionally, the workflow feature is unique to WALLIX solutions, enhancing our access security. It is the only solution we found with this feature, making it a distinct choice for our needs.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It has drastically reduced the attack surface for local administrative rights and the chance of escalation of privilege. We've removed, at this point, close to 98 percent of the local administrative accounts on workstations. If there were an incident, it would stop at that point and we'd be able to know."

"We were able to reduce the number of privileged accounts by 50%, which helped to simplify our privileged access management environment."

"The most valuable feature of CyberArk Endpoint Privilege Manager is its scalability."

"The most valuable features of CyberArk Endpoint Privilege Manager are password management, session management, onboarding rules, platform customization, and safety management."

"I like that you can remove the admin rights from the user's computer and have control over the environment. That means you can delete the local admins and grant them proper privileges with the console. So, they will get proper permissions for applications they need, but we don't have to do it. In the domain where we don't have control, the user can only do specified actions, but not all of them."

"The feature called PTA, which stands for Privileged Threat Analytics keeps track of what admins are doing and works with Centimeters. If something fishy is going on with a user's credentials, it alerts the security team so they can act fast. Plus, it automates stuff like resetting credentials or blocking users. So, if there's a potential hack, CyberArk can change passwords and lock out users in a snap. It also gives you a heads-up if anything unusual is going on with server activities, like someone creating new users with uncontrolled credentials."

"CyberArk Endpoint Privilege Manager (EPM) 's most valuable feature is its ability to manage user application privileges and protect against ransomware attacks by controlling access to specific files and applications."

"We have not had issues with CyberArk. It works very smoothly. We can do many things with CyberArk. It helps us to see exactly what is happening."

More CyberArk Endpoint Privilege Manager pros

"The most valuable feature of WALLIX Bastion is its password management capability, which is central to safeguarding sensitive information."

"The interface is very simple. It doesn't need any plug-ins, just browsers that are installed at the beginning."

"I like that it's Linux-based, and you don't need to have separate implementations, extra database licenses, or enterprise licenses. I think because it's Linux-based, it's more seamless than Windows. I also like the access manager, which I think is a super tool. Everything is browser-based, and you don't need a VPN. So, that's a great thing."

"The setup process was simple, and the solution can be implemented within less than one day."

"The support is great. They offer 24/7 support, but the specific level of support depends on your subscription. There's a weekday-only option, and a 24/7 option that covers all days of the week. They also have offices in different regions, including West Africa, so people there can easily get support. There's no need to worry about getting assistance."

"Bastion provides a kind of isolation between the administration laptop and the server you want to administer."

"Its video recording capabilities have definitely been key for us."

"We use WALLIX Bastion to provide access and to monitor sessions."

More WALLIX Bastion pros

Cons

"It's an old product and has many areas that can be improved."

"While CyberArk Endpoint Privilege Manager is a great tool, I believe the functionality could be wider. If it could work not only with permissions but also involve pure EDR tasks or User and Entity Behavior Analytics, it would be great."

"We have had some major issues with the tool, but we have worked with the R&D teams and we have worked with support. There is room for improvement, especially on response times. But they're working on it and they're doing the best they can."

"My recommendation for improvement is to add functionality for when users request access to an application. There's a pop-up UI, but it's not very customizable. I suggest creating a UI where we can write scripts or use SDKs to enhance it. This could automatically create tickets in a system like ServiceNow when users request an application. If a manager approves, we could automatically push policies to those users."

"CyberArk should consider whitelisting important applications like PowerShell and DLL that are currently not allowed due to some malicious content."

"The product is expensive."

"CyberArk Endpoint Privilege Manager can improve its Identity Governance, which is already working effectively yet could continue to enhance its capabilities."

"Another enhancement needed is the scheduling of deployment, which I expect in future releases."

More CyberArk Endpoint Privilege Manager cons

"Reporting requires improvement; it is basic, allowing only CSV file extraction with no analytics features."

"The performance of WALLIX Bastion's password manager is very low."

"For me, the main issue has to do with the system performance itself."

"There could be more automation features for the solution."

"It would be better if I could manage multiple accounts in one place, like CyberArk. With WALLIX, you can only manage one account, and you are given a separate category. You have to click on each connection to do anything. For example, CyberArk might give three options for one connection if you want to have an interactive user-level experience. But with WALLIX, you have to click three times to get that access. Also, the biggest disadvantage of WALLIX is the reporting. I feel like it's very weak in reporting when compared to the other solutions. As a solution, they're good and stable. But they need to make their reports neater and better. Right now, we're going to the console and then pressing buttons every single time."

"The product doesn't have behavior analytics. They promised to develop this, but only for the cloud, not for on-premise versions."

"The scalability of WALLIX Bastion is rated seven out of ten. While it meets our current needs, scaling up the solution is not as easy, and improvements could be made in this area."

"Based on my experience as a sales tech person, one area of improvement could be a more unified licensing model."

More WALLIX Bastion cons

Pricing and Cost Advice

"The tool's pricing is reasonable for customers."

"The tool is a bit pricey compared to its competitors. My company does work with competitors, but I don't have hands-on experience with other software. I've just done some comparisons."

"I rate the solution's pricing an eight out of ten since the price can be too high for smaller businesses."

"The product's license is easy to procure."

"The cost for CyberArk is very high."

"Pricing depends on how many devices you use. Right now, on-premise, it costs us a little, but it's worth it. It seems like the cloud solution is much more expensive. We got this solution one year ago, and it's like we bought the solution, and now they are not going to support it on-premise anymore. We are in the implementation phase, and we missed this, and we already paid for the licenses. This is wasted time from my perspective, and CyberArk should be more customer-friendly."

"I think that it was in the range of $200,000 that had to get approved."

"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."

More CyberArk Endpoint Privilege Manager pricing and cost advice

"The solution's pricing is comparable to that of other products."

"The solution's price is mid-ranged."

"Some extra price needs to be paid for license."

See which vendors are best for you

Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.

See recommendations

879,477 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

14%

Manufacturing Company

11%

Computer Software Company

11%

Government

Computer Software Company

15%

Government

10%

Financial Services Firm

10%

Comms Service Provider

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	17
Midsize Enterprise	9
Large Enterprise	18

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	1
Large Enterprise	4

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats

This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...

See all answers

What do you like most about CyberArk Endpoint Privilege Manager?

The most valuable feature of the solution is its performance.

See all answers

What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?

I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...

See all answers

What do you like most about WALLIX Bastion?

The support is great. They offer 24/7 support, but the specific level of support depends on your subscription. There's a weekday-only option, and a 24/7 option that covers all days of the week. The...

See all answers

What is your experience regarding pricing and costs for WALLIX Bastion?

The price of WALLIX Bastion is rated five out of ten, positioning it in the middle. The cost is justified by the features and capabilities we receive.

See all answers

What needs improvement with WALLIX Bastion?

The auditing and reporting features of WALLIX Bastion could be improved. Customizable reports could be introduced to generate dynamic reports based on our requirements. Adding flowcharts for the re...

See all answers

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager

Compared 12% of the time

BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager

Compared 10% of the time

CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager

Compared 9% of the time

Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager

Compared 9% of the time

ManageEngine PAM360 vs CyberArk Endpoint Privilege Manager

Compared 3% of the time

More CyberArk Endpoint Privilege Manager Competitors

CyberArk Privileged Access Manager vs WALLIX Bastion

Compared 26% of the time

Teleport vs WALLIX Bastion

Compared 7% of the time

Fudo PAM vs WALLIX Bastion

Compared 7% of the time

One Identity Safeguard vs WALLIX Bastion

Compared 6% of the time

KeeperPAM vs WALLIX Bastion

Compared 3% of the time

More WALLIX Bastion Competitors

Product Reports

Buyer's Guide

CyberArk Endpoint Privilege Manager

January 2026

CyberArk Endpoint Privilege Manager report

Download CyberArk Endpoint Privilege Manager product report

Buyer's Guide

WALLIX Bastion

December 2025

Download WALLIX Bastion product report

Also Known As

Viewfinity

Bastion

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

WALLIX offers cybersecurity and privileged access management solutions that secure and protect your most critical IT assets.

WALLIX

Sample Customers

Information Not Available

RTBF, Pharmagest, Michelin Group, Niort Hospital

Buyer's Guide

CyberArk Endpoint Privilege Manager vs. WALLIX Bastion

December 2025

Free Report: CyberArk Endpoint Privilege Manager vs. WALLIX Bastion

Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. WALLIX Bastion and other solutions. Updated: December 2025.

DOWNLOAD NOW

879,477 professionals have used our research since 2012.

See our CyberArk Endpoint Privilege Manager vs. WALLIX Bastion report.

See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.