No more typing reviews! Try our Samantha, our new voice AI agent.

Idira Endpoint Privilege Manager vs WALLIX Bastion comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 2, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Idira Endpoint Privilege Ma...
Ranking in Privileged Access Management (PAM)
6th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (4th), Anti-Malware Tools (10th), Application Control (5th), Ransomware Protection (6th)
WALLIX Bastion
Ranking in Privileged Access Management (PAM)
10th
Average Rating
7.4
Reviews Sentiment
6.7
Number of Reviews
13
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Privileged Access Management (PAM) category, the mindshare of Idira Endpoint Privilege Manager is 2.4%, down from 3.3% compared to the previous year. The mindshare of WALLIX Bastion is 3.7%, down from 8.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM) Mindshare Distribution
ProductMindshare (%)
Idira Endpoint Privilege Manager2.4%
WALLIX Bastion3.7%
Other93.9%
Privileged Access Management (PAM)
 

Featured Reviews

Sumit Chavan - PeerSpot reviewer
Lead Consultant at a tech vendor with 501-1,000 employees
Helps secure the infrastructure and control users with admin rights
There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.
René DRABO - PeerSpot reviewer
Team Lead at a tech services company with 1,001-5,000 employees
Security has improved with monitored privileged sessions but the complex interface still needs work
I do not find WALLIX Bastion easy to use and ergonomic, but I have no clue about how much it costs. When I say it is not easy to use, I mean the interface is complex, but it might not be directly linked to the product; it might be linked to the way we implemented it in our context. The way we have to connect to a third Bastion and then launch another session bothers me. We also have some limitations, but I think this is linked to our context regarding how many times the session can stay open on the Windows session, which is not aligned with my needs. I am more of a promoter of other kinds of handling privileged access management with my use case, but it might not be linked to the tool; it is just because the implementation we made is not what I expect for my needs and it is not the way I want to work on my servers. In the past, I used the leader in PAM but cannot remember the name. I was more satisfied because the connection was more straightforward: I click on a button, make my authentication, and have my servers open, and this is the way I want it. The UI was the main reason why I thought the previous tool I was using was better.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It allows whitelisting."
"The most valuable feature is that their database is completely encrypted and protected with multiple layers."
"The most valuable features of CyberArk Endpoint Privilege Manager are password management, session management, onboarding rules, platform customization, and safety management."
"I like that you can remove the admin rights from the user's computer and have control over the environment. That means you can delete the local admins and grant them proper privileges with the console. So, they will get proper permissions for applications they need, but we don't have to do it. In the domain where we don't have control, the user can only do specified actions, but not all of them."
"CyberArk Endpoint Privilege Manager has significantly improved our security posture by preventing virus incidents and restricting users from downloading unwanted applications."
"The most valuable feature of CyberArk Endpoint Privilege Manager is its high performance, it's the best identity security platform. The security is good. It's easy to showcase the feature and capabilities and compare it with other competitors. It competes well with other solutions. Additionally, it is a complete solution."
"This is the number one product for privilege account security."
"Their customer support was excellent."
"The support is great. They offer 24/7 support, but the specific level of support depends on your subscription. There's a weekday-only option, and a 24/7 option that covers all days of the week. They also have offices in different regions, including West Africa, so people there can easily get support. There's no need to worry about getting assistance."
"I feel WALLIX is better because it's simple, seamless, and easy to integrate."
"The setup process was simple, and the solution can be implemented within less than one day."
"I like that it's Linux-based, and you don't need to have separate implementations, extra database licenses, or enterprise licenses. I think because it's Linux-based, it's more seamless than Windows. I also like the access manager, which I think is a super tool. Everything is browser-based, and you don't need a VPN. So, that's a great thing."
"The most valuable feature of WALLIX Bastion is its password management capability, which is central to safeguarding sensitive information."
"Technical support is very good; they have their own ticket system that is available for all customers and their system is already in different languages, for example, English, French, and, for us, Russian."
"We have seen a lot of improvement, especially in regard to our forensic investigations."
"Bastion provides a kind of isolation between the administration laptop and the server you want to administer."
 

Cons

"If you do not have certification, you cannot send a ticket; this makes dealing with technical support difficult."
"The management of Privilege Access is not satisfactory."
"The product needs a streamlined user interface; improvements to the user interface can enhance user experience and make the solution more intuitive to navigate."
"The solution can be complex to use at times."
"CyberArk meets clients' need very spot-on. It covers everything customers ask for. As for improvements, honestly, the feedback's been really positive. I haven't heard any specific areas that need work."
"CyberArk has some performance issues. For example, servers could not handle the solution when we first took CyberArk Endpoint Privilege Manager."
"We have had some major issues with the tool, but we have worked with the R&D teams and we have worked with support. There is room for improvement, especially on response times. But they're working on it and they're doing the best they can."
"One area that has room for improvement is in managing the credentials for network devices."
"It would be better if I could manage multiple accounts in one place, like CyberArk. With WALLIX, you can only manage one account, and you are given a separate category. You have to click on each connection to do anything. For example, CyberArk might give three options for one connection if you want to have an interactive user-level experience. But with WALLIX, you have to click three times to get that access. Also, the biggest disadvantage of WALLIX is the reporting. I feel like it's very weak in reporting when compared to the other solutions. As a solution, they're good and stable. But they need to make their reports neater and better. Right now, we're going to the console and then pressing buttons every single time."
"Also, the biggest disadvantage of WALLIX is the reporting or behavioral analysis limited. I feel like it's very weak in reporting when compared to the other solutions."
"The scalability of WALLIX Bastion is rated seven out of ten. While it meets our current needs, scaling up the solution is not as easy, and improvements could be made in this area."
"The product doesn't have behavior analytics. They promised to develop this, but only for the cloud, not for on-premise versions."
"The main problem of Bastion, CyberArk, and WALLIX is that they have the same interface for both administration and users, which is not a good idea from a security perspective."
"The password management needs improvement. Management of Access Manager should be improved as well."
"Deploying Bastion isn't as straightforward."
"I do not find WALLIX Bastion easy to use and ergonomic."
 

Pricing and Cost Advice

"I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing to pay this money."
"I feel that the price of the product is nominal. It must be around 10 to 15 USD per installation. I rate the product price an eight to nine out of ten, where one is high price, and ten is low price."
"The solution's pricing is reasonable compared to other vendors' products."
"The tool's pricing is reasonable for customers."
"The professional services for one eight-hour day would be $1,800."
"Pricing depends on how many devices you use. Right now, on-premise, it costs us a little, but it's worth it. It seems like the cloud solution is much more expensive. We got this solution one year ago, and it's like we bought the solution, and now they are not going to support it on-premise anymore. We are in the implementation phase, and we missed this, and we already paid for the licenses. This is wasted time from my perspective, and CyberArk should be more customer-friendly."
"The tool is a bit pricey compared to its competitors. My company does work with competitors, but I don't have hands-on experience with other software. I've just done some comparisons."
"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."
"The solution's pricing is comparable to that of other products."
"The solution's price is mid-ranged."
"Some extra price needs to be paid for license."
report
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
904,146 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Manufacturing Company
12%
Construction Company
7%
Computer Software Company
6%
Financial Services Firm
12%
Computer Software Company
10%
Comms Service Provider
10%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business18
Midsize Enterprise9
Large Enterprise19
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise1
Large Enterprise5
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...
What needs improvement with CyberArk Endpoint Privilege Manager?
While CyberArk Endpoint Privilege Manager is a great tool, I believe the functionality could be wider. If it could work not only with permissions but also involve pure EDR tasks or User and Entity ...
What is your experience regarding pricing and costs for WALLIX Bastion?
The price of WALLIX Bastion is rated five out of ten, positioning it in the middle. The cost is justified by the features and capabilities we receive.
What needs improvement with WALLIX Bastion?
I do not find WALLIX Bastion easy to use and ergonomic, but I have no clue about how much it costs. When I say it is not easy to use, I mean the interface is complex, but it might not be directly l...
What is your primary use case for WALLIX Bastion?
The major use cases for WALLIX Bastion are general privileged access management, such as connecting to a server or securing SSH.
 

Also Known As

Viewfinity
Bastion
 

Overview

 

Sample Customers

Information Not Available
RTBF, Pharmagest, Michelin Group, Niort Hospital
Find out what your peers are saying about Idira Endpoint Privilege Manager vs. WALLIX Bastion and other solutions. Updated: June 2026.
904,146 professionals have used our research since 2012.