Try our new research platform with insights from 80,000+ expert users

IBM Security Verify Access vs Symantec Siteminder comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Aug 11, 2024
 

Categories and Ranking

IBM Security Verify Access
Ranking in Single Sign-On (SSO)
14th
Ranking in Access Management
12th
Average Rating
7.8
Number of Reviews
7
Ranking in other categories
Identity Management (IM) (24th), Identity and Access Management as a Service (IDaaS) (IAMaaS) (15th)
Symantec Siteminder
Ranking in Single Sign-On (SSO)
11th
Ranking in Access Management
11th
Average Rating
8.0
Number of Reviews
72
Ranking in other categories
Web Access Management (1st)
 

Featured Reviews

Jared Ochieng - PeerSpot reviewer
Mar 13, 2024
Offers multiple authentication methods like tokens and one-time passwords
The authentication process with IBM Security Verify Access is good and is considered one of the best identity and access management solutions. It helps with multi-factor authentication. It offers multiple authentication methods like tokens and one-time passwords, enhancing security. It also includes features like password vaults and single sign-on, streamlining the access process for remote and local users across different solutions. The tool provides a password vault, single sign-on, and multifactor authentication. It offers various authentication methods like fingerprint integration, one-time passwords, or tokens sent via email or SMS. This ensures secure access to your accounts by providing multiple authentication options. The policy control feature allows you to set authentication measures and policies for your organization's identity governance. This feature helps create standardized policies and organize them into groups based on departments or specific needs. It simplifies access management for both administrators and users. IBM Security Verify Access can be integrated with almost any solution using APIs. The time required for integration depends on whether the solution is out of the box or custom. Out-of-the-box solutions can be integrated quickly, typically within a few days or hours, while custom solutions may require additional steps and take longer to integrate.
Siva Chalamarla - PeerSpot reviewer
Jul 5, 2024
Good access control and SSO but needs modernization
The access control and the SSO are the two most valuable features. Siteminder allows users to authenticate once and gain access to multiple applications without needing to reauthenticate for each application separately. For example, if you access one application in one tab, you do not need to provide it again if you are trying to access the same application. The portal has different applications built into it. It's similar to Google. If you open Google and try to access the maps in that Google, you do not need to authenticate in maps. You just need to authenticate in the starting phase. Only a particular group of people have access. Our guys will give an error called access denied or unauthorized access. It depends on the application. It is pretty easy to learn.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I have found this solution to be really practical and when a user wants to log in, it is effortless and runs smooth."
"From the integration point of view, it supports SAML, OIDC, and OAuth. For legacy applications that don't have support for SAML and other new protocols, it provides single sign-on access to end-users. From the integration compatibility point of view, it is highly capable."
"The tool provides a password vault, single sign-on, and multifactor authentication. It offers various authentication methods like fingerprint integration, one-time passwords, or tokens sent via email or SMS. This ensures secure access to your accounts by providing multiple authentication options."
"Its stability and UI are most valuable."
"It's a good solution for identification and access management."
"The solution has powerful authentification and authorization. It offers a good way to increase security."
"The most valuable feature of IBM Security Access Manager, at least for my company, is multi-factor authentication. That's the only feature my company is using. The solution works well and has no glitches. IBM Security Access Manager is a very good solution, so my company is still using it."
"The most valuable feature is the Federation part of Single Sign On, which is customizable and is easily integrated with any customer application or any third party application."
"Authentication & Authorization are important because all the sites need authentication for security purposes. That has been handled pretty well all these years with SSO."
"Federation is valuable, for sure, because we have a lot of third-party vendors that we need to integrate with, and this is a turnkey solution in some ways."
"A valuable feature of Siteminder is the way it handles bulk traffic. The features it has, in terms of routing the traffic and load balancing, are good."
"We almost never have outages nor see slowdowns."
"Right now, federation that comes out-of-the-box with single sign-on is the most valuable feature that we have, and also scalability."
"The solution has features that allow you to easily distinguish between protected and unprotected resources."
"It has considerably reduced the amount of time that new users would take to join into the organization. Previously, it was a lengthy, manual process because it's a very secure environment, where they need to verify the user before they can actually grant him a user-ID and password. Integrating with the built-in custom application, and exposing CA Single Sign On to the internet, we were able to get the employees onboard. The time that we gained was: previously it would generally take from four to eight weeks for each employee, we brought it to one to two days."
 

Cons

"What we'd like improved in IBM Security Access Manager is its onboarding process as it's complex, particularly when onboarding new applications. We need to be very, very careful during the onboarding. We have no issues with IBM Security Access Manager because the solution works fine, apart from the onboarding process and IBM's involvement in onboarding issues. If we need support related to the onboarding, we've noticed a pattern where support isn't available, or they don't have much experience, or we're not getting a response from them. We're facing the same issue with IBM Guardium. As we're just focusing on the multi-factor authentication feature of IBM Security Access Manager and we didn't explore any other features, we don't have additional features to suggest for the next release of the solution, but we're in discussion about exploring ID management and access management features, but those are just possibilities because right now, we're focused on exploring our domain."
"The user interface for users and administrators could be improved to make it easier. Automating some functions could also be beneficial."
"The solution could be classified as a hilt system. There are a lot of resources being used and it is suitable for very large enterprises or the public sector."
"Configuration could be simplified for the end-user."
"They can improve the single sign-on configuration for OIDC and OAuth. That is not very mature in this product, and they can improve it in this particular area. OIDC is a third-party integration that we do with the cloud platforms, and OAuth is an authorization mechanism for allowing a user having an account with Google or any other provider to access an application. Organizations these days are looking for just-in-time provisioning use cases, but IBM Security Access Manager is not very mature for such use cases. There are only a few applications that can be integrated, and this is where this product is lagging. However, in terms of configuration and single sign-on mechanisms, it is a great product."
"The user interface needs to be simplified, it's complex and not user-friendly."
"There are a lot of areas that can be improved, but the main area is the lack of customization. You cannot easily customize anything in the product. It is not easy to tweak the functionality. It is challenging to change the out-of-the-box functionality."
"They need to make configurations easier, and not have the engineer having to guess what will happen when he changes a particular setting."
"I would like to see a move towards the newer technologies, which is what we are doing right now. I think that's in the roadmap that's coming, in the 12.8 and 14 releases, but we would like to have it sooner than later."
"All the problems that we reported actually have never been resolved. We could not capture enough information for CA to be able to debug the problem."
"Some of the new protocols, like OAuth 2.0, could be improved."
"Symantec SiteMinder is not easy to set up and maintain at an infrastructure level."
"As we are moving in to the mobility space, this is where we really see SiteMinder and their other product really come together to provide a solution base to a different area where the IoT is coming, the different business communications are happening. All of those things require authentication and we really want to see this product grow into that role."
"In future releases, I would like to see maybe more capabilities with some more modern authentication."
"We're currently unable to find information about if the solution can do a full implementation with SQL. Some better and more accessible documentation for new users or those curious about the product would be helpful."
 

Pricing and Cost Advice

"It costs about 300K AED for a year. Its pricing is a bit on the higher end, but in comparison to other products in the market, its price is still better. There are lots of other products that are very costly."
"The license and costs depend on the amount range of users you have. For just approximately 2,000 users, the price is practical and fair. However, when you have 20,000 users, it starts to become really expensive, and the discount per user is not attractive enough to go ahead and purchase."
"The product is not expensive. It depends on the number of users."
"The price is quite comparable to the other enterprise-level solutions in that market."
"The licensing is fair for this solution."
"CA solutions are generally expensive but for the customer the ROI is big."
"I recommend conducting a PoC on every available product before choose one."
"Symantec Siteminder is expensive; they could definitely do better on the price."
"Siteminder is a little costly. You pay for licensing, and they offer packages, so if you have less users, then you have to buy different products at different prices. If you have more of a user base, then the package is different. They also include other features—for example, if you have a database and you're using Siteminder, then it's good to use a Semantic-specific database, but if you are using less, then you have to purchase the database separately. Whereas if you are going for a bigger license, then it comes within the package. It depends on which plan you are using."
"The solution's pricing is competitive."
"The pricing is reasonable."
report
Use our free recommendation engine to learn which Single Sign-On (SSO) solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
24%
Insurance Company
18%
Computer Software Company
9%
Government
8%
Financial Services Firm
34%
Insurance Company
11%
Manufacturing Company
8%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about IBM Security Access Manager?
The tool provides a password vault, single sign-on, and multifactor authentication. It offers various authentication methods like fingerprint integration, one-time passwords, or tokens sent via ema...
What needs improvement with IBM Security Access Manager?
The user interface for users and administrators could be improved to make it easier. Automating some functions could also be beneficial.
What do you like most about Symantec Siteminder?
It's agent-based. It's convenient to deploy and integrate.
What is your experience regarding pricing and costs for Symantec Siteminder?
After Broadcom's acquisition of Symantec, the pricing model for Symantec SiteMinder (now CA Single Sign-On) shifted significantly. The traditional perpetual licensing model transitioned to a subscr...
What needs improvement with Symantec Siteminder?
The support team could work on their response time and overall competence.
 

Also Known As

IBM Security Verify Access (SVA), IBM Security Access Manager, ISAM
Single Sign-On, SiteMinder, CA SSO, Layer7 SiteMinder
 

Learn More

Video not available
 

Overview

 

Sample Customers

POST Luxembourg
British Telecom, CoreBlox, DBS, HMS, Itera ASA and Simeo
Find out what your peers are saying about IBM Security Verify Access vs. Symantec Siteminder and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.