Try our new research platform with insights from 80,000+ expert users
CyberArk Privileged Access Manager Logo

CyberArk Privileged Access Manager pros and cons

Vendor: CyberArk
4.3 out of 5
Badge Ranked 1
4,102 followers
Post review

Pros & Cons summary

CyberArk Privileged Access Manager enhances cybersecurity by automating password management and session monitoring, simplifying compliance. Its flexible deployment supports custom security strategies, tailored features, and seamless IT integration. Despite its scalability and thousands-account capacity, initial setup demands planning, and integration with third-party applications requires extra effort. Technical support needs improvement, and high pricing may deter small businesses. Scalability issues in dynamic environments present additional challenges for tech buyers.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

CyberArk Privileged Access Manager automates password management and reduces human error in security protocols.
It provides robust session monitoring and password management that simplifies compliance with industry standards and internal policies.
With CyberArk Privileged Access Manager, secure and monitored access to sensitive systems is managed to prevent unauthorized lateral movements and potential breaches.
The flexibility of CyberArk Privileged Access Manager allows for the integration and customization of connectors and plugins, increasing its adaptability to various IT environments.
CyberArk Privileged Access Manager enhances organizational security through detailed access and action monitoring of privileged accounts, providing clear audit trails and increased accountability.

CONS

CyberArk Privileged Access Manager lacks efficient integration with cloud environments and SaaS platforms, requiring additional time and effort for proper configuration.
The complexity and initial setup of CyberArk Privileged Access Manager are daunting for new users, often requiring professional services.
The licensing model of CyberArk Privileged Access Manager is considered expensive and lacks flexibility for users who infrequently access the system.
Technical support for CyberArk Privileged Access Manager is often slow and lacks sufficient knowledge, causing delays in issue resolution.
CyberArk Privileged Access Manager's integration capabilities and automation features for account management and API connectivity are limited and need improvement.
 

CyberArk Privileged Access Manager Pros review quotes

CoreAnalee82 - PeerSpot reviewer
Jul 19, 2018
CyberArk is not just an IT security or cybersecurity tool. It's also an administrator tool. I had a fair number of systems where the passwords were not fully managed by CyberArk yet, and they were expiring every 30 or 45 days. I was able to get management turned on for those accounts. From an administrator perspective, I didn't have to go back into those systems and manually change those passwords anymore. CyberArk... lightened the load on our administrative work.
Read full review
SatishIyer - PeerSpot reviewer
Jun 21, 2022
I'm no longer the product owner for PAM, but I can say that the most useful feature is the vault functionality, which keeps all your passwords secure in a digital vault.
Read full review
reviewer1706796 - PeerSpot reviewer
Oct 29, 2021
We've written over a hundred custom connectors ourselves that allow us to do all types of privileged session management for various applications. On top of that, the rest of the API-based central credential providers allow us to get away from credentials that may be hard-coded in the script or some application.
Read full review
Buyer's Guide
CyberArk Privileged Access Manager
November 2024
Free Report: CyberArk Privileged Access Manager Reviews and More
Learn what your peers think about CyberArk Privileged Access Manager. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
DOWNLOAD NOW
815,854 professionals have used our research since 2012.
Securitye790 - PeerSpot reviewer
Jul 18, 2018
It has helped us with our adoption with other teams, and it has also helped us to integrate it at the ground level.
Read full review
NM
Dec 19, 2021
We also use CyberArk’s Secrets Manager. Because AWS is the biggest area for us, we have accounts in AWS that are being rotated by CyberArk. We also have a manual process for the most sensitive of our AWS accounts, like root accounts. We've used Secrets Manager on those and that has resulted in a significant risk reduction, as well.
Read full review
Informatf452 - PeerSpot reviewer
Jul 19, 2018
I love the ability to customize the passwords: the forbidden characters, the length of the password, the number of capital, lowercase, and special characters. You can customize the password so that it tailor fits, for example, mainframes that can't have more than eight characters. You can say, "I want a random password that doesn't have these special characters, but it is exactly eight characters," so that it doesn't throw errors.
Read full review
GO
Dec 30, 2019
CyberArk is a very stable product and it's a stable product because it has a simple design and a simple architecture that allows you to leverage the economies of scale across the base of your infrastructure that you already have implemented. It doesn't really introduce any new complex pieces of infrastructure that would make it that much more difficult to scale.
Read full review
MM
Dec 23, 2021
It is a single tool that isolates possible kinds of malware. You get lateral movement blocking and auditing information, e.g., you know who is doing what. You are getting protections from the service as well as a useful environment. All your admins can easily go in and out of your company while accessing your servers in a secure way, even if they are working abroad.
Read full review
KC
Dec 15, 2019
When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution.
Read full review
RK
Jul 18, 2018
We can make a policy that affects everybody instantly.
Read full review
Show 10 more reviews (out of 155)
 

CyberArk Privileged Access Manager Cons review quotes

CoreAnalee82 - PeerSpot reviewer
Jul 19, 2018
This is probably a common thing, but they do ask for a lot of log files, a lot of information. They ask you to provide a lot of information to them before they're willing to give you anything at all upfront. It would be better if they were a little more give-and-take upfront: "Why don't you try these couple of things while we take your log files and stuff and go research them?" A little bit of that might be more helpful.
Read full review
SatishIyer - PeerSpot reviewer
Jun 21, 2022
When I was a component owner for PAM's Privileged Threat Analytics (PTA) component, what I wanted was a clear mapping to the MITRE ATT&CK framework, a framework which has a comprehensive list of use cases. We reached out to the vendor and asked them how much coverage they have of the uses cases found on MITRE, which would have given us a better view of things while I was the product owner. Unfortunately they did not have the capability of mapping onto MITRE's framework at that time.
Read full review
reviewer1706796 - PeerSpot reviewer
Oct 29, 2021
Many of the infrastructure folks who use the product dislike it because it complicates their workflow. They get a little less control, and they have to go through a specific solution. It proactively logs in for them, which obfuscates some of the issues that they may be troubleshooting.
Read full review
Buyer's Guide
CyberArk Privileged Access Manager
November 2024
Free Report: CyberArk Privileged Access Manager Reviews and More
Learn what your peers think about CyberArk Privileged Access Manager. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
DOWNLOAD NOW
815,854 professionals have used our research since 2012.
Securitye790 - PeerSpot reviewer
Jul 18, 2018
Having a centralized place to manage the solution has been something that I have always wanted, and they are starting to understand that and bring things back together.
Read full review
NM
Dec 19, 2021
If there is an area that has room for improvement, it's probably working with their support and getting people on the phone. That is hard to do with most products in general, but that seems to be the difficult area. The product is fantastic, but sometimes we want somebody on the phone.
Read full review
Informatf452 - PeerSpot reviewer
Jul 19, 2018
We had an issue with the Copy feature... Apparently, in version 10, that Copy feature does not work. You actually have to click Show and then copy the password from within Show and then paste it. We've had a million tickets and we had to figure out a workaround to it.
Read full review
GO
Dec 30, 2019
CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms.
Read full review
MM
Dec 23, 2021
They are sometimes not flexible with things. For instance, from one day to another, there might be something that had been done years ago by CyberArk, then they say, "We do not support that." You then have to initiate a complaint and start working with them. Things might become complicated and months pass while you are working with them. Usually, they are good and fast, but sometimes they seem to be blocked with problems, e.g., you will suddenly be working with another team instead of the team that you were working with the day before.
Read full review
KC
Dec 15, 2019
The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time.
Read full review
RK
Jul 18, 2018
One of our current issues is a publishing issue. If we whitelist Google Chrome, all the events of Google Chrome should be gone. It is not happening.
Read full review
Show 10 more reviews (out of 147)

Product Categories

Product Categories
Privileged Access Management (PAM)
User Activity Monitoring
Enterprise Password Managers
Mainframe Security
Operational Technology (OT) Security

Popular Comparisons

Popular Comparisons
Netgate pfSense vs CyberArk Privileged Access Manager Logo
Netgate pfSense vs CyberArk Privileged Access Manager
Microsoft Entra ID vs CyberArk Privileged Access Manager Logo
Microsoft Entra ID vs CyberArk Privileged Access Manager
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager Logo
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager
Zscaler Internet Access vs CyberArk Privileged Access Manager Logo
Zscaler Internet Access vs CyberArk Privileged Access Manager
Azure Key Vault vs CyberArk Privileged Access Manager Logo
Azure Key Vault vs CyberArk Privileged Access Manager
Workspace ONE UEM vs CyberArk Privileged Access Manager Logo
Workspace ONE UEM vs CyberArk Privileged Access Manager
SailPoint Identity Security Cloud vs CyberArk Privileged Access Manager Logo
SailPoint Identity Security Cloud vs CyberArk Privileged Access Manager
AWS Secrets Manager vs CyberArk Privileged Access Manager Logo
AWS Secrets Manager vs CyberArk Privileged Access Manager
Omada Identity vs CyberArk Privileged Access Manager Logo
Omada Identity vs CyberArk Privileged Access Manager
Sophos UTM vs CyberArk Privileged Access Manager Logo
Sophos UTM vs CyberArk Privileged Access Manager
Palo Alto Networks WildFire vs CyberArk Privileged Access Manager Logo
Palo Alto Networks WildFire vs CyberArk Privileged Access Manager
HashiCorp Vault vs CyberArk Privileged Access Manager Logo
HashiCorp Vault vs CyberArk Privileged Access Manager
Okta Workforce Identity vs CyberArk Privileged Access Manager Logo
Okta Workforce Identity vs CyberArk Privileged Access Manager
Cloudflare SASE & SSE Platform vs CyberArk Privileged Access Manager Logo
Cloudflare SASE & SSE Platform vs CyberArk Privileged Access Manager
Fortinet FortiAuthenticator vs CyberArk Privileged Access Manager Logo
Fortinet FortiAuthenticator vs CyberArk Privileged Access Manager
See all alternatives

Product Categories

Product Categories
Privileged Access Management (PAM)
User Activity Monitoring
Enterprise Password Managers
Mainframe Security
Operational Technology (OT) Security

Popular Comparisons

Popular Comparisons
Netgate pfSense vs CyberArk Privileged Access Manager Logo
Netgate pfSense vs CyberArk Privileged Access Manager
Microsoft Entra ID vs CyberArk Privileged Access Manager Logo
Microsoft Entra ID vs CyberArk Privileged Access Manager
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager Logo
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager
Zscaler Internet Access vs CyberArk Privileged Access Manager Logo
Zscaler Internet Access vs CyberArk Privileged Access Manager
Azure Key Vault vs CyberArk Privileged Access Manager Logo
Azure Key Vault vs CyberArk Privileged Access Manager
Workspace ONE UEM vs CyberArk Privileged Access Manager Logo
Workspace ONE UEM vs CyberArk Privileged Access Manager
SailPoint Identity Security Cloud vs CyberArk Privileged Access Manager Logo
SailPoint Identity Security Cloud vs CyberArk Privileged Access Manager
AWS Secrets Manager vs CyberArk Privileged Access Manager Logo
AWS Secrets Manager vs CyberArk Privileged Access Manager
Omada Identity vs CyberArk Privileged Access Manager Logo
Omada Identity vs CyberArk Privileged Access Manager
Sophos UTM vs CyberArk Privileged Access Manager Logo
Sophos UTM vs CyberArk Privileged Access Manager
Palo Alto Networks WildFire vs CyberArk Privileged Access Manager Logo
Palo Alto Networks WildFire vs CyberArk Privileged Access Manager
HashiCorp Vault vs CyberArk Privileged Access Manager Logo
HashiCorp Vault vs CyberArk Privileged Access Manager
Okta Workforce Identity vs CyberArk Privileged Access Manager Logo
Okta Workforce Identity vs CyberArk Privileged Access Manager
Cloudflare SASE & SSE Platform vs CyberArk Privileged Access Manager Logo
Cloudflare SASE & SSE Platform vs CyberArk Privileged Access Manager
Fortinet FortiAuthenticator vs CyberArk Privileged Access Manager Logo
Fortinet FortiAuthenticator vs CyberArk Privileged Access Manager
See all alternatives
Related questions
  • 17
CyberArk vs. ManageEngine Password Manager Pro
  • 178
How does Sailpoint IdentityIQ compare with CyberArk PAM?
  • 283
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
  • 203
What is the difference between Privileged Users and Privileged Accounts
  • 9
When evaluating Privileged Identity Management, what aspect do you think is the most important to look for?
  • 129
Which is the best Privileged Account Management solution?
  • 69
What are the top 5 PAM solutions that can be implemented which cover both hybrid and cloud?
  • 262
What are the top 5 PAM solutions?
  • 179
How will AI and ML help or work with PIM/PAM?
  • 86
Is BeyondTrust Endpoint Privilege Management really expensive compared to other tools or software?