CyberArk Privileged Access Manager Reviews

I used CyberArk for vaulting passwords.

I haven't really thought about anything that I want to use it for, that I couldn't use it for.

I would like to see more integration with more tools, for more APIs. 

I have used this solution in the last 12 months.

The initial setup was not overly complex but it wasn't straightforward.

Once it was prepared properly, it was okay.

I would rate CyberArk Enterprise Password Vault an eight out of ten.

We primarily use this product for privileged identity management, restricting privileged IDs, and governance. This is the primary function of the program, and what we expect from it within the broad business level.

One limitation is that we are not able to put this into a decentralized mode.

This solution is quite stable.

We have no issues with scalability.

The tech support is decent. 

It takes a while to adapt to the product.

I do not have experience with the pricing or licensing of this product.

I think having a distributed architecture would certainly help this solution.

The fact that there are more and more plugins developed make it easier for implementation.

It is difficult to say what the valuable features are. I use all the different parts together to get the full power of CyberArk.

I would like to see better usability for non-technical people. If you use the PVWA interface, I noticed that the end user would need some extra training. The portal doesn't navigate so easily, if you don't know it.

With Facebook, for example, people find their way around easily. In PVWA, it takes some time to know how it works from an end-user point of view.

I did not encounter any issues with stability.

There have been no issues with scalability. You can easily manage more than 4000 accounts with one PSM.

I haven't needed any support yet, as it is well documented.

We did not use a previous solution. Basically, we helped a telecom to migrate from a standard .XLS with accounts to CyberArk.

The most difficult part was convincing the technical teams to use it.

Pricing and licensing depend on the environment. First, make a good plan.

Basically, build it up step-by-step, starting with the EPV of course :-).

The secured vault storage offers great capabilities for structuring and accessing data.
Central Password Manager is useful for agentless automated password management on endpoints.

Privileged Session Manager is good for provisioning, securing, and recording sessions to the endpoints.

CyberArk provided an audit trail for all account operations, including session recordings for all activities performed with high privilege accounts. It also gave us the ability to define various access controls per group, enabling us to differentiate between internal and external IT staff accessing the accounts.

The product documentation could be a little more precise in certain aspects with clearer explanations for functionality limitations. New functionalities or discovered bugs take a little longer to patch. We would greatly appreciate quicker development of security patches and bug corrections.

I have been working with CyberArk solutions for 7 years already.

I was involved in many implementations, proofs of concept, operational and development activities. I have worked with or test all CyberArk releases since version 5.5.

Unfortunately, I did have some problems with stability caused by not following the recommended configurations. But the recommended configurations are very strict, and it is not always possible to implement in a corporate infrastructure. Interference with other applications can also cause problems with CyberArk components.

We did not have any problems with scalability. Each component of the solution is highly scalable and enables us to quickly increase capacity.

Customer service is very responsive and they are willing to help you with any deployment decisions, production issues or just various questions you might have.

The technical support was great. They were very responsive and eager to help. We were able to have professional communication and the involvement of all levels of technical personnel as needed.

I used another solution before CyberArk and its limited functionalities were the main reason for switching. We chose CyberArk because of its great functionalities, the ability to be deployed granularly at a different scale for each function, and the ability to be deployed in a distributed infrastructure.

The initial setup is straightforward if you prepare for it properly and test the major functionalities using the configurations that you’ll actually require before you use it in a production deployment.

CyberArk documentation contains a lot of information, so the hardest part is to choose the right setup and deployment strategy.

Plan ahead regarding the licensing costs. You can get a better prices per license as the number of licenses increases. CyberArk is open to providing a test license so you can test any particular functionalities prior to buying the real license.

We evaluated ObserveIT and IBM’s Privileged Identity Manager solution, which was still under development back in the times. We chose CyberArk because of its flexible installations, so that it was able to cover most of the deployment scenarios we required.

Study and test it first, before going wild in the production.

It is very easy to create a disaster in production with even the smallest changes.
CyberArk has great resiliency capabilities; use them wherever you can.

This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access. 

I use the solution for security. I make sure the bulk of the password of the certificate for the cloud and on-premise applications are good. I action and administer them when needed.

The solution is stable, it is very resilient.

I have found the solution to be scalable.

The installation is not difficult for me because all the information is on the website.

The solution is very expensive and requires a license. We pay for an enterprise license.

This is a complete package that has a lot of the capabilities you would want in this type of solution but it is very expensive.

I rate CyberArk PAS a seven out of ten.

Our primary use case for this solution is business and client management. Our clients are mostly from the banking sector. 

The CyberArk solutions that have been the most valuable for my solution are the Discovery & Audit (DNA) and Privileged Threat Analytics (PTA) tools. CyberArk is a very important tool for my organization.  

The setup was very easy for me. 

The product could be easier to use. More work needs to be done on this aspect; it is not good enough yet. It also takes up a lot of server space. Sometimes we need to use up to seven servers. 

I have been using the solution for about a year. My company resells and implements this solution. 

I think this solution has a lot of stability. 

The technical support for this solution is very good. If I was to rate it on a scale of one to five, I would give it a five.

The initial setup was straightforward. It can be carried out by a single person. 

The great thing about this solution is that they offer tech support in my language. 

I recommend this product. 

I am a consultant. We are in the process of using this in our clients' companies.

The most valuable feature is Special Monitoring.

The authentication port is available in CyberArk Alero but not Fortinet products.

I have been working with CyberArk PAS for one year.

CyberArk is stable.

It's a scalable solution. 

I have limited experience with technical support, but our customers like the support.

In general, it appears to be fine.

I have also worked with Thycotic, until the completion of the project.

The initial setup is straightforward.

It is best suited for mid to large-size enterprises. It is not the best for smaller companies, largely because of the price.

I believe that this solution is priced well. It's the market leader and I think that it's the best solution.

The price is quite good for us.

For those who are interested in using this product, you have to know your requirements and compare them with CyberArk to see if it is suitable for them and fits their budget.

I would rate this solution a nine out of ten.

Some of the valuable features are:

• The different server vault is used to store data with 7 layers of security for protecting the data.
• The Application Identity Management Module is also very useful and easy to handle.
• AutoIt scripting is useful to simulate single sign-on for thick and thin clients.

It makes compliance of the organization with password management easy. This results in a handy auditing process and adheres to all risk compliance as well.

Some areas of improvement are:

• PSM: It should be hosted on UNIX rather than on Windows. In such cases, no extra OS license needs to purchased at the client's end.
• PVWA: The admin console should be in the Windows installer instead of a web application for admin users. It makes the work faster for admins; otherwise, it seems slow for the web interface.
• PSMP: It looks a bit complex to deploy and maintain.
• OPM: This module should be integrated with PrivateArk app.

I have used this solution for three years.

CyberArk is quite stable and no issues have been exprienced on regards to stability.

We have not encountered any scalability issues. It is very scalable with any requirements.

I would give the technical support a 9/10 rating. It has superb technical support for U.S. clients.

However, for Indian origin clients, i.e., for foreign clients, the support is poor thus I have rated it a 4/10.

It is very expensive. They charge for every single thing they offer.