I primarily use the solution for PRAM management, privileged access management, and other similar tasks as well. We submit credentials and replicate and post them directly behind the scenes. There's also some session monitoring and issue recording, etc. that we handle.
Pre Sales/Technical Engineer at a tech services company with 11-50 employees
Good user interface and session monitoring and easy to set up
Pros and Cons
- "The user interface is quite good. It's very straightforward."
- "There could be tweaks here and there. For example, instead of going to one main function to do this and another main function to do that, the solution could remap the user interface so that a person only has to go through one function. The way that function branches off should make a bit more sense."
What is our primary use case?
What is most valuable?
The session monitoring and session recording aspects of the solution are valuable to us. The fact that, as a support, you can actually monitor sessions on the fly is really helpful. A lot of sessions are live. Therefore, if anything happens within the session, there is an alert, and the security can terminate the session.
The fact that you can go back to any other session according to user or sequence, is quite useful. You can get a nice audit of the recording sessions. It's quite deep and quite useful.
Users are able to whitelist commands. It's very helpful.
The solution provides security for certain tasks as well. There's also regression on items like passwords.
The user interface is quite good. It's very straightforward.
The reporting is very powerful.
What needs improvement?
The solution is very good at improving based on customer feedback. If, for example, a customer asks for updated functionality, the next version will likely fit the requirements or requests. They're very responsive in that sense.
There could be tweaks here and there. For example, instead of going to one main function to do this and another main function to do that, the solution could remap the user interface so that a person only has to go through one function. The way that function branches off should make a bit more sense.
I'd like to see more automation on parts of the solution that cover APIs and disk space. There should be more automation in terms of what's out-of-the-box. It would help some customers as not all of them are knowledgable and well-skilled. It would make it easier for the layman.
For how long have I used the solution?
I've been using the solution for one year.
Buyer's Guide
Delinea Secret Server
December 2024
Learn what your peers think about Delinea Secret Server. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
What do I think about the stability of the solution?
The solution is pretty stable.
What do I think about the scalability of the solution?
The solution is highly scalable. The architectural deployment is quite flexible. You can deploy it on multiple sites, you can do your load balancing, you can do your SQL storing, etc. It gives you various architectural deployment and flexibility options. It's very powerful.
How are customer service and support?
We've been in touch with technical support in the past and they've been very helpful. We've been satisfied with their level of support.
Which solution did I use previously and why did I switch?
We didn't previously use a different solution. This is my first foray into PRAM management and enterprise solutions.
How was the initial setup?
The initial setup is pretty straightforward. We didn't find it to be overly complex in any way.
Which other solutions did I evaluate?
I did look at a few other companies and compared a few different features before choosing this solution. I looked at FireEye, BeyondTrust, and CyberArk.
What other advice do I have?
I have a lot of hands-on experience with the solution and I present it to customers and do all the POCs for them.
I'd recommend the solution and advise others to look at cloud options, as most companies are moving to the cloud anyway right now. It's flexible, so users can deploy it both on-prem or on the cloud. There are lots of great custom features and network monitoring capabilities.
You can also patch the privileged behavior and it will, on the fly, give you nice digital printouts with privileged behavior also. If your system admin or one of your admins suddenly acts strangely, even at 2 AM on a Sunday, it will flag that because that's not normal behavior. That's due to the fact it has a lot of powerful machine learning built into the solution as well.
The endpoint application control of the privileged manager is powerful because of the authorizations, etc. The privileged manager can ensure that you actually are able to manage everything very well - everything from user privileges to admin. You can even escalate items easily.
I'd rate it nine out of ten, just because there's always room for improvement. However, for my purposes, it's a fantastic solution.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
BDM at Oberig-it
A stable and scalable solution with good licensing model
Pros and Cons
- "The tool has many models. The tool also has a good cloud version. Also, the customers need not control any components on the solution side. The product's licensing model is also good since customers can choose a price that is most useful for them. The solution also supports password management for the users in your organization."
- "The tool should integrate additional features like OCR."
What is most valuable?
The tool has many models. The tool also has a good cloud version. Also, the customers need not control any components on the solution side. The product's licensing model is also good since customers can choose a price that is most useful for them. The solution also supports password management for the users in your organization.
What needs improvement?
The tool should integrate additional features like OCR.
For how long have I used the solution?
I have been working with the tool for two years.
What do I think about the stability of the solution?
The product is stable.
What do I think about the scalability of the solution?
The product is scalable.
How are customer service and support?
The tool's product support is nice.
How was the initial setup?
The tool's setup is fast and simple. The product's deployment follows a step-by-step process.
What other advice do I have?
I would rate the tool a nine out of ten. I would recommend using the solution. It has many features like password management. You need to also evaluate the vendor before finalizing the product.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Buyer's Guide
Delinea Secret Server
December 2024
Learn what your peers think about Delinea Secret Server. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
IT Strategy Consultant with 201-500 employees
Password storage enables us to give some groups access to different kinds of databases
Pros and Cons
- "The ability to give some groups access to different kind of databases with the storage of a password is the most valuable feature."
- "I don't know what kind of a cryptographic it uses to encrypt the password but it should be one of the stronger ones. Some of the cryptos have been accessed by hackers."
What is our primary use case?
Our primary use case is for password management.
How has it helped my organization?
Before this solution, people had their own passwords stored in different areas and when something was needed we could not find the right person that had the right password, which meant quite a lot in migrations scenarios. With this solution, everyone knew what tools to use and where to put the password and who gives access to that password and then we could have reports on who has access to different passwords so that we could do audits.
What is most valuable?
The ability to give some groups access to different kinds of databases with the storage of a password is the most valuable feature.
What needs improvement?
I don't know what kind of a cryptographic it uses to encrypt the password but it should be one of the stronger ones. Some of the cryptos have been accessed by hackers. The encryption algorithm that they use is weak and could be hacked.
What do I think about the stability of the solution?
The scalability is pretty good. It was always accessible.
What do I think about the scalability of the solution?
It was pretty scalable.
What other advice do I have?
I would rate it a nine out of ten. It provides most of the features we need. I like the way that you could easily administer who would get access to what kind of a database.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Principal Solutions Architect at a computer software company with 51-200 employees
Offers a good zero trust piece
Pros and Cons
- "I really like the zero trust piece."
- "The initial setup and deployment can be cumbersome."
What is our primary use case?
We use the most updated version.
One of our customers wanted automation in respect of the solution.
What is most valuable?
I really like the zero trust piece.
What needs improvement?
The initial setup and deployment can be cumbersome.
For how long have I used the solution?
I have been using Thycotic Password Reset Server for about a year.
How are customer service and technical support?
Nothing about technical support gave me room for pause.
How was the initial setup?
The initial setup and deployment could be simplified.
What's my experience with pricing, setup cost, and licensing?
I do not have knowledge about costs or fees.
Which other solutions did I evaluate?
When making a decision about which solution to purchase, it often comes down to a choice between Thycotic and CyberArk. The cost and features one gets with the latter provides a little more value and saves money in the process, although the former is somewhat easier to deploy and to get up and running.
What other advice do I have?
I rate Thycotic Password Reset Server as a nine out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
Product Security Engineer
Enables us to centrally manage and distribute secrets, but usability needs improvement
Pros and Cons
- "Provides us with the ability to control access [to secrets] by groups."
- "One of the things that we want is to be able to do some of the management of it using APIs."
What is our primary use case?
We use it for managing secrets and distributing them to our users.
How has it helped my organization?
It reduces the risk of secrets being stored in insecure locations, and enables us to share, control, and rotate the secrets. It has also helped to increase staff productivity. It has saved a few man-hours per employee per month.
In terms of security maturity for our organization, it definitely helps with the overall secrets-management aspect. Before, the secrets were not managed online or in a central place. Governance was hard. It has matured the security program in that way.
What is most valuable?
- The overall secrets management
- The ability to control access by groups
- Sharing secrets
What needs improvement?
One of the things that we want is to be able to do some of the management of it using APIs.
Also, their release schedule is slower than I would like. A better release cadence, more frequent releases, would be better, even if they were smaller.
What do I think about the stability of the solution?
It's been pretty stable. It has never failed.
What do I think about the scalability of the solution?
The scalability is okay, for what the solution does.
How are customer service and technical support?
I have only used technical support once and it wasn't bad. It was slower than I wanted, but I don't think it was bad.
Which solution did I use previously and why did I switch?
We used a version that was offline but we wanted something that is centrally managed. That was the reason for the switch, if I remember correctly. There is a need, in general, for organizations to have a solution like this and we chose this vendor.
What was our ROI?
I don't know how much it costs but, generally, there has been good return on what we wanted to do.
Which other solutions did I evaluate?
I don't remember specific ones off top of my head, but there were definitely other vendors on the shortlist.
What other advice do I have?
The biggest challenge with this solution is the usability. You should have your end customers try out different things, find out which product they prefer, and pick that.
I would rate the product at seven out of ten. The usability is very bad which makes it difficult for end-users to use. They complain about putting secrets in it.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Systems Administrator at a tech services company with 501-1,000 employees
It offers password checkout and the ability to change a password after checkin.
What is most valuable?
Password checkout and the ability to change a password after checkin are the most valuable features.
How has it helped my organization?
- Removes the risk of passwords sitting in files on admins' desktops
- Also provides a secure portal to share passwords with the team
What needs improvement?
I would like to be able to create service accounts and set generated AD passwords from the web interface.
For how long have I used the solution?
I have used it for 3+ years.
What was my experience with deployment of the solution?
I have not encountered any deployment issues.
What do I think about the stability of the solution?
I have not encountered any stability issues.
What do I think about the scalability of the solution?
I have not encountered any scalability issues. I was able to deploy over multiple domains.
How are customer service and technical support?
Customer Service:
Customer service is 10/10.
Technical Support:Technical support is 10/10.
Which solution did I use previously and why did I switch?
We did not previously use a different solution.
How was the initial setup?
The more features you add, the more complicated you can make it. Basic password storage deployment is straightforward.
What about the implementation team?
It was an in-house implementation.
Which other solutions did I evaluate?
Before choosing this product, we did not evaluate other options.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
IT Governance, Risk & Compliance at a tech services company with 51-200 employees
Good solution for privileged access and password changing across different environments.
Pros and Cons
- "Its most valuable feature is its main purpose - the password changing and the Heartbeat so the user has access to only their SVN and does not have access to any other. Thycotic's access privileged management tool allows you to grant access to users for a specific period of time and with specific attributes and privileges."
- "In terms of what could be improved, the whole thing with distributed engines, et cetera, is a little bit tricky."
What is our primary use case?
We use Thycotic Secret Server for the lab environment. We have it as a vault for users and in a client project. We have set it as the users' mass login to the secret server so they have access to their SVN. It is for remote access, password changing, etc...
We use it on premise, mostly. I haven't used the cloud version, but we are discussing with the client about using the cloud deployment.
What is most valuable?
Its most valuables feature are its main purpose - the password changing and the Heartbeat so the user has access to only their SVN and does not have access to any other. Thycotic's access privileged management tool allows you to grant access to users for a specific period of time and with specific attributes and privileges.
What needs improvement?
In terms of what could be improved, the whole thing with distributed engines, et cetera, is a little bit tricky. Additionally, many clients wanted a more cloud version. I know there is a cloud version of Thycotic Secret Server, but a whole unified platform would be good, not like where you have to set up a connector with the distributed engine and then have the Thycotic Secret Server connect with all these. Making a simpler version of connecting different sites and synchronization of the groups that you already have. Then the secrets and folder templates would follow the current infrastructure pattern that the client has so you don't have to recreate new folders and secrets from scratch. In other words, more interoperability with other systems, for example if a user already has a Microsoft Azure subscription. So, the integration with Microsoft as well would be good.
For how long have I used the solution?
We have been using Thycotic Secret Server for about a year and a half.
What do I think about the stability of the solution?
In terms of stability, I would say, yes and no. We had some issues regarding the size of the disk space, which was a Thycotic side issue. There were many log files that they couldn't delete. And then we have another issue with the service account. We have to use another service account for Thycotic, and there was a mix-up with the database. All these issues were from the Thycotic side.
We're logging the tickets and I think there will be a resolution in the future.
What do I think about the scalability of the solution?
Scalability is okay.
We use it for lab environment uses. We have about 20 users, not too many.
It takes one person to deploy in our environment.
We do have plans to increase. We have a live contract and other client requests for Thycotic, including maybe the cloud deployment. I hope it is not as tricky as on premise. Maybe it's easier, I don't know.
How was the initial setup?
The initial setup depends on the client. That's why Isaid earlier that there should be a simpler version where we connect all the different sites, et cetera. Because for client installation and deployment, you have to set up two different servers for high availability, for example, and connect another through your site connectors for the distributed engines, and the client didn't have any load balancers. So, there were many issues and the Thycotic was a little bit tricky at that moment. It wasn't just a simple solution where you set up a server and you have it up and running.
The other thing is, and I think it's important, there is not much documentation on the internet. Besides the partner portal it would be nice if there was a blog or something that we could use. So for most cases, we have to open a ticket, either us as partners or on the client's side.
What's my experience with pricing, setup cost, and licensing?
Our license is yearly.
What other advice do I have?
Thycotic Secret Server is a good solution for what it does. We are happy for that, but maybe they can improve some features. Let's say the keystrokes function doesn't work. We have reported that to Thycotic, but they still have many improvements to do.
On a scale of one to ten, I think Thycotic Secret Server is an eight - maybe.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Assistant Technical Manager at a tech services company with 11-50 employees
Good session monitoring and reporting capability, but more online training sessions should be available
Pros and Cons
- "The most valuable feature is session monitoring."
- "Having more detailed reporting would improve this solution."
What is our primary use case?
We are a system integrator and this is one of the solutions that we implement for our clients.
It is used for privileged access management for networks, servers, applications, databases, and more.
What is most valuable?
The most valuable feature is session monitoring.
The Password Changer is a useful feature.
The reporting functionality is good.
What needs improvement?
They need to open a data center in Malaysia so that we can better provide cloud-based services to our customers.
I would like to see more training sessions made available online.
Having more detailed reporting would improve this solution.
For how long have I used the solution?
We have been working with Thycotic Secret Server for less than one year.
What do I think about the stability of the solution?
We have had issues with stability in the past, although technical support has always been able to help us to fix them. This type of solution is used on a daily basis.
What do I think about the scalability of the solution?
It is easy to scale. Our clients are generally medium-sized companies.
How are customer service and technical support?
Technical support is good. There is always somebody available to assist us with issues.
Which solution did I use previously and why did I switch?
Some of our clients have switched to Thycotic because of the cost.
How was the initial setup?
The initial setup is relatively simple. It can be installed in one day, although for the configuration it may take a few days.
What about the implementation team?
Normally, we do the installation of this solution for our clients. One to two people is sufficient for handling the deployment.
What's my experience with pricing, setup cost, and licensing?
The price of this solution is good.
What other advice do I have?
My advice to anybody who is considering this solution is to first understand their requirements and then define the scope before implementing it. The reason is that once deployed, there is a lot of integration into the existing environment.
This is a product that I would recommend.
I would rate this solution a seven out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Distributor
Buyer's Guide
Download our free Delinea Secret Server Report and get advice and tips from experienced pros
sharing their opinions.
Updated: December 2024
Popular Comparisons
CyberArk Privileged Access Manager
Azure Key Vault
AWS Secrets Manager
HashiCorp Vault
BeyondTrust Password Safe
1Password
ManageEngine Password Manager Pro
Delinea Privileged Access Service
Devolutions Hub
BeyondTrust DevOps Secrets Safe
ManageEngine ADSelfService Plus
SolarWinds Passportal
Buyer's Guide
Download our free Delinea Secret Server Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
- What are some best practices to implement for secure employee password management?
- What advice do you have for an enterprise user on Password Day 2021?
- When evaluating Enterprise Password Managers, what aspect do you think is the most important to look for?
- What should one take into account when selecting an enterprise password manager?
- Why is Enterprise Password Managers important for companies?