What is our primary use case?
My main use case for One Identity Safeguard is managing and securing privileged access accounts, and I mainly use it for password vaulting, controlling access to administrative accounts, and monitoring privileged sessions on a day-to-day basis. It helps ensure that sensitive credentials are protected, that privileged activities are properly controlled and audited.
A common example of how I use it in my daily work is when an administrator needs access to a critical server; instead of sharing credentials directly, they request access through One Identity Safeguard, which provides controlled access and records sessions for auditing purposes. This approach helps improve security while maintaining accountability.
What is most valuable?
The best features One Identity Safeguard offers, which stand out for me, include password vaulting, session monitoring, and privileged access control, which collectively help us secure sensitive accounts, control access to critical systems, and maintain an audit trail of privileged activities. Together, they provide a good balance between security and operational efficiency.
Session monitoring has been very useful for my team from both a security and audit perspective, giving us visibility into privileged activity and ensuring that administrative access is being used appropriately. For example, during troubleshooting or system maintenance, we can review the session record if there are questions about changes made on a server, which has helped improve accountability and made the review much easier.
Another feature I appreciate is the approval-based access workflow, as it gives us more control over privileged access requests without slowing down operations too much. What stands out to me is how the platform combines security, auditing, and access management in one place, making it easier to manage privileged accounts across different systems.
One of the biggest positive impacts of One Identity Safeguard on my organization is the improved control over privileged access; before implementing it, managing administrative credentials and tracking privileged activity required more manual effort. After implementation, access became more structured, and we had better visibility into who was accessing critical systems and when, which helped strengthen our security posture and made audit-related activities easier to manage.
One measurable improvement I observed was the reduction in time spent managing privileged credentials and access requests, as tasks that previously involved manual coordination became more streamlined through the platform. We also improved audit readiness because privileged sessions and access activities were centrally tracked, which reduced the effort required during compliance reviews and investigations.
What needs improvement?
One area for improvement in One Identity Safeguard would be reporting and dashboard customization; while the platform provides useful information, having more flexible and easier-to-customize reports would help with administration and gaining insights more quickly. I would also appreciate a more streamlined user interface for managing access requests and reviewing privileged sessions, especially in larger environments with many users and systems.
Another area I would mention for improvement is integration capability; while the platform integrates with common enterprise systems, expanding out-of-the-box integration options would make deployment faster and reduce customization efforts. I would also appreciate more detailed analytics around privileged access trends and user activity, which could help security teams identify risks and make better access management decisions.
From a governance and security perspective, One Identity Safeguard is very strong; it helps enforce privileged access control, secure credential management, session monitoring, and detailed auditing, which are all important for reducing security risks. Regarding AI capability, I see the platform's strength more in policy-based security and access governance than in advanced AI features. However, adding more intelligent risk analytics, anomaly detection, and access recommendations could further enhance its value for security teams. Overall, the governance and security are among the strongest aspects of the product.
For how long have I used the solution?
I have been using One Identity Safeguard for the last four years, which gives me a very good experience with it as I work with privileged access management, password vaulting, session monitoring, and secure administrative access to critical systems.
What do I think about the stability of the solution?
One Identity Safeguard has been a stable and reliable platform in my experience, performing consistently without significant downtime. I use privileged access management regularly, and most of the issues we encountered were related to configuration or integration changes rather than the product's stability.
What do I think about the scalability of the solution?
From my experience, One Identity Safeguard scales effectively as an organization grows; as we added more systems, privileged accounts, and users, the platform continued to perform reliably. Features such as centralized credential management and policy-based access control have helped us expand without significant increases in administrative overhead, making it well-suited for our organization's evolving privileged access management requirements.
How are customer service and support?
My experience with customer support has been positive overall, as the support team was responsive and knowledgeable whenever we needed assistance with configuration, integration, or troubleshooting issues. For more complex cases, the resolution time sometimes required additional investigation, but the support engineers were helpful and provided clear guidance throughout the process.
Which solution did I use previously and why did I switch?
Before implementing One Identity Safeguard, we relied on manual privileged account management and native administration tools, and we switched because we needed stronger control over privileged credentials, better auditing, and a more centralized approach to managing administrative access across the environment.
How was the initial setup?
We evaluated a few other privileged access management solutions, including CyberArk and BeyondTrust, but we chose One Identity Safeguard because it offered the right balance of privileged access control and password management features.
What about the implementation team?
Overall, the integration with those systems was fairly straightforward since we already had established identity and infrastructure systems in place; connecting One Identity Safeguard to those environments was not particularly difficult. The main challenge was planning access policies and ensuring the correct privileged accounts and systems were onboarded, but once that was completed, the integration worked smoothly and provided a more centralized approach to privileged access management.
What was our ROI?
We have seen a positive return on investment mainly through improved operational efficiency and reduced administrative effort in managing privileged credentials, access approvals, and audit activities, which became more streamlined. This change saved time for both security and infrastructure teams; while we did not reduce headcount, the team was able to spend less time on manual access management and more time on higher-priority security tasks.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing and licensing for One Identity Safeguard has been generally positive; for an enterprise security solution, the cost is justified by the value provided in privileged access management, credential security, and audit capabilities. The setup perspective is straightforward, with most of the effort going into onboarding systems, defining access policies, and configuring governance requirements rather than the installation itself.
Which other solutions did I evaluate?
We did not purchase One Identity Safeguard through the Azure Marketplace; the product was acquired through our organization's standard procurement process and integrated with our existing infrastructure and cloud base. Azure is part of our environment, but it was not the purchasing channel for the solution.
What other advice do I have?
One of the biggest positive impacts of One Identity Safeguard on my organization is the improved control over privileged access; before implementing it, managing administrative credentials and tracking privileged activity required more manual effort. After implementation, access became more structured, and we had better visibility into who was accessing critical systems and when, which helped strengthen our security posture and made audit-related activities easier to manage.
We have integrated One Identity Safeguard with our Active Directory environment and various server platforms to manage privileged access centrally. We also use it alongside cloud resources and security tools to help control administrative access and maintain consistent governance across different systems, which streamlines access management and improves visibility into privileged activities.
The integration has positively impacted our operations by centralizing privileged access management and reducing manual processes; one noticeable improvement is that administrators can request and access privileged accounts through a controlled workflow instead of relying on manual credential sharing. This change improved efficiency, strengthened security, and provided better visibility into privileged activities across the environment.
My advice for others looking into using One Identity Safeguard is to clearly define your privileged access policies and governance requirements before implementing the product, as you will get the most value when the access workflow, approval processes, and account ownership are well understood. I recommend starting with the most critical systems and privileged accounts first and then expanding gradually, as this approach helps teams become familiar with the platform while demonstrating value early in the deployment. I would rate this product a nine out of ten.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.