One Identity Safeguard Reviews

My main use case of One Identity Safeguard is to manage and secure privileged access in our IT environment. We use it for password vaulting, automatic credential rotation, and monitoring administrator sessions on servers, network devices, and critical systems.

The best features of One Identity Safeguard are password vaulting and automatic rotation, session monitoring and recording, real-time alerting and threat detection, just-in-time and least privilege access, and centralized management and reporting.

One Identity Safeguard's real-time alerting helps us quickly identify any unusual or unauthorized activity, such as failed login attempts or access outside of business hours. For example, if someone attempts to access a privileged account unexpectedly, we get an alert immediately and can take action.

One Identity Safeguard has had a very positive impact on our organization. It has significantly improved our security by protecting privileged accounts, which are a main target for attacks. With features such as password vaulting and session monitoring, we now have full control and visibility over admin activities. It also helps with compliance and auditing. All user actions are recorded and easily available for review. This makes audits much faster and more efficient.

The UI can be more user-friendly. The initial setup is slightly complex. Integration with some tools can be improved.

A few additional improvements could make One Identity Safeguard even better. Along with the UI, the reporting could be more customizable to filter for specific reporting needs. Sometimes it takes extra steps to get the exact report we want.

I have been using One Identity Safeguard for the last two years.

One Identity Safeguard is now stable.

The scalability of One Identity Safeguard is very good. The solution supports clustering and load distribution, so as demand increases, we can expand the environment without major changes.

Customer support for One Identity Safeguard is generally good. In our experience, the support team is knowledgeable and able to resolve most issues.

We were using a basic manual approach and some native tools for managing privileged access. However, they lacked centralized control, proper auditing, and security features. We switched to One Identity Safeguard to get a more secure and centralized solution with features such as password vaulting, session monitoring, and automated credential management.

The initial setup was quick, but additional time was needed for configuration. There was minimal disruption because we implemented it in phases. Initially, a small group of users was onboarded for testing, and once everything was stable, we gradually rolled it out to other users.

The integration process for One Identity Safeguard was moderate. Basic integrations, such as Active Directory and standard systems, were relatively straightforward and well-documented. However, the more advanced integrations required some custom setup, additional configuration, and some troubleshooting. Overall, it is not very difficult, but it does require some technical knowledge and planning to implement smoothly.

We can see a good return on investment with One Identity Safeguard. It has saved a lot of time by automating tasks such as password management and access approvals, which were earlier done manually. It has reduced the workload on our IT team. We have also reduced security risk, which is very important. Additionally, audit preparation time has decreased from hours or days of manual log collection to just a few minutes using the built-in reports.

Our experience with the pricing and licensing of One Identity Safeguard was moderate. The solution is not the cheapest, but it offers strong security features, so the cost is justified. Licensing is usually based on the number of users or accounts, which is straightforward to understand.

Before choosing One Identity Safeguard, we evaluated a few other PAM solutions, such as CyberArk Privileged Access Manager and BeyondTrust Privileged Access Management. We compared them based on features, ease of deployment, flexibility, and cost. We selected One Identity Safeguard because it provided a good balance of security features.

My advice to others considering One Identity Safeguard would be to plan the deployment properly and start with a clear understanding of your privileged access requirements.

My main use case for One Identity Safeguard is for privileged access management to control, monitor, and secure access to critical systems, servers, and applications used by administrators and IT teams.

A quick specific example of how I use it for privileged access management in my environment is that when an administrator needs access to a critical server, they request access through One Identity Safeguard instead of using shared credentials. The system grants time-bound, approved access, rotates the password automatically after the session, and records the entire activity.

The best features One Identity Safeguard offers include Privileged Password Vaulting as the first one. The strongest features are Session Recording and Password Vaulting with rotation and Just-in-Time Access, which together give strong control and visibility and audit readiness.

The Session Recording feature specifically helps my team and makes things easier for audits or investigations by giving a clear, time-stamped playback of privileged activities. It removes guesswork, speeds up audits, and ensures full accountability for admin actions.

One Identity Safeguard has positively impacted my organization by improving our security posture, eliminating shared privileged credentials, increasing visibility into admin activity, and making compliance audits faster and more reliable.

One Identity Safeguard could be improved by simplifying the user interface and initial configuration process, especially for first-time users. More customizable reporting and clear in-app guidance would also help teams onboard faster and get deeper insights without additional effort.

I have been using One Identity Safeguard for about one year.

One Identity Safeguard is very stable and can handle the workload easily; I have not seen any downtime.

One Identity Safeguard scales well as the environment grows. It handles increasing numbers of privileged accounts, sessions, and cloud targets without performance issues, making it suitable for expanding and hybrid infrastructure.

Customer support has been responsive and knowledgeable, being effective at resolving technical issues.

Negative

The integration with my cloud environment and infrastructure systems was moderately easy. Core cloud and infrastructure integrations were straightforward with proper documentation, while fine-tuning policies and access workflows required some initial effort. Once configured, the integrations have been stable and reliable.

Administrators required moderate training to understand configuration, policies, and workflows, while end users needed minimal training since access requests and approvals are straightforward. Overall, onboarding was manageable with some initial guidance.

I have seen a return on investment through reduced audit effort and fewer security incidents related to privileged access, along with significant time savings for IT and security teams by automating access control and password management.

My experience with pricing, setup cost, and licensing is that pricing is on the higher side, but aligns with the security and compliance value it provides. Setup costs were mainly related to initial configuration and training, and licensing was straightforward.

I evaluated other options such as CyberArk and BeyondTrust before choosing One Identity Safeguard.

User feedback has been generally positive around the solution's security and session recording and access control capabilities. However, some users have mentioned that the interface and initial learning curve could be more intuitive, especially for new or non-specialist users.

My advice for others looking into using One Identity Safeguard is to clearly define your privileged access use cases and policies before implementation. It gives stronger security and audit capabilities, but investing time in proper planning, setup, and training will help you get the most value from the solution. I would rate this review a 7.

One Identity Safeguard has been used by our organization for more than three years. The primary use case for One Identity Safeguard is to secure admin access to the servers and the network devices, which helps us to ensure only authorized users can access our critical systems and devices, and it also monitors all the privileged sessions.

One Identity Safeguard offers secure password vaulting, which ensures passwords are not shared or exposed, significantly improving security, and session monitoring and recording, allowing us to track all the admin activities easily.

These features help our team day-to-day by eliminating password sharing among the admins and ensuring secure access to critical systems, which reduces security risks, while tracking and controlling privileged access prevents misuse of admin accounts and improves overall system security.

One Identity Safeguard has positively impacted our organization by increasing visibility into privileged user activities, allowing us to track and audit all actions easily, which helps in compliance and security.

One Identity Safeguard provides great features with a smooth process and a very good amount of stability, so there is no need to improve as of now, but it might be required in the future.

I have been working in my current field for more than eight years.

One Identity Safeguard is stable.

One Identity Safeguard's scalability matches our organization's growth over time with no issues.

Customer support has a very helpful nature and is very responsive to our technical team when they require technical support, providing 24/7 assistance based on the given timeline.

We have not evaluated any other options, as we had confirmed from day one that we were going to procure One Identity Safeguard.

The deployment of the solution has taken less than one month, and it was a great experience. Regarding deployment, we have not faced any disruptive issues; it was very smooth for our privileged users, and after a short initial adjustment, they were able to access the system through One Identity Safeguard without issues, thanks to training and clear communication that minimized disruptions.

The training requirement was very minimal, taking less than one week for training the employees, and once they had a good amount of knowledge about One Identity Safeguard, they were ready to go.

We have seen a good amount of return on investment, saving our employees time and money while providing security; it has helped us reduce manual efforts by around 30 to 40 percent.

The experience with the pricing, setup cost, and licensing was straightforward, and the sales team was very helpful during the procurement and implementation of the solution, making it a great experience.

One Identity Safeguard has been the only solution used since day one.

For any organization, whether mid-size or large, looking into using One Identity Safeguard, it will be a really good solution for managing accessibility to critical devices with great security features and automation. Planning deployment carefully and understanding access requirements is essential, so start with the most critical systems first and then go for the less critical ones. This review has been rated 9 out of 10.

I have been using One Identity Safeguard for almost a year. The main use case of One Identity Safeguard is privileged access management, specifically controlling and monitoring administrator access. In my organization, I typically use it for privileged password management, secure admin access, session recording and monitoring, approval workflows, and privileged account discovery.

A common day-to-day example involves accessing a production server. An admin needs to troubleshoot a service issue. Instead of sharing the local administrative password, they submit an access request in One Identity Safeguard, provide a reason, and select a time duration, for example, one hour. A manager or security team approves the request. The admin launches the RDP session directly from One Identity Safeguard. One Identity Safeguard injects the credential automatically. The password is not visible. The entire session is recorded for audit purposes. When the session ends, access expires, and the password is automatically rotated. This makes a difference because there is no shared admin password, temporary least privileged access is implemented, full session recording is available for audits, and automatic password rotation occurs after use.

The best features of One Identity Safeguard revolve around password security, session control, and governance. Some of the features I can mention are privileged password vault and automatic rotation, session recording and playback, real-time monitoring and threat blocking, just-in-time privileged access, and privileged session search.

The session recording feature is straightforward in day-to-day use. When an admin launches the RDP session or SSH session through One Identity Safeguard, the system automatically records everything in the background with no extra steps needed. It captures screen activity, commands executed, keystrokes, login-logout times, and target systems accessed. After the session, I can search by username, server name, date, time, and request ID. Real-time monitoring is also useful, especially for high-risk systems. Security or privileged access administrators can watch the session live and receive alerts on suspicious activity to determine if the session should be terminated if needed. I do not use live monitoring constantly, but it is very valuable for domain controller access, production database access, and emergency admin access. Overall, these features are valuable because they provide full visibility into privileged activity without slowing down the administrator.

One Identity Safeguard has improved privileged access security and accountability. I have eliminated shared admin passwords, implemented time-bound access with approvals, and gained session recording for audits. This has led to better visibility, faster investigation, and reduced standing privilege access. Investigations are much faster and more accurate, and audits are quicker with fewer findings, thanks to full session visibility and traceability. Regarding relevant metrics for any IAM solution or monitoring solution like One Identity Safeguard, previously it took two to three days to complete investigations. Now, after recording the session, investigations can be completed in under an hour.

I gave a rating of eight because of the strong privileged password vault and automatic rotation, reliable session recording and replay, just-in-time access with approval workflows, good audit and compliance visibility, and ease of administration. I did not give a higher rating for the following reasons: initial deployment can take time, the UI feels slightly dated in some areas, and reporting customization can be limited.

I have been using One Identity Safeguard for almost a year.

One Identity Safeguard is very stable.

One Identity Safeguard definitely scales.

I have not used customer support. If I do use it, I will definitely connect back and update my feedback on this.

I have not used any kind of solution previously.

The initial setup typically took four weeks and sometimes more than four weeks as well, depending on the customer's environment and production environment. The setup was fairly minimal for end-users, but for an administrator, it requires a lot of work. The process is very straightforward and negotiable as well.

I am a reseller.

Time is definitely saved. Regarding money, money is also saved because I maintain the compliance part. However, fewer employees are not needed; I need to hire more employees to monitor these things.

I have not evaluated any alternate options previously.

I am currently happy with One Identity Safeguard, so there is no point to implement changes. I gave this solution a rating of eight. There was a short learning curve, but overall adoption was smooth and users now find it very easy and more secure to use. I recommend this solution if you want proper security for your infrastructure and want to improve your budget. If you have a limited budget, then please do not go for this solution. I am asking for better security.

My main use case for One Identity Safeguard is to safeguard my password as well as my login IDs when I'm working from home, as it provides better safety for my passwords and for my login IDs.

When we log in, we get two-factor authentication, which I use for safeguarding my passwords or login IDs while working from home, and that makes it safer compared to other software.

One Identity Safeguard helps in keeping my login IDs and passwords safe, and that is very important to me.

The best feature that One Identity Safeguard provides is its flexibility, as well as the fact that it integrates well with other software like Salesforce, which I really appreciate.

The integration part of One Identity Safeguard has been quite beneficial for my workflow, especially with tools like Salesforce.

One Identity Safeguard is flexible and provides out-of-the-box integrations that have been very helpful for me, and the installation process was quite easy and smooth, which I would also rate as a feature.

One Identity Safeguard has positively impacted us because the fear of theft of passwords or IDs has been reduced to almost zero, significantly enhancing our security.

The reduction in password or ID theft risk with One Identity Safeguard has led to measurable changes as security incidents have been reduced, positively impacting us and increasing our efficiency.

In terms of improvement for One Identity Safeguard, I would like to say that the customer support needs to be improved and the pricing needs to be a bit more reasonable, as these are the two factors that require attention.

Regarding customer support for One Identity Safeguard specifically, there has been lag and they are not very responsive, which needs to be improved immediately.

I have been using One Identity Safeguard for the past eight months.

One Identity Safeguard is stable.

One Identity Safeguard's scalability is quite good, as it is scalable according to the needs of the enterprise.

The customer support for One Identity Safeguard was not very good and definitely needs to be improved.

The deployment of One Identity Safeguard took around three months.

The deployment of One Identity Safeguard affected our privileged users seamlessly, without disruption.

We use the on-demand version of One Identity Safeguard because it provides us flexibility, which was the main reason for choosing that version.

I can say we have seen a return on investment with One Identity Safeguard as we have saved a lot of time and manpower, although I cannot give a specific number for that.

My experience with pricing for One Identity Safeguard indicated that the pricing was a bit high, while the setup cost was manageable and the licensing was acceptable; overall, the cost aspect was on the higher side.

The feedback I have received from users regarding One Identity Safeguard's usability and functionality has been positive, as the usability aspect has been quite good and it is easy to learn and user-friendly.

The training required to start using One Identity Safeguard was not very extensive, but a bit of training was needed, and it was a smooth process.

If you are looking into using One Identity Safeguard, I would advise that if you are looking for user-friendly software that integrates well with other software, and if you do not mind spending a bit of extra money for that, then One Identity Safeguard is the go-to solution for you. I would rate this product a 7 out of 10.

My main use case for One Identity Safeguard is to use it as a PAM tool for managing and monitoring privileged accounts. In every organization, there are special accounts such as admin or root accounts that have a very high level of access, and if these accounts are missed or compromised, it can create problems or damage. One Identity Safeguard helps us to control who uses these accounts and when they can use them.

A quick, specific example of how I use One Identity Safeguard to manage those privileged accounts involves a database administrator needing to make an urgent change to our production database. In the past, we would just use a shared admin password that everyone in the team knows, but now with One Identity Safeguard, the admin logs into the Safeguard portal and raises an access request for the production database. The request automatically goes to his manager, and based on the review, it gets approval. One Identity Safeguard connects the admin to the database without showing him the actual password, so he never knows about the credentials.

The excellent session recording and monitoring stand out as the best features of One Identity Safeguard. It is a compliance-based deployment and can work across on-premises as well as cloud environments.

Session recording and monitoring have benefited my organization by ensuring that every privileged session is monitored in real-time. Whenever any admin logs into the server through One Identity Safeguard, the system records it and the screen is viewed. The security team can watch live sessions if needed or review the recordings whenever they need them.

One Identity Safeguard has saved our compliance efforts, so generating audit reports that used to take days now takes a minute, which is a very good example of its efficiency.

One Identity Safeguard has positively impacted our organization by giving us complete visibility over all privileged access, making compliance audits much easier than before, and ensuring that access is not time-bound, allowing admins access only for the duration they need it.

Compliance audits have become much simpler with One Identity Safeguard, as every access request, approval, session, and action is logged automatically. The audit team can ask who accessed what system and when, and we are able to generate those types of reports in minutes, significantly reducing our efforts and costs.

I have not seen any issues with One Identity Safeguard solution. I do not wish to add more about needed improvements related to usability, integration, or support.

I have been using One Identity Safeguard for more than three years.

One Identity Safeguard is stable.

One Identity Safeguard is a very good solution from a scalability perspective, and we have not seen any issues with its scalability so far.

The customer support team for One Identity Safeguard is good, responsive, and we have seen good responses multiple times.

We are using One Identity Safeguard only and did not use a different solution before.

The deployment of the solution took less than one month for my organization.

The deployment affected our privileged users smoothly, as I did not see any challenges or disruptive events with this solution.

The experience during the deployment was very smooth, as I have not seen any kind of challenges with the end-users.

We have integrated our Active Directory with One Identity Safeguard.

The integration with Active Directory was complex during the initial setup, but later we found it to be very smooth, requiring proper planning in advance.

The integration with Active Directory has improved our efficiency and security because our users are syncing properly.

We have seen a good return on investment with One Identity Safeguard because the ROI did not come in a dramatic way; it came through multiple small savings that added up significantly over the years.

I had a great experience with the pricing and setup cost of One Identity Safeguard, and there were no challenges.

We have not evaluated other options before choosing One Identity Safeguard.

I would advise others looking into using One Identity Safeguard to implement it in their environment and not wait for a security incident to occur. Most organizations consider access management only after something goes wrong and an account gets compromised, but by then the damage is already done. One Identity Safeguard is a tool you want in place before something bad happens, so this is highly recommended by us. I have given this review a rating of eight.

Our main use case for One Identity Safeguard is to integrate it to clients that need the SPP functionality, which stands for Safeguard for Privileged Passwords. They do say that we could utilize One Identity Safeguard to its full extent for now, but we're getting there.

A quick specific example of how we use One Identity Safeguard with a client is that our latest client needed a password vault, so at first, we integrated One Identity Safeguard for Privileged Passwords, and then they asked for a personal vault so they could store their passwords and secrets, much like KeePass, so we integrated One Identity Safeguard Personal Vault as well. Lastly, they figured at some point down the line that they needed SPS as well, but only the primitive version of it, so we just decided to integrate SPS as well and form it into a cluster with SPP, but they don't use any third-party plugins as of now.

The best feature One Identity Safeguard offers is that it is a pretty new, modern tool that makes extensive use of its API. In general, it's easier than other tools to just perform maintenance work or perform work using the API of One Identity Safeguard. Also, the way that the access requests are structured—with entitlements and access request policies—makes it easier to govern data and identities. CyberArk, which is essentially the industry standard right now, is doing a very primitive job of helping the administrator with the task, and One Identity Safeguard is a lot better at this.

These features help my team day-to-day by making onboarding new users easier, and they also make it easier to create existing teams that are complete with their own password management, their own password profiles and rotations, password requirements, and who gets access to what, so it all makes it easier and faster.

One Identity Safeguard has positively impacted my organization by being another tool that we have in our arsenal to be able to get other clients as well, because we also sell One Identity IAM, and we can just bundle One Identity Safeguard with it. It also has a nice feature called remote access, which a lot of people want to use for externals in their organization, coupled with its just-in-time requisition, so it makes selling it much easier because One Identity is a company that's been in the field for ages.

One Identity Safeguard can be improved by fixing the documentation, which is very convoluted as of now, and addressing versioning, as some major bugs and issues are not documented well enough in the documentation, along with some patches and fixes. Custom plugins need to be introduced as soon as possible.

I give it an eight because it's a nice tool and it's a modern tool, but there are still some issues, not necessarily pertaining to the tool itself, but to the whole philosophy of One Identity and how they have structured their workflows and their knowledge base, which essentially has no knowledge base, just like CyberArk. There are some issues that need to be fixed, plus it does not have a custom option, and a lot of clients are using in-house made applications that also need to be onboarded to One Identity Safeguard to be able to launch a browser session to that application, which One Identity Safeguard has not had any capabilities that could assist with that.

I have been using One Identity Safeguard for two and a half years, ever since we pivoted from CyberArk, as we wanted to be more tool-agnostic, and we decided that One Identity Safeguard was our best option because we had a past with One Identity, with us being in an IAM team.

One Identity Safeguard is stable.

So far, we haven't had any issues with One Identity Safeguard's scalability; it's been fine, but we generally target smaller to mid-sized implementations.

The customer support for One Identity Safeguard is fine for what it is, even though everything needs to be run through them and there are no knowledge bases, so we have to wait for a response from the One Identity Safeguard company, and they also keep a lot of information, requiring us to make a request and then they would need to reply, but it's acceptable overall. It's not the worst I've seen.

Positive

I previously used CyberArk before switching to One Identity Safeguard.

The deployment of the solution takes about two to four weeks, give or take, but that's not counting waiting for the client to respond and all that.

About a month of training is required for end-users, and for us, it was four months to understand One Identity Safeguard, but that was because we already had experience in other PAM tools like CyberArk.

We are partners, executive partners, and resellers with this vendor.

My experience with pricing, setup cost, and licensing has been a good experience overall, as the back and forth with One Identity is something that is acceptable; other tools have options to do this automatically, and they have it, but pricing, presales, and sales is acceptable overall.

Before choosing One Identity Safeguard, I evaluated Zero Trust and Delinea, but they were for smaller organizations, so we decided to adopt One Identity Safeguard.

My advice to others looking into using One Identity Safeguard is to get familiar with the concepts of entitlements and access request policies, the keywords One Identity Safeguard uses, and also get familiar with the way that it handles session management and recording because it's a tool that needs a lot of time to get accustomed to. I give One Identity Safeguard an overall rating of eight out of ten.

One Identity Safeguard is used for managing privileged passwords and monitoring sessions, which helps track admin activities and enforce secure access policies for the accounts. This is important for protecting critical resources like systems or applications, thereby improving both security and accountability.

Whenever an admin needs server access, they must request it through One Identity Safeguard. Once approval is granted based on the request, they can access the server, and the session is recorded, keeping everything monitored and controlled.

Whenever an admin accesses a server through One Identity Safeguard, they do not need to know the actual password. The system provides temporary access through the vault, ensuring secure and controlled usage of the applications.

The session monitoring and recordings are the best features of One Identity Safeguard, allowing us to review what actions were performed during a session. This helps us in both troubleshooting and audits.

One Identity Safeguard makes compliance easier and really helps in incident investigation as well as visibility.

One Identity Safeguard has impacted our organization positively because it has helped us standardize how privileged access is managed and has also reduced dependency on manual efforts in password handling, improving operational control overall. It has reduced errors, and the manual efforts have been significantly reduced.

One Identity Safeguard does not require any improvements at this time based on our current usage.

The initial setup of One Identity Safeguard is somewhat tricky and requires proper planning, so this aspect could be simplified.

One Identity Safeguard has been in use for more than three years.

One Identity Safeguard is stable.

From a scalability perspective, One Identity Safeguard is excellent and matches our organization's growth. We have seen a good response from the customer team, who are ready to provide support at any time we require it.

We have found and seen a good response from the end-user and usability of One Identity Safeguard, as it is seamless and works well in our organization.

One Identity Safeguard has been used since day one.

The deployment of One Identity Safeguard took less than one month. It was straightforward, initially taking one or two days, and from this we have seen a smooth transition to One Identity Safeguard with no issues during the deployment.

One-week training was provided for the users and the IT team to ensure they could manage One Identity Safeguard. The end-user access management is smooth as per usability, making for a great experience.

One Identity Safeguard has provided a good return on investment, which comes from the reduced risk of security incidents. Avoiding even one breach can have a significant cost. It has also reduced the time spent on password management, saving our team time in managing privileged accounts, and is helping with automation that reduces manual efforts.

One Identity Safeguard is highly recommended because it is a wonderful solution, providing great usability, great security, and great visibility. One thing I would advise is to ensure your team is properly trained before deployment and plan the architecture and policies carefully, as this will help you get the best result. This review has been given a rating of nine out of ten.