Symantec Identity Governance and Administration Reviews

It has improved our user management. It is definitely streamlined.

Writing policies and provisioning are easy.

Policy writing and provisioning are easy, but should be improved. Provisioning has a dependency on Windows.

No, we have not.

No, we have not.

 I would say they are good, but there is always room to improve.

Yes, custom codes. It was not as reliable as CA Identity Manager.

It was complex with lots of requirements.

It is expensive, same as the other tools in the market.

I prefer Oracle Identity Manager, which is more stable. 

Get the latest version and good architecture before implementing the solution.

This product is the main application for governance to identity and coordinate the application for a business process, improve the compliance certification, and have better risk management.

• Governance
• Identity

This product has helped us to have better rules for the application and grow the business process. We can then implement these rules in the product to have automated contracts. 

We would like to see integration with analytics. Also, for them to be more efficient regarding discovering and implementing new rules.

It is too soon to rate them as we are currently working with them for our implementation.

Our primary use case of this solution is for managing identities and environment controllers in order to make it more unified and standard. 

I like that it is easy to diagnose. It has a version of a virtual appliance so we can download it, run it, configure it, and it would take about 10 to 15 minutes to configure the cluster or so.

It's easy to deploy, it's two versions, the manual deployment version, if it can be prepared in clusters it'll take one or two days. But the software appliance will take from 15 to 20 minutes.

They should easier and better integration with other software. It's hard to create custom integration rules with other software, like Oracle. This needs to be improved to give the customer an easier way to integrate.

I have been using this solution for the past two to three years. 

It is stable. If I had to rate the stability from one to ten, I would give it an 8.5.

Technical support from CA is not very good. I would give them a seven out of ten for their assistance and their knowledge. They could use improvement. 

I would rate it an eight out of ten.

To make it a ten, it should have more remote capabilities. There should be better partnerships with remoting tools. They need more remote partners and better dashboards.

The product is easy to install, setup and configure. For me the ease of installation and configuration was most valuable as my experience with earlier Oracle Identity Manager products was slightly tedious. Things might be different now with Oracle products though. Also, CA provided a long list of standard connectors which did not require too much of customization and it suited well with the customer.

For the customer, the product provided an easy to use GUI for user-account centralization and auto-maintenance of accounts on different end points (target systems). Much of the manual tasks such as sending mails for approval and requests were reduced greatly. The amount of helpdesk calls were greatly reduced due to self-service tasks provided by the product.

With the new age products such as Dell, Forgerock, and Ping, and the change in demands of the customer, CA needs to do a lot more. For example, Dell IM provides built-in features with governance in mind, although they also provide a separate product called IM with governance edition.

The GUI in CA is more complicated where a user might have to drill down more into the menu to find the real form. Also, during configuration for a new person it's a tough deal to drill into the menus to find the place to actually setup.

CA came up with SIGMA to be better on GUI and scalability, but it had a lot of issues and poor scalability in both versions. I lost one bid purely based more on the poorer GUI provided by CA, and due to the fact that SIGMA did not provide things which were asked by the customer and did not provide scope of much customization either, so I did not understand the use of the product. I am not aware if SIGMA is officially launched now or not.

I've used it for around three years.

Migrating and comparing objects using the add-on tool Config Xpress has its own challenges, we had some issues when we connected the two development and production environments and tried comparing. We used it the other way, i.e exporting the environment XML files which was indeed time consuming.

Overall, it's quite a stable product.

I would 3.5/5 as it was good, but with some slight delay.

I have used Oracle's product, and am currently also using Dell. My previous customer moved from Oracle to CA purely due to cost factor. With a simple requirement, I would still use CA, but with newer customer demands. CA has to come up with new features which other vendors provide and tune up the GUI.

It's a very straightforward process, very easy to use.

I have implemented it both with a vendor team and an in-house one as well. Implementation is straightforward, you just need to read the manuals provided by CA which says it all from installation and configuration to tuning.

I haven't actually dealt with the licensing costs etc. but i know it's cheaper than Oracle, but more expensive than Dell/Microsoft/Forgerock.

As with all products, this has its pros and cons please do a study of other products based on your requirements before deciding on a product.

It gives us the ability to automate the IAM process.

• Automating the process for new employees, removing employees, and so on
• Self-service to grant access for applications and software
• Delegate some functions to the help desk
• Type group for some people with the same functions in the company

The provisioning manager could use improvements.

I've used it since 2008.

No issues encountered.

No issues encountered.

No issues encountered.

9/10

9/10

No previous solution was used.

The initial set-up was standard.

We used CA Spain.

It's very high.

Good prices and services.

We did, but I don't know which ones.

You should know well your company's HR processes and rules to control the automation process.

We use the solution for general life cycle management, account provisioning and six petition processes, the regular IGA stuff.

I feel the provisioning to be done well. The model offered is very good and customizable. 

The interfaces need to be revamped. They are too antiquated. This is the biggest issue I can think of.

I rate the support as a solid C. Of primary concern is that there are not too many people employed nowadays with the requisite support knowledge. Since we are talking about an increasingly antiquated product, it is likely neither easy, nor desirable, to train support staff with the requisite knowledge. The support at the moment is not very efficient. 

It would be nice to see a size version of the solution, a cloud version. 

The solution is not the best or the fastest available. 

The solution is rather stable, but not remarkably so, as there are certain persistent bugs which tend to be present from one version to the next. 

The initial setup is rather complex. While they've made efforts to improve this and there's a separate version that comes with a pre-package model, the process remains, nevertheless, complex. 

We have been using Symantec Identity Governance and Administration for 10 years.

The solution is rather, but not remarkably, stable, as it is plagued by a number of bugs which persist from one version to the next. 

The solution is easy to scale. It requires a certain amount of configuration which surpasses the norm, but it takes a rather nice load. 

The support could be greatly improved. As the solution is becoming increasingly antiquated, there does not seem to be a capability or a desire to provide support staff with the adequate knowledge. It is inefficient. This is why I rate it a C. 

In spite of the efforts that have been made to improve the initial setup process, and the inclusion of a separate version that comes with a pre-package model, I still find it to be rather complex. 

I used to work for the vendor and this is how I acquainted myself with the deployment process. 

While the deployment does not entail specific maintenance, it does a certain amount of data maintenance, as is required of any product. One must monitor his processes and ensure that everything is running smoothly. While this will, obviously, depend on the number of integrations one has, it is no different in this respect than that of a regular application, the only difference being the tendency to be more critical to the general infrastructure. 

We have four or five people responsible for the maintenance. 

I do not recall the approximate prices or licensing models, although I do so that it was priced per user number. As there were certain drastic cutoffs depending on the volumes, the values had much variance. 

I am not certain of the number of users who are making use of the solution in our organization, although I believe there to be four or five when it comes to my European colleagues. Globally, there are probably more. 

I would recommend this solution to others, since it gets the job done. While it may not be the best or the fastest solution, it is a work machine, so it is good enough. 

I rate Symantec Identity Governance and Administration as a seven out of ten. 

I use the user record (a permanently stored data element), self-service features (access requests, application access, remove/change users), and the rules and entitlements for users.

These features really help our organization because they are the best features available for managing users.

The only issue we have is that sometimes we have an issue related to the Microsoft integration. That impacts Identity Manager's performance, and it's something we need.

I've been using it for four years.

No issues with deployment.

Most of the time, because we do a lot of testing, it seems to be in good shape, and as far as I can see there's no problem at all with stability.

We have issues with scalability, and it has taken time due to the requirement of extra memory and more CPU.

Very well, as I have been working with these people for a while. I have never had any issues with the technical support. They support us 24/7 and are really good.

The initial set up was complex because we had a lot of documentation. We had to look at our system first and see the platform with other products. It takes a while to build and for it to work with our sandbox, but eventually it was fine. Although it did take time initially, after that it was a cake walk.

It was all done in-house, but again the technical support was there when required.

We saw other options in the market, but the technical support of CA made the difference. This is why we chose the product. If the system is down, someone could help us and this was an important factor.

I don't see any issues with CA, and everyone in the business is happy with CA and their support. Everything is good.

We use the product for advanced authentication, identity and access management, and governance.

The product’s most valuable feature is flexibility. It can be customized as per the customer’s requirements.

The product works slowly while accessing cloud-native solutions. They should work on their ability to integrate with third-party vendors. Additionally, cloud networking features and Azure, AWS, and GCP integration are needed.

We have been using Symantec Identity Governance and Administration for several years.

The product is stable.

The price is flexible for our existing customers.

We have evaluated many open-source tools.

I rate Symantec Identity Governance and Administration a six out of ten. It is suitable for enterprise customers.