Symantec Identity Governance and Administration Reviews

I find that the propagation of identities is what is most valuable about the solution.

It would be great if they could enable social media identities. That’s the one thing we would like to have.

I've used it for five years.

The installation was OK. We had some problems with operating it, and because we use other products in the suite it made upgrading more complex. We do have a lot of other of their products also.

We’re only using it for employees, so the stability is handled very well.

We're not putting too many users into the system, so it handles this very well.

Customer Service:

They have been very proactive.

Technical Support:

They have been very proactive.

It was done in-house.

We have a functional need. Therefore it was considered as more of an expense rather than an investment.

We looked at Oracle Identity and Access Management Suite that was the major contender at the time.

I would be clear on what is the price for your customer and their identities. If you are going to manage partners, customers and other entities the numbers can get quite large, so it’s important to understand what you are getting.

We did a number of things in our deployment which made life more difficult on us. All in all it’s a positive relationship. The only concern we have is with the social logins and clouds.

• Identity
• Lifecycle
• Provisioning

Compliance improvements.

• Cloud integration
• More flexibility and interoperability - how components interact with each other and external components

I have experienced implementing previous versions of the product six years ago.

No issues encountered.

No issues encountered.

No issues encountered.

Customer Service:

9/10

Technical Support:

9/10

Quite straightforward.

I’m part of a consulting team that does the implementation.

I’m aware on qualities of Novell (Netiq) Identity Manager and IBM Security (Tivoli) identity manager. It depends completely on business needs – for some cases one product will fit, for another cases another.

At first, a company should have an IAM strategy and clear vision. Then thorough a vendor comparison matrix to determine what product(s) matches what you need. Only then it will you have an understanding of whether to implement CA or not.

• Self-service
• Role-based provisioning
• Access

It's saved on administration time, and reduced the wait time for access. It's also improved our compliance.

• Installation and upgrading is complex
• User Interface

I've used it for six years.

We did have some issues, but we were able to resolve them.

Yes, as Jboss cannot handle too much load.

Yes, when feeding many users.

Customer Service:

It's good.

Technical Support:

It's very good.

No previous solution was used.

It was complex because many servers are needed to follow best practice. Many manual steps are time consuming. If you add the Governance component for full IAG, it will be even more complex, because it is not properly integrated with IdM but more a separate product.

We used a vendor team who had a high level of experience.

We also looked at options from IBM and Oracle.

You should use a vendor team for the design and initial implementation.

The ability to customise the screen, and create a technical solution suited to the business requirements including delegation, password management and role based access.

Delegated responsibility across to the customers, instead of the organisation maintaining the user. In addition, this also allows user privacy and security to be maintained.

Multiple areas:

• Bulk Load capability
• Services
• Organisation propagation, etc.

I've used it for the last seven years.

Deployment was stable. Only issue was with the policy express and emails which were very dependent on the exact name instead of a tag.

If the product has been tuned, appropriated, and appropriate memory has been allocated, there are no issues with stability.

No issues encountered.

Customer Service:

8/10.

Technical Support:

8/10.

No. We moved from a manual user management system to a delegated user management system.

Provided the requirements are set, the initial setup was straightforward. Subsequent functionality within CA IM is not appropriately documented creating issues.

We used a vendor whose level of expertise was 8/10.

Yes, we also considered using Oracle Identity Manager.

Use an agile approach of delivery if the business is not aware of what it wants.

The simplicity, easy installation and configuration.

I worked on this product as a consultant implementing it at various client locations so I cannot really answer this question from my own organization's point of view. But the tremendous value at client locations has been a centralized and simplified identity provisioning and management solution.

Been quite a while since I worked on it so I can't really comment on how far the product has come in the past 2-3 years.

For almost 2 years at various engagements

Nothing major encountered.

None encountered.

No. The product gives flexibility with respect to application servers and databases so scalability more depends on the platform you choose.

Customer Service:

Very good.

Technical Support:

Very good.

Clients I have worked at either didn't have an existing solution or had older versions of the same product.

It is straightforward if you read the product documentation and understand the architecture before your set it up.

The major plus points are simplicity, but do ensure you have the right resources before you implement this product.

Manage access certifications for whole company in one place.

We used this product to identify and certify basic access profiles in our company. Created more than 6000 role-based profiles for more than 26,000 colleagues. Profiles can be granted to a user when he starts to work in the company or changes departments and/or functions.

Yes, we found that if you create a certification with a high number of objects, the portal runs slowly. We are working with CA to manage this situation.

Two years.

As noted above, we found that if you create a certification with a high number of objects, the portal runs slowly. We are working with CA to manage this situation.

No.

Always available.

No, this is the first product of its kind for us.

It was not complex. CA and a partner worked with us on the setup.

Our company has a long list of CA products, so the pricing is good for us, given the size of our company. The product was licensed by installation.

Yes, Oracle IAM.

Choose a CA partner who is experienced in implementing this product and establish all Access Manager rules before you start operating the product. The product gives you a a nice overview but it's a good idea to define basic rules to create access profiles and certification.

Provisioning server and Policy Xpress.

It provides a robust provisioning facility which enables admin configuration. Complex provisioning rules are quick to change when business requirements do.

Workflow engine and workflow configuration. Also, the user interface has a lot of room for improvement.

2 years.

Yes, we encountered many product issues during deployment, and some were identified as product limitations.

So far no, the product works well and it's stable.

Not at this moment.

Customer Service:

The customer representatives of CA are good and they always give quick responses.

Technical Support:

The support is helpful, the response time is fast, and their knowledge is good.

Yes we used Oracle Identity and Oracle Waveset.

Yes the setup is straightforward and it can be done quickly.

I am working within a vendor team.

Yes, Oracle Identity Manager

The ongoing support of the product is extremely important.

• Allows individual users to work in a controlled and secure environment, whereby user authentication, access control, password administration, and smooth workflow are ensured. • Even if a user forgets theirs access information or password, Identity Manager helps users to restore access. This reduces the cost of help-desk support while making the daily operations much smoother. • Large sized organizations require Identity Manager to ensure that their network and systems are secure for use or for access by delegated users. • It ensures that business workflow is in compliance with secure standards of technology infrastructure.

• Cost is the only demerit of Identity Manager because it requires updates of software and technology as users keep multiplying. Identity Manager is also prone to hackers and therefore needs to be regularly checked for security threats and intrusions. • Users must be trained to use the system.

Medium to large sized organizations require Identity Manager in order to allocate their technology costs in a much better way. After a one time heavy installation cost, companies do not need to worry about user password/access issues that may occur on a daily basis.