Symantec Identity Governance and Administration Reviews

• User provisioning
• Web services

Enabled enhanced delegated control to application owners and third party support reducing overhead cost to support desk and directory services teams

GUI/Web interface

10+ years.

Numerous. Despite having a Linux/JBOSS version it does not perform at the same level of proficiency as Windows/.NET.

Yes

No

Customer Service:

9 out of 10.

Technical Support:

7 out of 10,

Complex, documentation was inadequate as was professional services.

Combination, and experience for professional services was less than adequate.

We evaluated Novell and Oracle as well, and for our needs this was still the best solution.

Be prepared for issues with the web interface and avoid heavy customization.

• Group management
• Task delegation
• Access granularity

It allowed local departments to manage the people in their own groups, without any help from the IT department.

Better recovery for the application server with the DB connectivity.

Two years.

Yes, at some point CA support repaired the bug.

Yes, sometimes the connection with the DB is lost, and it isn't fully recovered without restarting the server.

No issues encountered.

Customer Service:

7/10.

Technical Support:

7/10.

No previous solution used.

I think it depends on your background, but as soon as you understand the terminology it's not so complex.

We did an in-house implementation.

Engineering and operational.

Do a good gathering of your requirements and make sure you are creating the system architecture it in the right way.

The simplicity, easy installation and configuration.

I worked on this product as a consultant implementing it at various client locations so I cannot really answer this question from my own organization's point of view. But the tremendous value at client locations has been a centralized and simplified identity provisioning and management solution.

Been quite a while since I worked on it so I can't really comment on how far the product has come in the past 2-3 years.

For almost 2 years at various engagements

Nothing major encountered.

None encountered.

No. The product gives flexibility with respect to application servers and databases so scalability more depends on the platform you choose.

Customer Service:

Very good.

Technical Support:

Very good.

Clients I have worked at either didn't have an existing solution or had older versions of the same product.

It is straightforward if you read the product documentation and understand the architecture before your set it up.

The major plus points are simplicity, but do ensure you have the right resources before you implement this product.

Provisioning server and Policy Xpress.

It provides a robust provisioning facility which enables admin configuration. Complex provisioning rules are quick to change when business requirements do.

Workflow engine and workflow configuration. Also, the user interface has a lot of room for improvement.

2 years.

Yes, we encountered many product issues during deployment, and some were identified as product limitations.

So far no, the product works well and it's stable.

Not at this moment.

Customer Service:

The customer representatives of CA are good and they always give quick responses.

Technical Support:

The support is helpful, the response time is fast, and their knowledge is good.

Yes we used Oracle Identity and Oracle Waveset.

Yes the setup is straightforward and it can be done quickly.

I am working within a vendor team.

Yes, Oracle Identity Manager

The ongoing support of the product is extremely important.

• Allows individual users to work in a controlled and secure environment, whereby user authentication, access control, password administration, and smooth workflow are ensured. • Even if a user forgets theirs access information or password, Identity Manager helps users to restore access. This reduces the cost of help-desk support while making the daily operations much smoother. • Large sized organizations require Identity Manager to ensure that their network and systems are secure for use or for access by delegated users. • It ensures that business workflow is in compliance with secure standards of technology infrastructure.

• Cost is the only demerit of Identity Manager because it requires updates of software and technology as users keep multiplying. Identity Manager is also prone to hackers and therefore needs to be regularly checked for security threats and intrusions. • Users must be trained to use the system.

Medium to large sized organizations require Identity Manager in order to allocate their technology costs in a much better way. After a one time heavy installation cost, companies do not need to worry about user password/access issues that may occur on a daily basis.

Manage access certifications for whole company in one place.

We used this product to identify and certify basic access profiles in our company. Created more than 6000 role-based profiles for more than 26,000 colleagues. Profiles can be granted to a user when he starts to work in the company or changes departments and/or functions.

Yes, we found that if you create a certification with a high number of objects, the portal runs slowly. We are working with CA to manage this situation.

Two years.

As noted above, we found that if you create a certification with a high number of objects, the portal runs slowly. We are working with CA to manage this situation.

No.

Always available.

No, this is the first product of its kind for us.

It was not complex. CA and a partner worked with us on the setup.

Our company has a long list of CA products, so the pricing is good for us, given the size of our company. The product was licensed by installation.

Yes, Oracle IAM.

Choose a CA partner who is experienced in implementing this product and establish all Access Manager rules before you start operating the product. The product gives you a a nice overview but it's a good idea to define basic rules to create access profiles and certification.

• Identity
• Lifecycle
• Provisioning

Compliance improvements.

• Cloud integration
• More flexibility and interoperability - how components interact with each other and external components

I have experienced implementing previous versions of the product six years ago.

No issues encountered.

No issues encountered.

No issues encountered.

Customer Service:

9/10

Technical Support:

9/10

Quite straightforward.

I’m part of a consulting team that does the implementation.

I’m aware on qualities of Novell (Netiq) Identity Manager and IBM Security (Tivoli) identity manager. It depends completely on business needs – for some cases one product will fit, for another cases another.

At first, a company should have an IAM strategy and clear vision. Then thorough a vendor comparison matrix to determine what product(s) matches what you need. Only then it will you have an understanding of whether to implement CA or not.

The ability to customise the screen, and create a technical solution suited to the business requirements including delegation, password management and role based access.

Delegated responsibility across to the customers, instead of the organisation maintaining the user. In addition, this also allows user privacy and security to be maintained.

Multiple areas:

• Bulk Load capability
• Services
• Organisation propagation, etc.

I've used it for the last seven years.

Deployment was stable. Only issue was with the policy express and emails which were very dependent on the exact name instead of a tag.

If the product has been tuned, appropriated, and appropriate memory has been allocated, there are no issues with stability.

No issues encountered.

Customer Service:

8/10.

Technical Support:

8/10.

No. We moved from a manual user management system to a delegated user management system.

Provided the requirements are set, the initial setup was straightforward. Subsequent functionality within CA IM is not appropriately documented creating issues.

We used a vendor whose level of expertise was 8/10.

Yes, we also considered using Oracle Identity Manager.

Use an agile approach of delivery if the business is not aware of what it wants.