Symantec Privileged Access Manager Reviews

The tool helps us manage local, domain, and service accounts. It helps us meet compliance standards.

The fact the password is changed after each checkout beats changing passwords manually every few months.

I would definitely like to see improvements in the documentation. It is very plain and doesn't provide details. They are no screenshots either.

We owned this product for about three years. I took over the project about six months ago.

I did not encounter any issues with stability.

I did not encounter any issues with scalability.

Few people I've dealt with know the product well. They are not very helpful. Some technical support team members don't have much knowledge.

I don't think DSS used any other solution prior to this.

I didn't do the initial setup, so I can't answer this question.

I'm the admin and do not know anything about pricing and licensing.

I personally have used RPM and think it is more user-friendly.

Be prepared to call tech support a lot because the documentation is almost worthless.

Access control and Password Management, because almost every customer wants to protect and audit their server(s), as well as their credentials.

When a customer uses CA PAM, they can control who can access their server and what they do. So they feel more comfortable when using outsourced engineers to manage their assets.

Reporting, Logging, and support recording for Web App using Java.

Now, the reporting feature on CA PAM only shows the basic information in white-black table format. If I’m a customer, I like to see the reports with colorful charts and pictures.

About the Web App using Java:

Currently, CA PAM only can record and work with a Web Console that doesn't use Java. If a Web Console uses Java and has a pop-up, CA PAM can’t do a recording.

Over three years. I used it before CA acquired Xceedium.

The CA PAM appliance works stably. I didn’t see many errors related to stability.

Not yet.

I appreciate CA technical support. They respond quickly.

No, I didn’t.

Simple for me.

No, I didn’t.

The CA PAM product can help companies/organizations who looking are for Privilege Access Management. CA PAM is an industry leader; a powerful, easy to use solution.

It offers access control of privileged accounts.

It has simplified and unified the access of the users to a single point of access. It grants access identity to privileged accounts.

I would like to see improvements in branding customization and multi-tenancy.

We have been using this solution for six months

The solution is not implemented for end users, so we haven't had any problems so far.

There were no issues with scalability.

Technical support is very good.

We did not use a different solution before.

The initial was setup straightforward and simple. The solution does not need any complex customization to deploy and start using it.

Just measure all the necessities before starting and all will be okay.

Keep in mind that the product can be implemented quickly, but it depends on how fast you can provide information.

Session Recording: This feature is very useful and powerful. This application is very easy, fast, and trustworthy!

This product allows the administrator of users control of the vault of passwords, in the sense that is known who are the privileged users and who has the power to close the session for security issues.

The answer for the requirements of the users is faster and stable. The Session Recording function in audits is accurate and functional.

The integration with AS/400 Endpoint via Transparent Login could be better and useful for some users.

Almost one year.

Not yet.

Not yet.

Good.

No.

The deployment was straightforward, and the provisioning, too. In general, it's not complicated to work with this solution.

They can request a trial, and if the results are positive, make a PoC.

We are a partner of CA. The tests were only executed for this product (CA PAM).

Try the product.

• Session Management (Session Control and Recording)
• Very good in reliability
• Deployment Model: Available in both hardware and software appliance with one step installation only

Not applicable. I’m distributor of this product, not an end user.

Live session

GUI command keystroke and filtering

Session limitation

Live Session is a common feature now on PAM technology. By having this feature, an Administrator can monitor on live session about a privileged user activity, same like what we saw in CCTV. CA should add this feature on their PAM product, then they can compete with competitors.

Command keystroke and filtering on GUI session is needed to record and filter which commands allowed or not allowed privileged user work on GUI sessions, i.e., RDP Windows. By having this feature an Administrator can prevent dangerous commands when a privileged user on an RDP Session and open PowerShell or Windows Command or Database Engine CLI (MySQL, Oracle, etc.)

Session limitation is a very critical feature that cannot be addressed by CA PAM. By having this feature, only one username can allowed to login to the PAM dashboard at the same time and prevent another person to login using the same username (sharing password/username).

I have used this solution for two years.

There were no issues with stability.

There were no issues with scalability.

I would give technical support a rating of four out of five.

We did not use a solution before this one.

The initial setup was straightforward and very easy to setup.

There is a combination of user and target devices pricing/licensing. There is no point to charge on target device pricing for 1000+ target devices. I would suggest charging for user percentages.

I’m very satisfied with the product.

Monitoring privileged users’ actions is valuable because of the high level of trust and wide-ranging access insiders typically enjoy. The impact of an insider breach incident can be quite high.

• Integrates your management

Customers want simultaneous monitoring of users’ actions, so a manager can block the session immediately in case of a user violation.

I have used it for six years.

We had some issues with the load balancing feature when configured for clustering.

We have not encountered any scalability issues.

Technical support is average.

We did not previously use a different solution.

Initial setup was simple because of the rule-based configuration.

Reduce the price by subdividing the license bundle.

Before choosing this product, we did not evaluate other options.

It is the best solution for managing privileged users.

Access management and security compliance.

It started with the basic features, and gradually they added SCP, FTP, and also the API calls that helped us to meet the Automation at our end.

Role mapping, high availability, coverage of more important AWS data centers in Frankfurt.

I've used this solution for three years

It has been reliable down the line with new features and updates.

Yeah, it still does not support HA in Multi AZ subnets.

Yeah, it's great. I would give it a nine out of 10.

We selected it after the evaluation of multiple products.

It's easy to configure and with the help of their documentation, one can easily do that.

Yeah, this is an expensive product.

It's confidential.

I would say definitely to use it if you've got a high number of systems and are concern about security.

The solution has the capability to address hybrid eco-systems, both on-premises and cloud services. Most of the high privileges now include tenant administrator credentials.

Integration with the AD RBAC model is also a great feature, as we can tie it to the central repository.

The FIPS-140-2 certification is really a nice option with every governmental response.

The solution allows us to ease the risks and headaches with administrators turning to our IT team.

I would like the ability to provision through a real REST API. Perhaps this could be SCIM-PAM, once it is certified.

We have used this solution for more than a year for training, PoC, and laboratory use cases.

Some rollover credentials often do not work or you need a more complex configuration.

There were no issues with scalability.

Technical support has yet to be included completely in the CA Support.

Some rollover scenarios can complex to achieve.

We evaluated Sudo-AD and CyberArk.

Have a good view of their role model and critical assets.