I have been working with the new services and don't see any additional issues at this hour. The key requirement is to have people who understand not only the tool but also the concepts and how to view it from an architectural perspective. One problem is that people may not know how to work with the tool, and another is that they don't understand the concepts. So, I think focusing on proof of concepts is good. For example, what I do at first is request information for identity providers and key management services. I rate the overall solution a nine out of ten.
I recommend the solution to those planning to use it. I suggest that CyberArk's potential users invest in getting their own IT environments working perfectly before involving a team of CyberArk-certified engineers since it makes the process a lot easier. If you don't follow the aforementioned steps, then you will find yourself going back and forth to the product's support team, which will take you ages because they take time to respond. I rate the overall solution a seven out of ten.
One or two administrators are more than enough to operate the solution. A backup strategy and DR setup are more than enough to implement CyberArk Enterprise Password Vault. Overall, I rate CyberArk Enterprise Password Vault an eight out of ten.
Learn what your peers think about CyberArk Privileged Access Manager. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
Users will clearly understand the solution once they go through the architecture diagram. To connect to the target systems and view the accounts, view the session recordings, and check if the system health of all the components is working well. Any admin-related task will be done in the web portal, Password Vault Web Access, a separate component in CyberArk. CyberArk is one of the better solutions which users will want to implement in their organization for securing their privileged accounts and access, and session monitoring for auditing. If they can deploy CyberArk, it's a good product.
I would rate the product an eight out of ten. We only have the licensing contract with the product and everything else is managed in-house with a team size of four members.
Node.js Backend Developer at a tech services company with 1,001-5,000 employees
Real User
Top 20
2023-05-04T20:04:53Z
May 4, 2023
I rate CyberArk Enterprise Password Vault eight out of 10. It's more expensive than Azure Key Vault, but Key Vault doesn't have CyberArk's analytics and user tracking. I recommend CyberArk if you need those features. However, it's costly in the Brazilian market because of the conversion fro reals to dollars.
I would rate the product a ten out of ten. We recommend this product for enterprise customers. The tool’s pricing and operation are a problem for small customers. They need to opt for Software as a Service. Companies need to install this product since they have a lot of accounts and passwords.
We are using a privileged cloud and an on-prem cloud, an on-prem APD. We have a hybrid setup. I'd advise potential new users to have very good scripting at the outset. If you don't, you'll have difficulties in the long run. While the solution is expensive, it's excellent. I would rate it ten out of ten. You definitely get what you pay for.
Pre sales Engineer (West Africa) at StarLink - Trusted Security Advisor
Real User
2022-10-12T08:04:04Z
Oct 12, 2022
I rate the solution nine out of ten. The solution is good, but the main feature to be improved is having the product in a consolidated software bundle. So the moment we have PSM, it's a dedicated server. We can also have a PVWA in another server, so having a singular bundle is just like the cloud offering. The infrastructure is abstracted from the end user. So if we can have something like that for on-premises, that would simplify implementation. Regardless it's a good solution, it works, and the bank is happy with it. My recommendation to people considering implementing this product is to get the scoping appropriately done. It comes down to scoping the initial deployment, so it doesn't take forever. Still, if you're not scoping correctly, you could have a situation where people keep adding new accounts continuously, and your project never ends. Hence, scoping is kind of important.
My company has various levels of partnership with CyberArk. I'm typically using the latest version of the solution. CyberArk sunsets their older versions very quickly. They won't let you use the old versions. CyberArk has many components. Password Vault is one of the components. Then there is the CyberArk for server monitoring and logging. These are the two components that we have used extensively. However, apart from that, there are many more applications for CyberArk also, which I haven't used at the moment. To those considering the solution, I would say when you do the installation, to get on a call with technical support. Keep them on hold. If you are really doing it for the first time and are not aware of the software, you may run into issues. The public forum of CyberArk is not that good. Their documentation is not that great, and it's not that well maintained. The problems that you may face are seldom covered. Therefore, when you are paying that much money for high-quality software, you can at least ask for better help from them. I'd rate the solution nine out of ten.
Manager Engineering at a comms service provider with 1,001-5,000 employees
Real User
2022-05-26T11:44:00Z
May 26, 2022
I rate CyberArk Enterprise Password Vault nine out of 10. If you're worried about privileged ID management, security, and scalability, you should go with CyberArk.
Information Security Engineer II at a healthcare company with 1,001-5,000 employees
Real User
2022-03-23T00:30:37Z
Mar 23, 2022
We're using version 11.1 of CyberArk Enterprise Password Vault. It's probably not fair to judge CyberArk Enterprise Password Vault based on my overall experience with it, because the tool itself is brilliant, though it's a little bit complex in terms of how it is set up. The customer service could still be improved to meet the standards, but I'm giving CyberArk Enterprise Password Vault a score of seven out of ten.
Program Manager at a recruiting/HR firm with 5,001-10,000 employees
Real User
2021-12-16T04:19:00Z
Dec 16, 2021
I rate Password Vault 10 out of 10. If you're planning to implement Password Vault, my advice is to just let it work. Do all your use cases up front, and make sure you throw everything at them that you think will happen in your environment. Make sure that that's all addressed, so when you go to deployment, it's just easy.
I would rate Password Vault seven out of 10. I'd only go that low because of how challenging the installation can be. I advise our customers to consider using CyberArk's cloud option because many people just reflexively lean toward the on-prem solution. The cloud solution is considerably less expensive. It's still complex to set up the different components and make it all work together, so I suggest you make sure you need all those components. Maybe you don't even want to use everything there, but consider the cloud version. It's the same product, but it's more straightforward and cost-effective. You're not losing any functionality.
Our laptops are containerized, we don't see what antivirus is on there. Our organization strips out all bloatware. If it is not sanctioned or proprietary, we don't use it. Try to complete as much of the CyberArk training as possible. I would rate CyberArk Enterprise Password Vault a nine out of ten.
CyberArk Password Vault is probably the top vault on the market and Thycotic would be a close second. CyberArk is not always suited for our clients but it is the best solution. Eight out of 10 organizations don't implement it. Just because you know CyberArk doesn't mean you understand it. The SaaS solution is sound but the on-premises is primarily what I have worked on. I am CyberArk certified. When I started off several years ago, I got my CIS as PE. I was put into a security group in EDS. Network admins who work for the company have to be administrators, with high skill levels. Before implementing CyberArk, I would say do a very aggressive use case creation of everything that you're expecting the vault to do. The security architecture should be able to create high-level bulleted use cases. Security administration should be able to take it down to the next level of detail. They will have to add Conjure, which is another license for CyberArk. I would rate this solution a nine out of ten.
Manager Engineering at a comms service provider with 1,001-5,000 employees
Real User
2020-07-15T07:11:38Z
Jul 15, 2020
Overall, I feel that this is a good product and I recommend it. The only thing that people have to consider is pricing. I would rate this solution an eight out of ten.
Director at a tech services company with 11-50 employees
Reseller
2020-07-05T10:00:00Z
Jul 5, 2020
The most important phase is the discovery phase. Pay the most attention to that. Spend the most amount of time on the discovery phase, which is really the startup planning. The project becomes smoother. Book stricter guidelines on timelines and let there be a senior sponsor part of the project so that you are able to get milestones addressed quickly otherwise, these projects tend to drag longer. In the next release, I would like to have the cloud option and all of the features that come with it. I would rate CyberArk a nine out of ten.
Security Architect at a financial services firm with 10,001+ employees
Real User
2020-06-25T10:49:31Z
Jun 25, 2020
My advice for anybody who is implementing this product is to get the admins familiar with the setup. They have to learn how to get the process approved, especially in an ad-hoc scenario. The scheduled changes are ok, but the ad-hoc ones can be a little bit problematic if you don't have enough approvals ready to approve access. If an organization can afford it then the Cyberark Enterprise Password Vault works well. I would rate this solution a nine out of ten.
Identity and Access Management Advisor at a energy/utilities company with 5,001-10,000 employees
Real User
2019-12-15T09:11:00Z
Dec 15, 2019
Use the tool, but communicate with your user base. If you're not going to communicate with your user base, then you're dead in the water already. Don't force this on someone. Work with them in order to use it. The product has delivered innovation with each update. When I first started, we weren't able to run scans and pull service-account information and reset those service accounts at any endpoint. That, as a whole, as I mentioned earlier, was my favorite feature of the product. That innovation alone is probably one of my favorites, and definitely something that deserves praise. I would rate the product a nine because nobody gets a 10. It's been a fantastic product and it's been easy to use. The training courses involved have been great, so I would rate it a nine. I wouldn't say CyberArk has been a huge impact on my career, but it's definitely played a role in helping me advance, in terms of being able to communicate with clients, utilizing my skill sets, both the technical and soft-skill use. It's allowed me to really branch out and see my growth through business liaison.
Pre-sales Engineer at StarLink - Trusted Security Advisor
Real User
2019-11-07T10:35:00Z
Nov 7, 2019
I have learned that the deployment can be tricky. Always plan your deployment in phases. Don't unload all of your privilege credentials at once, otherwise, you have an issue with the passwords. Always, have help available on standby when you are deploying this solution to prevent issues. This solution is quite efficient. You don't always have to have your applications. If you are encrypting the server, you don't need the applications. You are required to do it on your workstation. The server will deliver that to you from the managing pack when you try to implement the sessions. I would rate this solution an eight out of ten.
Consultant at a financial services firm with 5,001-10,000 employees
Real User
2019-11-07T10:35:00Z
Nov 7, 2019
My advice would be to compare with other products and if they don't want such a large solution they could try Fudo or a similar solution that is easier and can scale like CyberArk. I would rate this solution a nine out of ten.
We use the on-premises deployment model. In terms of advice, I'd suggest others follow the implementation carefully. I'd rate the solution eight out of ten. It's not easy to install and it's got too many components which means it's not really suitable for small or medium-sized businesses.
You have to analyze the target hosts that you have in your organization and understand what is the scope of your project. You have to make a very clear plan for the project and CyberArk infrastructure sizing. Then you have to do a very good job with the project management and collaborate with the privileged accounts stakeholders. With all that in mind, you can go ahead with CyberArk. Be careful with the configuration. When you make changes and so on, be very careful to understand what you are doing. Plan and test what you are doing in a test environment before switching to production. I would rate CyberArk as nine out of ten. Ten means that it's the best solution on the market and no one else compares to it. However, before giving them a ten, they should do something related to the Password Vault utility. Maybe they should add some other features too. For me, it is one of the best tools on the market, so nine is enough for now.
Works at a pharma/biotech company with 5,001-10,000 employees
Real User
2019-02-14T07:37:00Z
Feb 14, 2019
I would rate this solution a 9.5 out of ten. To get it to a ten it should give other possibilities to select if you could follow the keystrokes. It should have a flexibility with things in which people can use it a lot faster.
CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.
CyberArk Privileged Access Manager possesses...
I have been working with the new services and don't see any additional issues at this hour. The key requirement is to have people who understand not only the tool but also the concepts and how to view it from an architectural perspective. One problem is that people may not know how to work with the tool, and another is that they don't understand the concepts. So, I think focusing on proof of concepts is good. For example, what I do at first is request information for identity providers and key management services. I rate the overall solution a nine out of ten.
I would recommend using it. Overall, I would rate the solution a nine out of ten. It's a very complete solution for what we need.
I rate the product a seven out of ten.
I rate the solution a nine out of ten.
I recommend the solution to those planning to use it. I suggest that CyberArk's potential users invest in getting their own IT environments working perfectly before involving a team of CyberArk-certified engineers since it makes the process a lot easier. If you don't follow the aforementioned steps, then you will find yourself going back and forth to the product's support team, which will take you ages because they take time to respond. I rate the overall solution a seven out of ten.
One or two administrators are more than enough to operate the solution. A backup strategy and DR setup are more than enough to implement CyberArk Enterprise Password Vault. Overall, I rate CyberArk Enterprise Password Vault an eight out of ten.
Users will clearly understand the solution once they go through the architecture diagram. To connect to the target systems and view the accounts, view the session recordings, and check if the system health of all the components is working well. Any admin-related task will be done in the web portal, Password Vault Web Access, a separate component in CyberArk. CyberArk is one of the better solutions which users will want to implement in their organization for securing their privileged accounts and access, and session monitoring for auditing. If they can deploy CyberArk, it's a good product.
I would rate the product an eight out of ten. We only have the licensing contract with the product and everything else is managed in-house with a team size of four members.
I rate CyberArk Enterprise Password Vault eight out of 10. It's more expensive than Azure Key Vault, but Key Vault doesn't have CyberArk's analytics and user tracking. I recommend CyberArk if you need those features. However, it's costly in the Brazilian market because of the conversion fro reals to dollars.
I would rate the product a ten out of ten. We recommend this product for enterprise customers. The tool’s pricing and operation are a problem for small customers. They need to opt for Software as a Service. Companies need to install this product since they have a lot of accounts and passwords.
We are using a privileged cloud and an on-prem cloud, an on-prem APD. We have a hybrid setup. I'd advise potential new users to have very good scripting at the outset. If you don't, you'll have difficulties in the long run. While the solution is expensive, it's excellent. I would rate it ten out of ten. You definitely get what you pay for.
I rate the solution nine out of ten. The solution is good, but the main feature to be improved is having the product in a consolidated software bundle. So the moment we have PSM, it's a dedicated server. We can also have a PVWA in another server, so having a singular bundle is just like the cloud offering. The infrastructure is abstracted from the end user. So if we can have something like that for on-premises, that would simplify implementation. Regardless it's a good solution, it works, and the bank is happy with it. My recommendation to people considering implementing this product is to get the scoping appropriately done. It comes down to scoping the initial deployment, so it doesn't take forever. Still, if you're not scoping correctly, you could have a situation where people keep adding new accounts continuously, and your project never ends. Hence, scoping is kind of important.
My company has various levels of partnership with CyberArk. I'm typically using the latest version of the solution. CyberArk sunsets their older versions very quickly. They won't let you use the old versions. CyberArk has many components. Password Vault is one of the components. Then there is the CyberArk for server monitoring and logging. These are the two components that we have used extensively. However, apart from that, there are many more applications for CyberArk also, which I haven't used at the moment. To those considering the solution, I would say when you do the installation, to get on a call with technical support. Keep them on hold. If you are really doing it for the first time and are not aware of the software, you may run into issues. The public forum of CyberArk is not that good. Their documentation is not that great, and it's not that well maintained. The problems that you may face are seldom covered. Therefore, when you are paying that much money for high-quality software, you can at least ask for better help from them. I'd rate the solution nine out of ten.
I rate CyberArk Enterprise Password Vault nine out of 10. If you're worried about privileged ID management, security, and scalability, you should go with CyberArk.
We're using version 11.1 of CyberArk Enterprise Password Vault. It's probably not fair to judge CyberArk Enterprise Password Vault based on my overall experience with it, because the tool itself is brilliant, though it's a little bit complex in terms of how it is set up. The customer service could still be improved to meet the standards, but I'm giving CyberArk Enterprise Password Vault a score of seven out of ten.
I rate CyberArk Enterprise Password Vault an eight out of ten.
I would rate this solution eight out of ten.
I rate Password Vault 10 out of 10. If you're planning to implement Password Vault, my advice is to just let it work. Do all your use cases up front, and make sure you throw everything at them that you think will happen in your environment. Make sure that that's all addressed, so when you go to deployment, it's just easy.
I would rate Password Vault seven out of 10. I'd only go that low because of how challenging the installation can be. I advise our customers to consider using CyberArk's cloud option because many people just reflexively lean toward the on-prem solution. The cloud solution is considerably less expensive. It's still complex to set up the different components and make it all work together, so I suggest you make sure you need all those components. Maybe you don't even want to use everything there, but consider the cloud version. It's the same product, but it's more straightforward and cost-effective. You're not losing any functionality.
Our laptops are containerized, we don't see what antivirus is on there. Our organization strips out all bloatware. If it is not sanctioned or proprietary, we don't use it. Try to complete as much of the CyberArk training as possible. I would rate CyberArk Enterprise Password Vault a nine out of ten.
I did not like the solution at all and I was happy when we stopped using it. I rate CyberArk Enterprise Password an eight out of ten.
I would rate CyberArk Enterprise Password Vault an eight out of ten.
I would definitely recommend CyberArk Enterprise Password Vault. On a scale from one to ten, I would give this solution a rating of eight.
CyberArk Password Vault is probably the top vault on the market and Thycotic would be a close second. CyberArk is not always suited for our clients but it is the best solution. Eight out of 10 organizations don't implement it. Just because you know CyberArk doesn't mean you understand it. The SaaS solution is sound but the on-premises is primarily what I have worked on. I am CyberArk certified. When I started off several years ago, I got my CIS as PE. I was put into a security group in EDS. Network admins who work for the company have to be administrators, with high skill levels. Before implementing CyberArk, I would say do a very aggressive use case creation of everything that you're expecting the vault to do. The security architecture should be able to create high-level bulleted use cases. Security administration should be able to take it down to the next level of detail. They will have to add Conjure, which is another license for CyberArk. I would rate this solution a nine out of ten.
Overall, I feel that this is a good product and I recommend it. The only thing that people have to consider is pricing. I would rate this solution an eight out of ten.
The most important phase is the discovery phase. Pay the most attention to that. Spend the most amount of time on the discovery phase, which is really the startup planning. The project becomes smoother. Book stricter guidelines on timelines and let there be a senior sponsor part of the project so that you are able to get milestones addressed quickly otherwise, these projects tend to drag longer. In the next release, I would like to have the cloud option and all of the features that come with it. I would rate CyberArk a nine out of ten.
My advice for anybody who is implementing this product is to get the admins familiar with the setup. They have to learn how to get the process approved, especially in an ad-hoc scenario. The scheduled changes are ok, but the ad-hoc ones can be a little bit problematic if you don't have enough approvals ready to approve access. If an organization can afford it then the Cyberark Enterprise Password Vault works well. I would rate this solution a nine out of ten.
Use the tool, but communicate with your user base. If you're not going to communicate with your user base, then you're dead in the water already. Don't force this on someone. Work with them in order to use it. The product has delivered innovation with each update. When I first started, we weren't able to run scans and pull service-account information and reset those service accounts at any endpoint. That, as a whole, as I mentioned earlier, was my favorite feature of the product. That innovation alone is probably one of my favorites, and definitely something that deserves praise. I would rate the product a nine because nobody gets a 10. It's been a fantastic product and it's been easy to use. The training courses involved have been great, so I would rate it a nine. I wouldn't say CyberArk has been a huge impact on my career, but it's definitely played a role in helping me advance, in terms of being able to communicate with clients, utilizing my skill sets, both the technical and soft-skill use. It's allowed me to really branch out and see my growth through business liaison.
We're a partner of CyberArk. I'd rate the solution nine out of ten.
I have learned that the deployment can be tricky. Always plan your deployment in phases. Don't unload all of your privilege credentials at once, otherwise, you have an issue with the passwords. Always, have help available on standby when you are deploying this solution to prevent issues. This solution is quite efficient. You don't always have to have your applications. If you are encrypting the server, you don't need the applications. You are required to do it on your workstation. The server will deliver that to you from the managing pack when you try to implement the sessions. I would rate this solution an eight out of ten.
My advice would be to compare with other products and if they don't want such a large solution they could try Fudo or a similar solution that is easier and can scale like CyberArk. I would rate this solution a nine out of ten.
We use the on-premises deployment model. In terms of advice, I'd suggest others follow the implementation carefully. I'd rate the solution eight out of ten. It's not easy to install and it's got too many components which means it's not really suitable for small or medium-sized businesses.
You have to analyze the target hosts that you have in your organization and understand what is the scope of your project. You have to make a very clear plan for the project and CyberArk infrastructure sizing. Then you have to do a very good job with the project management and collaborate with the privileged accounts stakeholders. With all that in mind, you can go ahead with CyberArk. Be careful with the configuration. When you make changes and so on, be very careful to understand what you are doing. Plan and test what you are doing in a test environment before switching to production. I would rate CyberArk as nine out of ten. Ten means that it's the best solution on the market and no one else compares to it. However, before giving them a ten, they should do something related to the Password Vault utility. Maybe they should add some other features too. For me, it is one of the best tools on the market, so nine is enough for now.
I would rate this solution a 9.5 out of ten. To get it to a ten it should give other possibilities to select if you could follow the keystrokes. It should have a flexibility with things in which people can use it a lot faster.