Try our new research platform with insights from 80,000+ expert users

CyberArk Endpoint Privilege Manager vs One Identity Privileged Access Suite for Unix comparison

CyberArk and One Identity are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #4 with an average rating of 8.6, while One Identity is ranked #34. CyberArk holds a 3.2% mindshare in PAM, compared to One Identity’s 0.4% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 100% of One Identity users who would recommend it.
CyberArk Endpoint Privilege...
Read 38 CyberArk Endpoint Privilege Manager reviews
  • 1,223 Views
  • 764 Comparison Views
86% willing to recommend
One Identity Privileged Acc...
Read 3 One Identity Privileged Access Suite for Unix reviews
  • 159 Views
  • 81 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and One Identity Privileged Access Suite for Unix compete in endpoint privilege management. CyberArk has an edge with its pricing and customer support, while One Identity is preferred for its comprehensive features.

Features: CyberArk offers strong security controls, granular privilege management, and cost-effective solutions. One Identity provides seamless Unix integration, comprehensive feature sets, and extensive supported environments.

Room for Improvement: CyberArk can enhance scalability, customization, and improve user interface design. One Identity could improve reporting tools, automation capabilities, and user training resources.

Ease of Deployment and Customer Service: CyberArk is favored for ease of deployment and responsive customer service. One Identity's deployment is complex, but its proactive support team is helpful.

Pricing and ROI: CyberArk is noted for competitive pricing with a rapid ROI. One Identity has higher costs, but the extensive features offer a satisfactory ROI over time.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. One Identity Privileged Access Suite for Unix Report (Updated: June 2025).
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Privileged Access Suite for Unix
June 2025
Download the complete report
Helped 860,168 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CyberArk Endpoint Privilege...
Ranking in Privileged Access Management (PAM)
4th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (5th), Anti-Malware Tools (5th), Application Control (5th), Ransomware Protection (5th)
One Identity Privileged Acc...
Ranking in Privileged Access Management (PAM)
34th
Average Rating
7.6
Number of Reviews
3
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 3.2%, down from 3.7% compared to the previous year. The mindshare of One Identity Privileged Access Suite for Unix is 0.4%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Featured Reviews

Sumit Chavan - PeerSpot reviewer
Helps secure the infrastructure and control users with admin rights
There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.
Read full review
Hicham Barnoussi - PeerSpot reviewer
A reliable solution with great password and session management
The setup process depends on the environment of the customer. It's not dependent on the solution. For customers with normal use cases and scenarios, it's a straightforward implementation, but for a customer with more than one environment, they may have BeyondTrust in one environment and Safeguard in another one. When they want to consolidate later, there may be complications. It depends on the devices and assets they would like to have under their PAM solution. The standard time for implementation is four weeks. I rate the setup an eight out of ten. There needs to be a dedicated resource for maintenance.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The feature called PTA, which stands for Privileged Threat Analytics keeps track of what admins are doing and works with Centimeters. If something fishy is going on with a user's credentials, it alerts the security team so they can act fast. Plus, it automates stuff like resetting credentials or blocking users. So, if there's a potential hack, CyberArk can change passwords and lock out users in a snap. It also gives you a heads-up if anything unusual is going on with server activities, like someone creating new users with uncontrolled credentials."
"I have always found that CyberArk is a very tight, foolproof product compared to most other products available."
"The most valuable feature is that their database is completely encrypted and protected with multiple layers."
"Regarding the granularity of the managed controls in CyberArk Endpoint Privilege Manager, we have different levels of features to define compensations and capabilities, which help us verify configurations and access, ultimately keeping the safety of rights intact."
"It allows whitelisting."
"CyberArk Endpoint Privilege Manager is very easy to manage, which I like. The solution also has a dashboard where you can see which software is suspicious, which I find valuable."
"In terms of ROI, deploying CyberArk Endpoint Privilege Manager has secured the infrastructure, which saves money, time, and resources."
"Their customer support was excellent."
More CyberArk Endpoint Privilege Manager pros
"The most valuable features are session and password management."
"The most valuable feature of this solution is that it is easy to use."
"Privileged Access Suite's best feature is it's straightforward to use."
 

Cons

"CyberArk should consider whitelisting important applications like PowerShell and DLL that are currently not allowed due to some malicious content."
"They need much better integration with Azure AD."
"The CyberArk team is working on a feature to identify devices without the Endpoint Privilege Manager running, which is currently missing."
"Performance could be better. We have a couple of problems with CyberArk right now. One of the problems is performance in our environment. Support also takes a long time to respond. If the user already has local admin rights, then I can't collect any events in the console from this device. There are also some options in CyberArk that are not working properly, and are not helpful in this case. I can't collect any information to create a proper policy for the device. I have to investigate everything manually, or even disable the local admin from the device. I can collect the events only after this, and it's very time consuming. In my case, it's a waste of resources."
"The solution's pricing could be better."
"Without knowledge, you are not able to find some items as they are really hidden within the UI."
"A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good."
"It's an old product and has many areas that can be improved."
More CyberArk Endpoint Privilege Manager cons
"Privileged Access Suite's interface could be better."
"Product management should be improved."
"There is a new trend of not having any privileged users or accounts."
 

Pricing and Cost Advice

"It's not at the lower end of the market. I think the price is reasonable considering the quality it delivers. It is a top-notch solution at a fair price point."
"I rate the solution's pricing an eight out of ten since the price can be too high for smaller businesses."
"The tool is a bit pricey compared to its competitors. My company does work with competitors, but I don't have hands-on experience with other software. I've just done some comparisons."
"The price of CyberArk Endpoint Privilege Manager is expensive. The solution is priced based on the number of accounts onboarded and the number of concurrent sessions. Everyone else is included in the price, such as support."
"Although I do not deal directly with the pricing, CyberArk Endpoint Privilege Manager is costly compared to other solutions. However, it offers beneficial features."
"It is an expensive solution."
"The price of CyberArk Endpoint Privilege Manager is expensive."
"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."
More CyberArk Endpoint Privilege Manager pricing and cost advice
Information not available
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
860,168 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
11%
Government
9%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...
See all answers
Ask a question
Earn 20 points
 

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 19% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 15% of the time
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 15% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 9% of the time
Tanium vs CyberArk Endpoint Privilege Manager Logo
Tanium vs CyberArk Endpoint Privilege Manager
Compared 6% of the time
More CyberArk Endpoint Privilege Manager Competitors
ManageEngine PAM360 vs One Identity Privileged Access Suite for Unix Logo
ManageEngine PAM360 vs One Identity Privileged Access Suite for Unix
Compared 100% of the time
More One Identity Privileged Access Suite for Unix Competitors
 

Product Reports

Buyer's Guide
CyberArk Endpoint Privilege Manager
June 2025
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
Buyer's Guide
Privileged Access Management (PAM)
June 2025
One Identity Privileged Access Suite for Unix reportDownload One Identity Privileged Access Suite for Unix product report
 

Also Known As

Viewfinity
No data available
 

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

The Privileged Access Suite for Unix is a one-stop shop for UNIX security that combines Active Directory bridge and root-delegation solutions in one console. It extends the authentication and authorization of Active Directory to UNIX, Linux, and Mac OS X users consolidating and unifying identities. Plus, it assigns individual accountability, enables least-privilege access and centralizes access reporting of the UNIX root account.

One Identity
 

Sample Customers

Information Not Available
University of East Anglia, nForce Secure, dunnhumby
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Privileged Access Suite for Unix
June 2025
Free Report: CyberArk Endpoint Privilege Manager vs. One Identity Privileged Access Suite for Unix
Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. One Identity Privileged Access Suite for Unix and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,168 professionals have used our research since 2012.
See our CyberArk Endpoint Privilege Manager vs. One Identity Privileged Access Suite for Unix report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.