Try our new research platform with insights from 80,000+ expert users

CyberArk Endpoint Privilege Manager vs One Identity Safeguard comparison

CyberArk and One Identity are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #4 with an average rating of 8.5, while One Identity is ranked #3 with an average rating of 7.4. CyberArk holds a 3.4% mindshare in PAM, compared to One Identity’s 3.9% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 93% of One Identity users who would recommend it.
CyberArk Endpoint Privilege...
Read 38 CyberArk Endpoint Privilege Manager reviews
  • 1,250 Views
  • 790 Comparison Views
86% willing to recommend
One Identity Safeguard
Read 45 One Identity Safeguard reviews
  • 2,675 Views
  • 787 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and One Identity Safeguard are leading solutions in the endpoint security sector. CyberArk appears to have the upper hand in user satisfaction, particularly in pricing and support, whereas One Identity Safeguard is valued for its rich features that justify its higher cost.

Features: Users identify CyberArk Endpoint Privilege Manager for its integration capabilities, effective privilege management, and streamlined user controls. One Identity Safeguard stands out with its comprehensive session management, scalability, and robust security features.

Room for Improvement: CyberArk users suggest enhancements in reporting capabilities, simplified update processes, and more user-friendly interfaces. For One Identity Safeguard, improvements in response time, configuration simplicity, and user documentation are highlighted.

Ease of Deployment and Customer Service: CyberArk Endpoint Privilege Manager offers straightforward deployment and responsive customer service, making it a good fit for fast implementation. One Identity Safeguard, despite requiring more complex setup, provides a comprehensive support framework appreciated by users.

Pricing and ROI: CyberArk Endpoint Privilege Manager is seen as cost-effective with its competitive setup costs and quick ROI. One Identity Safeguard, although higher in upfront costs, provides long-term value due to its extensive features, offering a justified investment for many organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. One Identity Safeguard Report (Updated: June 2025).
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
June 2025
Download the complete report
Helped 856,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.0
CyberArk Endpoint Privilege Manager boosts security, saves resources, and enhances confidence, offering a perceived positive ROI despite quantification challenges.
Sentiment score
7.0
One Identity Safeguard enhances security and compliance, ensuring PCI-DSS compliance, reducing risks, and improving operational efficiency with substantial ROI.
Deploying CyberArk Endpoint Privilege Manager has secured the infrastructure, which saves money, time, and resources.
I consider CyberArk Endpoint Privilege Manager's return on investment to be good since it effectively accomplishes the goals expected from privilege access management solutions.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
Any PAM solution, when I deploy it well and customers use it, leads to a return on investment.
For more quotes and insights, download the One Identity Safeguard report
Sumit Chavan - PeerSpot reviewer
DR
NS
 

Customer Service

Sentiment score
6.6
CyberArk Endpoint Privilege Manager support is generally rated high, with quick resolutions but concerns about response times and accessibility.
Sentiment score
6.5
One Identity Safeguard’s customer service is praised for responsiveness and efficiency, but standard support faces mixed reviews.
They respond immediately to our inquiries, resolve issues promptly, and provide valuable guidance, especially in critical situations.
We engage them when needed and receive prompt responses that typically resolve our issues.
Earlier, we received support for normal tickets within a day, but now it takes one or two days to resolve issues.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
I sometimes need escalations to reach expertise.
Sometimes, I get a very helpful response and they address issues on a call.
When I have day-to-day incidents and problems, the response is good enough in terms of time and quality.
For more quotes and insights, download the One Identity Safeguard report
Jayasree Sriram - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewer
NS
NT
reviewer2679786 - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.7
CyberArk Endpoint Privilege Manager efficiently scales for varied environments, supporting small to large enterprises with a distributed cloud-based architecture.
Sentiment score
7.1
One Identity Safeguard is praised for scalability and ease of resource deployment but may affect performance and high availability.
We can set permissions per team or department, allowing some teams to elevate specific applications while others have different permissions.
CyberArk Endpoint Privilege Manager is quite scalable.
The available reports and other security tools assist in scaling it according to my organization's needs.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
The scalability of One Identity Safeguard is perfect, scoring ten out of ten.
We have a cluster of SPPs and a cluster of SPSs, and we can add a node to that cluster without much fuss.
I would rate it a nine out of ten for scalability.
For more quotes and insights, download the One Identity Safeguard report
reviewer2600361 - PeerSpot reviewerJayasree Sriram - PeerSpot reviewer
GH
reviewer2687787 - PeerSpot reviewer
NT
reviewer2679786 - PeerSpot reviewer
 

Stability Issues

Sentiment score
8.2
CyberArk Endpoint Privilege Manager is stable and reliable, maintaining 99.99% uptime with rare issues and smooth offline adaptation.
Sentiment score
7.5
One Identity Safeguard is highly stable and reliable, with minor issues promptly addressed through regular updates.
It is a robust solution that has effectively supported our environment without major issues.
Since implementing it, we have not experienced any outages or stability issues.
CyberArk Endpoint Privilege Manager offers multiple options for creating and stopping policies.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
I would rate it a nine out of ten for stability.
In terms of stability, I rate One Identity Safeguard nine to ten out of ten.
I encounter problems primarily with the failover procedure.
For more quotes and insights, download the One Identity Safeguard report
Jayasree Sriram - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewerreviewer2679786 - PeerSpot reviewerreviewer2687787 - PeerSpot reviewer
NS
 

Room For Improvement

CyberArk Endpoint Privilege Manager requires improvements in UI, integration, performance, support, threat detection, customization, pricing flexibility, and automation.
One Identity Safeguard needs improvements in integration, management, documentation, interface, support, monitoring, threat detection, and pricing.
CyberArk Endpoint Privilege Manager could be improved by simplifying the administration process, specifically when setting up policies and applications.
Currently, no user-based policy option is available inside the EPM console.
Some features provided in the self-hosted version of EPM are not supported in the software as a service version, like connection to some analysis applied by Palo Alto.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
For some configurations on the SPS side, if I need to make changes, such as for DNS servers, I must redeploy the machine.
There are many steps. We are still in the onboarding phase, and it seems very manual.
Another area for improvement could be the threat detection capabilities, like those seen in other PAM vendors.
For more quotes and insights, download the One Identity Safeguard report
reviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewerMarek Neumann - PeerSpot reviewer
NS
NT
reviewer2679786 - PeerSpot reviewer
 

Setup Cost

CyberArk Endpoint Privilege Manager is costly but considered reasonable for its features, with significant discounts for large enterprises.
One Identity Safeguard is costly but valued for flexibility and robust security, with straightforward licensing and worthwhile investment.
CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive.
CyberArk Endpoint Privilege Manager is costly compared to other solutions.
I've received feedback that the pricing is high, however, for me, the value it brings is worth the cost.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
It is one of those where the more you buy, the cheaper it is.
It is cheaper than CyberArk.
It is more expensive than Secret Server but way less expensive than CyberArk.
For more quotes and insights, download the One Identity Safeguard report
GH
Sumit Chavan - PeerSpot reviewer
PH
NT
reviewer2679786 - PeerSpot reviewerreviewer2686314 - PeerSpot reviewer
 

Valuable Features

CyberArk Endpoint Privilege Manager enhances security by managing privileges, reducing admin needs, and improving operational efficiency and data protection.
One Identity Safeguard enhances security with seamless user experience, extensive features, centralized access, and robust monitoring for on-prem and cloud management.
CyberArk Endpoint Privilege Manager effectively reduces malicious content in applications by allowing us to identify and block dangerous applications.
It allows them to granularly manage controls to prevent some malicious activities on the endpoint machine.
CyberArk Endpoint Privilege Manager enhances computer security by providing minimal access, effectively preventing ransomware attacks.
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
The auditing and approval mechanisms are features we did not have before and are greatly appreciated.
I think One Identity should improve its documentation because it is vast and not clear, and clear documentation on implementing the solution would be advantageous for consultants.
Compared to other PAM solutions, it is easy to implement and use from an administrator's point of view.
For more quotes and insights, download the One Identity Safeguard report
Jayasree Sriram - PeerSpot reviewerreviewer1247523 - PeerSpot reviewer
GH
NT
NS
reviewer2679786 - PeerSpot reviewer
 

Categories and Ranking

CyberArk Endpoint Privilege...
Ranking in Privileged Access Management (PAM)
4th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (5th), Anti-Malware Tools (5th), Application Control (5th), Ransomware Protection (6th)
One Identity Safeguard
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
45
Ranking in other categories
User Entity Behavior Analytics (UEBA) (6th), Non-Human Identity Management (NHIM) (4th)
 

Mindshare comparison

As of June 2025, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 3.4%, down from 3.8% compared to the previous year. The mindshare of One Identity Safeguard is 3.9%, down from 4.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Featured Reviews

Sumit Chavan - PeerSpot reviewer
Helps secure the infrastructure and control users with admin rights
There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.
Read full review
Martin Ajayiobe - PeerSpot reviewer
Th password vault feature has proven to be most effective for managing privileged access
One Identity Safeguard now prevents unauthorized access to servers by eliminating privileged passwords and requiring all connections to go through a PAM-authorized process. This means no one, including hackers, can access servers without explicit approval, significantly enhancing overall security. One Identity Safeguard is easy to use with a good partner to support you, and it can be up and running within a few days. We have successfully integrated One Identity Safeguard with cloud targets, and the process was straightforward. One Identity Safeguard has improved our incident response time by 300 percent.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
856,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
15%
Manufacturing Company
11%
Government
9%
Computer Software Company
25%
Financial Services Firm
11%
Comms Service Provider
6%
Energy/Utilities Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I've received feedback that the pricing is high, however, for me, the value it brings is worth the cost. It's really one of the best solutions.
See all answers
What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
The pricing of One Identity Safeguard is fairly priced and cheaper than other solutions of the same enterprise level. It provides a good cost-benefit ratio.
See all answers
What needs improvement with One Identity Safeguard?
There is room for improvement in integration between modules. The native integration between SPP and SPS, which is currently based on a plugin, could be enhanced. Customization for lookup passwords...
See all answers
 

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 24% of the time
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 14% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 14% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 9% of the time
Tanium vs CyberArk Endpoint Privilege Manager Logo
Tanium vs CyberArk Endpoint Privilege Manager
Compared 5% of the time
More CyberArk Endpoint Privilege Manager Competitors
CyberArk Privileged Access Manager vs One Identity Safeguard Logo
CyberArk Privileged Access Manager vs One Identity Safeguard
Compared 33% of the time
WALLIX Bastion vs One Identity Safeguard Logo
WALLIX Bastion vs One Identity Safeguard
Compared 18% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 9% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 9% of the time
Fudo PAM vs One Identity Safeguard Logo
Fudo PAM vs One Identity Safeguard
Compared 7% of the time
More One Identity Safeguard Competitors
 

Product Reports

Buyer's Guide
CyberArk Endpoint Privilege Manager
June 2025
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
Buyer's Guide
One Identity Safeguard
May 2025
One Identity Safeguard reportDownload One Identity Safeguard product report
 

Also Known As

Viewfinity
No data available
 

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

One Identity
 

Sample Customers

Information Not Available
Cavium
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
June 2025
Free Report: CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. One Identity Safeguard and other solutions. Updated: June 2025.
DOWNLOAD NOW
856,873 professionals have used our research since 2012.
See our CyberArk Endpoint Privilege Manager vs. One Identity Safeguard report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.