No more typing reviews! Try our Samantha, our new voice AI agent.

CyberArk Endpoint Privilege Manager vs One Identity Safeguard comparison

CyberArk and One Identity are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #4 with an average rating of 8.8, while One Identity is ranked #2 with an average rating of 7.8. CyberArk holds a 2.4% mindshare in PAM, compared to One Identity’s 4.4% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 95% of One Identity users who would recommend it.
CyberArk Endpoint Privilege...
Read 38 CyberArk Endpoint Privilege Manager reviews
  • 4,393 Views
  • 1,274 Comparison Views
86% willing to recommend
One Identity Safeguard
Read 56 One Identity Safeguard reviews
  • 5,477 Views
  • 3,724 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and One Identity Safeguard are leading solutions in the endpoint security sector. CyberArk appears to have the upper hand in user satisfaction, particularly in pricing and support, whereas One Identity Safeguard is valued for its rich features that justify its higher cost.

Features: Users identify CyberArk Endpoint Privilege Manager for its integration capabilities, effective privilege management, and streamlined user controls. One Identity Safeguard stands out with its comprehensive session management, scalability, and robust security features.

Room for Improvement: CyberArk users suggest enhancements in reporting capabilities, simplified update processes, and more user-friendly interfaces. For One Identity Safeguard, improvements in response time, configuration simplicity, and user documentation are highlighted.

Ease of Deployment and Customer Service: CyberArk Endpoint Privilege Manager offers straightforward deployment and responsive customer service, making it a good fit for fast implementation. One Identity Safeguard, despite requiring more complex setup, provides a comprehensive support framework appreciated by users.

Pricing and ROI: CyberArk Endpoint Privilege Manager is seen as cost-effective with its competitive setup costs and quick ROI. One Identity Safeguard, although higher in upfront costs, provides long-term value due to its extensive features, offering a justified investment for many organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. One Identity Safeguard Report (Updated: March 2026).
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
March 2026
Download the complete report
Helped 885,376 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.2
CyberArk Endpoint Privilege Manager enhances security, reduces risks and costs, saves resources, and protects sensitive information effectively.
Sentiment score
6.5
One Identity Safeguard delivers cost savings, enhanced security, and efficiency improvements, most effective for large organizations with local infrastructure.
Deploying CyberArk Endpoint Privilege Manager has secured the infrastructure, which saves money, time, and resources.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
I consider CyberArk Endpoint Privilege Manager's return on investment to be good since it effectively accomplishes the goals expected from privilege access management solutions.
Diego Rivera
Commercial and Technical Professional Manager at Evolution Technologies Group
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
The time is reduced by nearly fifty percent for our audit preparation and compliance reporting compared to earlier.
SachinShelar
Manager, Account Services Delivery at Softcell Technologies Limited
I have seen a return on investment through reduced audit effort and fewer security incidents related to privileged access, along with significant time savings for IT and security teams by automating access control and password management.
Rohan Paul
office administrator at Gitarattan International Business School
Any PAM solution, when I deploy it well and customers use it, leads to a return on investment.
Nawaz Sarwar
Consultant at a tech vendor with 11-50 employees
For more quotes and insights, download the One Identity Safeguard report
Sumit Chavan - PeerSpot reviewer
DR
SachinShelar - PeerSpot reviewer
RP
NS
 

Customer Service

Sentiment score
6.2
CyberArk Endpoint Privilege Manager support is knowledgeable but needs improvements in response times, accessibility, and first-level assistance.
Sentiment score
6.4
One Identity Safeguard support is generally responsive, but some users face delays and find premium support lacking.
They respond immediately to our inquiries, resolve issues promptly, and provide valuable guidance, especially in critical situations.
Jayasree Sriram
Security Delivery Analyst at Accenture
We engage them when needed and receive prompt responses that typically resolve our issues.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
Earlier, we received support for normal tickets within a day, but now it takes one or two days to resolve issues.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
I sometimes need escalations to reach expertise.
Nawaz Sarwar
Consultant at a tech vendor with 11-50 employees
Sometimes, I get a very helpful response and they address issues on a call.
Nick Turner
Systems Administrator at a university with 10,001+ employees
When I have day-to-day incidents and problems, the response is good enough in terms of time and quality.
reviewer2679786
Consultant at a outsourcing company with 5,001-10,000 employees
For more quotes and insights, download the One Identity Safeguard report
Jayasree Sriram - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewer
NS
NT
reviewer2679786 - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.7
CyberArk Endpoint Privilege Manager efficiently scales for large deployments, praised for growth-centered architecture despite integration complexities.
Sentiment score
7.0
One Identity Safeguard is adaptable for enterprises, efficiently managing privileged access amid scalability challenges and complex cluster management.
We can set permissions per team or department, allowing some teams to elevate specific applications while others have different permissions.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
CyberArk Endpoint Privilege Manager is quite scalable.
Jayasree Sriram
Security Delivery Analyst at Accenture
The available reports and other security tools assist in scaling it according to my organization's needs.
Gani Habib
Cybersecurity Manager at a consultancy with 10,001+ employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
The scalability of One Identity Safeguard is perfect, scoring ten out of ten.
reviewer2687787
Business Line Manager - IGA & PAM at a tech services company with 201-500 employees
We have a cluster of SPPs and a cluster of SPSs, and we can add a node to that cluster without much fuss.
Nick Turner
Systems Administrator at a university with 10,001+ employees
I would rate it a nine out of ten for scalability.
reviewer2679786
Consultant at a outsourcing company with 5,001-10,000 employees
For more quotes and insights, download the One Identity Safeguard report
reviewer2600361 - PeerSpot reviewerJayasree Sriram - PeerSpot reviewer
GH
reviewer2687787 - PeerSpot reviewer
NT
reviewer2679786 - PeerSpot reviewer
 

Stability Issues

Sentiment score
8.2
CyberArk Endpoint Privilege Manager is stable, with 99.99% uptime, reliable on Windows, needing console improvements and minimal memory.
Sentiment score
7.8
One Identity Safeguard is praised for stability, with occasional upgrade issues and minor bugs, receiving high dependability ratings.
It is a robust solution that has effectively supported our environment without major issues.
Jayasree Sriram
Security Delivery Analyst at Accenture
Since implementing it, we have not experienced any outages or stability issues.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
CyberArk Endpoint Privilege Manager offers multiple options for creating and stopping policies.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
I would rate it a nine out of ten for stability.
reviewer2679786
Consultant at a outsourcing company with 5,001-10,000 employees
In terms of stability, I rate One Identity Safeguard nine to ten out of ten.
reviewer2687787
Business Line Manager - IGA & PAM at a tech services company with 201-500 employees
One Identity Safeguard is very stable and can handle the workload easily; I have not seen any downtime.
Rohan Paul
office administrator at Gitarattan International Business School
For more quotes and insights, download the One Identity Safeguard report
Jayasree Sriram - PeerSpot reviewerreviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewerreviewer2679786 - PeerSpot reviewerreviewer2687787 - PeerSpot reviewer
RP
 

Room For Improvement

CyberArk Endpoint Privilege Manager needs improved integration, user interface, and pricing, along with enhanced compatibility and functionality.
One Identity Safeguard needs improved UI simplicity, setup ease, third-party integration, documentation, support, onboarding, and cost-effective scalability.
CyberArk Endpoint Privilege Manager could be improved by simplifying the administration process, specifically when setting up policies and applications.
reviewer2600361
Global Security Systems Consultant at a insurance company with 10,001+ employees
Currently, no user-based policy option is available inside the EPM console.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
Some features provided in the self-hosted version of EPM are not supported in the software as a service version, like connection to some analysis applied by Palo Alto.
Marek Neumann
Solution Architect at a consultancy with 10,001+ employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
For some configurations on the SPS side, if I need to make changes, such as for DNS servers, I must redeploy the machine.
Nawaz Sarwar
Consultant at a tech vendor with 11-50 employees
There are many steps. We are still in the onboarding phase, and it seems very manual.
Nick Turner
Systems Administrator at a university with 10,001+ employees
Another area for improvement could be the threat detection capabilities, like those seen in other PAM vendors.
reviewer2679786
Consultant at a outsourcing company with 5,001-10,000 employees
For more quotes and insights, download the One Identity Safeguard report
reviewer2600361 - PeerSpot reviewerSumit Chavan - PeerSpot reviewerMarek Neumann - PeerSpot reviewer
NS
NT
reviewer2679786 - PeerSpot reviewer
 

Setup Cost

CyberArk Endpoint Privilege Manager's high pricing is justified by its quality, features, and appeal to large enterprises in finance.
One Identity Safeguard is priced higher, appreciated for its licensing model, and potentially cost-effective for large organizations.
CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive.
Gani Habib
Cybersecurity Manager at a consultancy with 10,001+ employees
CyberArk Endpoint Privilege Manager is costly compared to other solutions.
Sumit Chavan
Lead Consultant at a tech vendor with 501-1,000 employees
I've received feedback that the pricing is high, however, for me, the value it brings is worth the cost.
Padmanabha Hegde
Manager at a computer software company with 1,001-5,000 employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
It is one of those where the more you buy, the cheaper it is.
Nick Turner
Systems Administrator at a university with 10,001+ employees
It is cheaper than CyberArk.
reviewer2679786
Consultant at a outsourcing company with 5,001-10,000 employees
It is more expensive than Secret Server but way less expensive than CyberArk.
reviewer2686314
IAM Specialist
For more quotes and insights, download the One Identity Safeguard report
GH
Sumit Chavan - PeerSpot reviewer
PH
NT
reviewer2679786 - PeerSpot reviewerreviewer2686314 - PeerSpot reviewer
 

Valuable Features

CyberArk Endpoint Privilege Manager enhances security by managing privileges, integrating seamlessly, and preventing ransomware while ensuring regulatory compliance.
One Identity Safeguard enhances security with password management, session recording, user-friendly interface, and seamless multi-platform integration.
CyberArk Endpoint Privilege Manager effectively reduces malicious content in applications by allowing us to identify and block dangerous applications.
Jayasree Sriram
Security Delivery Analyst at Accenture
It allows them to granularly manage controls to prevent some malicious activities on the endpoint machine.
reviewer1247523
Head of Sales Services Department at a comms service provider with 51-200 employees
CyberArk Endpoint Privilege Manager enhances computer security by providing minimal access, effectively preventing ransomware attacks.
Gani Habib
Cybersecurity Manager at a consultancy with 10,001+ employees
For more quotes and insights, download the CyberArk Endpoint Privilege Manager report
The auditing and approval mechanisms are features we did not have before and are greatly appreciated.
Nick Turner
Systems Administrator at a university with 10,001+ employees
Automatic credential rotation helps our team by removing the need for manual changes to privileged passwords, reducing the risk of stale or shared credentials and ensuring that every access is controlled and compliant.
Nikhil Jethwa
Technical Consultant at ProTechmanize Solutions (P) Ltd.
The password vault has been a game changer because it provides a secure and controlled way to store, manage, and rotate sensitive credentials without exposing them to users.
Aryan Priyanish D.
Developer Intern at Stealth
For more quotes and insights, download the One Identity Safeguard report
Jayasree Sriram - PeerSpot reviewerreviewer1247523 - PeerSpot reviewer
GH
NT
Nikhil Jethwa - PeerSpot reviewerAryan Priyanish D. - PeerSpot reviewer
 

Categories and Ranking

CyberArk Endpoint Privilege...
Ranking in Privileged Access Management (PAM)
4th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (5th), Anti-Malware Tools (5th), Application Control (3rd), Ransomware Protection (5th)
One Identity Safeguard
Ranking in Privileged Access Management (PAM)
2nd
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
56
Ranking in other categories
User Entity Behavior Analytics (UEBA) (5th), Non-Human Identity Management (NHIM) (1st)
 

Mindshare comparison

As of March 2026, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 2.4%, down from 3.5% compared to the previous year. The mindshare of One Identity Safeguard is 4.4%, up from 4.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM) Mindshare Distribution
ProductMindshare (%)
One Identity Safeguard4.4%
CyberArk Endpoint Privilege Manager2.4%
Other93.2%
Privileged Access Management (PAM)
 

Featured Reviews

PH
Padmanabha Hegde
Manager at a computer software company with 1,001-5,000 employees
MFA boosts protection and has blocking capabilities but dependency on other solutions complicates deployment
The main issues I experience are related to deployment, which requires dependency on other solutions like AD or SCCM. These tools need to be defined and synced with the client or agent and master, sometimes needing manual checks. The agent may have problems syncing, which complicates deployment, especially when users leave the organization, however, agents remain licensed since the server still maintains licenses. Additionally, compared to other endpoint managers like Thycotic, CyberArk Endpoint Privilege Manager lacks recording capabilities, which limits its functionality for critical applications. A feature that records activity, even when bypassing CyberArk Endpoint Privilege Manager, would be beneficial.
Read full review
ST
Sindre Toft
Senior Information Technology Consultant at Helse Nord IKT
Centralized privileged access has improved control and now supports secure vendor billing oversight
The transparent mode is a seamless approach when using it. We have some issues with it, but we are working on it to make it work for us. Managing remote access for privileged users with the secure remote access feature is both easy and hard depending on the scenario we face. We have some systems that are easy and take not even a minute to set up, while others take a bit longer. We are in the middle of integrating One Identity Safeguard with the IGA solution, Identity Manager. We have some A2A setups, but it is not optimal. We are using RPA for developers, not actually RPA accounts, but that is something we are working on. We are also using the service account password rotation on the asset to some degree, and we are exploring options there. For integrating One Identity Safeguard, figuring out how password rotation works is a bit difficult because we have to make custom integrations. After that, it was no problem really. For the A2A use, it is not as easy as using something like HashiCorp's password management tools. It is mostly for certain features in One Identity Safeguard that I would like some improvements. Some of the things you can do in entitlements, there is a lot you can do there, but not everything is optimal. You have to have duplicates of a lot of things to make it work the way you want.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
885,376 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Manufacturing Company
11%
Computer Software Company
8%
Government
7%
University
12%
Computer Software Company
7%
Financial Services Firm
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business17
Midsize Enterprise9
Large Enterprise18
By reviewers
Company SizeCount
Small Business37
Midsize Enterprise22
Large Enterprise21
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
We have a separate department that studies setup costs for each product, but as far as my information goes, the pricing and setup costs are very good.
See all answers
What needs improvement with One Identity Safeguard?
The most common improvement needed is for upgrades. One Identity Safeguard's desktop client should have a faster and easier upgrade process that ensures compatibility.
See all answers
What is your primary use case for One Identity Safeguard?
One Identity Safeguard serves as our Privileged Access Management solution to enforce session management for administrators and allow them to access our systems in recorded sessions, which secures ...
See all answers
 

Comparisons

BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 7% of the time
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 7% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 6% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 6% of the time
Ivanti Endpoint Security for Endpoint Manager vs CyberArk Endpoint Privilege Manager Logo
Ivanti Endpoint Security for Endpoint Manager vs CyberArk Endpoint Privilege Manager
Compared 5% of the time
More CyberArk Endpoint Privilege Manager Competitors
CyberArk Privileged Access Manager vs One Identity Safeguard Logo
CyberArk Privileged Access Manager vs One Identity Safeguard
Compared 19% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 9% of the time
Delinea Privileged Access Service vs One Identity Safeguard Logo
Delinea Privileged Access Service vs One Identity Safeguard
Compared 7% of the time
BeyondTrust Privileged Remote Access vs One Identity Safeguard Logo
BeyondTrust Privileged Remote Access vs One Identity Safeguard
Compared 6% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 5% of the time
More One Identity Safeguard Competitors
 

Product Reports

Buyer's Guide
CyberArk Endpoint Privilege Manager
March 2026
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
Buyer's Guide
One Identity Safeguard
March 2026
One Identity Safeguard reportDownload One Identity Safeguard product report
 

Also Known As

Viewfinity
No data available
 

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

One Identity
 

Sample Customers

Information Not Available
Cavium
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
March 2026
Free Report: CyberArk Endpoint Privilege Manager vs. One Identity Safeguard
Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. One Identity Safeguard and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,376 professionals have used our research since 2012.
See our CyberArk Endpoint Privilege Manager vs. One Identity Safeguard report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.