Try our new research platform with insights from 80,000+ expert users

CyberArk Privileged Access Manager vs IBM Tivoli Access Manager [EOL] vs RSA Identity Governance and Lifecycle comparison

The compared CyberArk and IBM solutions aren't in the same category. CyberArk is ranked #1 in PAM , with an average rating of 8.5, and holds a 11.2% mindshare in the category. Additionally, 95% of CyberArk users are willing to recommend the solution, compared to 93% of IBM users who would recommend it.
CyberArk Privileged Access ...
Read 229 CyberArk Privileged Access Manager reviews
  • 15,179 Views
  • 6,679 Comparison Views
95% willing to recommend
RSA Identity Governance and...
Read 10 RSA Identity Governance and Lifecycle reviews
  • 926 Views
  • 732 Comparison Views
60% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between CyberArk Privileged Access Manager, IBM Tivoli Access Manager [EOL], and RSA Identity Governance and Lifecycle based on real PeerSpot user reviews.

Find out what your peers are saying about CyberArk, One Identity, Delinea and others in Privileged Access Management (PAM).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Privileged Access Management (PAM) Report (Updated: January 2026).
Buyer's Guide
Privileged Access Management (PAM)
January 2026
Download the complete report
Helped 881,821 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Featured Reviews

Atul-Gujar - PeerSpot reviewer
Atul-Gujar
CyberArk manager at a comms service provider with 10,001+ employees
Secures critical infrastructures with essential user session audit records
A potential area for improvement is enhancing support for cluster environments and distributed Vaults. Clients in multiple countries that need central access have different challenges that require better solutions from CyberArk. For financial services, CyberArk can improve incident response by ensuring fast support for critical priority tickets to meet compliance requirements. Providing more documentation on CyberArk is recommended for new team members to enhance their troubleshooting capabilities. I understand it's up to the client, but 99% fail to change the demo key, so it's crucial for CyberArk to emphasize changing the key and documenting it as part of the installation process.
Read full review
it_user711612 - PeerSpot reviewer
it_user711612
Senior Consultant at a insurance company with 1,001-5,000 employees
Reverse proxy provides central control over authentication and authorization.
It is a single product that caters for all the business needs throughout the organization. It provides a seamless integration that in turn encourages most of the applications to use the SSO features Reverse proxy is the most valuable feature as it provides central control over authentication and…
Read full review
Harshul Nayak - PeerSpot reviewer
Harshul Nayak
Senior Project Manager at a consultancy with 10,001+ employees
Streamline identity lifecycle management with intuitive interfaces and robust policy features
The functions of RSA Identity Governance and Lifecycle, especially the IGA, are quite strong with their custom forms and workflows integrated. The user interface is very friendly and easy to use, making it a good product overall. However, it still has to be on-premise and the cloud version is not easily accessible, as dedicated instances are required and machines cannot be shared as multi-tenant for various customers. The advanced policy features of RSA definitely help in defining certain policies such as segregation of duties. That's particularly useful along with creating different access reviews. Regarding access control in simplifying access management, RSA Identity Governance and Lifecycle has strong foundations of groups and roles, which help in defining all policies very easily. This makes it very easy to integrate with other access management tools or privileged access management tools.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The password vault and session monitoring are useful."
"It is a scalable product."
"We are able to know who is accessing what and when; having accountability."
"The password protection itself is the most important feature. It's something we didn't have before."
"CyberArk Privileged Access Manager has made our operations more streamlined."
"CyberArk has resulted in a massive increase in our security footprint."
"Technical support is very helpful whenever we have any questions."
"Its' quite stable."
More CyberArk Privileged Access Manager pros
"The Verify feature: A push method which customers are going for."
"The integration effort with the end application is quite straightforward and easy."
"SAML 2.0."
"Single Sign-On functionality is valuable because the core purpose of the product is to allow universal (or bespoke) SSO for application suites."
"OAuth 2 is now the de facto standard for API protection and scoped authorized delegation. IBM TAM now supports OAuth 2 and can act as fully compliant OAuth 2 authorization server."
"The user interface is very friendly and easy to use, making it a good product overall."
"The data collection is excellent and easy to do. It does not require a lot of configuration nor does it require rules to be written like other competitors do."
"The most valuable feature is the security, in particular, the One Time Password support."
"With the tool in place, you need to hire fewer people to provide access, and you have control over your processes."
"Roles, connectors for provisioning and re-accreditation or reviews help greatly to govern user access."
"RSA Identity Governance and lifecycles are good for the access certification and auditing sections."
 

Cons

"The initial setup of CyberArk is a challenge if you do not have prior experience with it."
"It's not a cheap application. It's very expensive."
"The architecture needs to be improved."
"One area for improvement is the plug-in development challenge. Although CyberArk provides a plug-in generator utility, it does not fully meet our needs, particularly for web-based applications."
"The solution could improve by adding more connectors."
"The solution needs better features for end users to manage their own whitelisting for API retrieval."
"The price is high compared to Azure Key Vault. It's the most expensive solution."
"I would like to see an easier way to define delegated roles within the administration of the core product."
More CyberArk Privileged Access Manager cons
"An Amazon Machine Image (AMI) for the newer appliance versions for hosting the virtual appliances on AWS will help."
"The profiling element is incredibly robust, but also equally as complex, it requires an off-site course to be able to understand the context or the plethora of options available."
"Looking at their roadmap, they have a broad grasp of the security features which the industry needs."
"Multi-factor authentication with social integration needs to improve."
"The self-service portal needs improvement."
"If you use the appliance version then it won't handle a huge database volume."
"Technical support in Pakistan can be improved."
"This product is missing a lot of features which other competitors are providing. One of the key features that are missing right now is risk scoring. Additionally, there is not much scope for customization - everything is hard-coded and predefined, so it does not allow the developers to make many modifications."
"The user interface and workflow need improvement, and more connectors would help."
"There are scalability issues. This product does not scale very well. It is not a good product for load balancing / active–active architecture."
"Every connector that you have in the product needs to be custom-built, so there are not a lot of standard connectors available in the product, because of which there are a lot of hidden consultancy costs."
"RSA Identity Governance and Lifecycle could improve out-of-the-box customization."
 

Pricing and Cost Advice

"Pricing and licensing depend on the environment."
"The solution is cost-effective for the features."
"Overall, its pricing is really good. The main difference from all the other vendors is that they have one package that covers all the functionality and modules of the basic PAM, except the add-on modules like adware and server protection. It also doesn't include the licenses for domain controller protection or maybe an API call-related feature. For the basic privileged access management, the bundle pricing is really good, but when it comes to an agent-based solution for advanced cyber protection or application identity managers, it is expensive. Services are also very expensive if you hire the services team from CyberArk, but these guys are really good. For a couple of large banking projects, we had an experience with them. The banks wanted to have things quickly and efficiently, so we had to hire them. If we take four weeks, these guys can do everything on a weekend. They charge quite a big sum of money, but they know the system well."
"I would rate the cost of CyberArk Privileged Access Manager seven out of ten with ten being the most expensive."
"In comparison to other products on the market, CyberArk is a more costly product."
"I'm aware that the organization had purchased licensing for almost all of CyberArk's solutions including licensing for PTA, EPM, and the Application Identity Manager. But when it comes to PSM, this is one of the components where there's an additional charge for any extra PSMs that you want to deploy. I believe that there's some rider where the vendor has a bit of leeway to, at times, charge a premium on whatever additional services you may require above the board."
"The solution is very expensive and requires a license. We pay for an enterprise license."
"Compared to other solutions, it is costly."
More CyberArk Privileged Access Manager pricing and cost advice
"The IBM prices are, as ever, extortionate, even with a business partnership, and high levels of discounts."
"We are using the cloud platform, but we don't find it compatible to be served as a multi-tenant platform. This is a large drawback. It becomes expensive because it is then an all-dedicated solution. You have to have a separate tenant for each client, which increases the cost. The overall unit pricing can be less expensive than how it is right now."
"Pricing varies based on user count/number of modules you need."
"I rate the product's price a five on a scale of one to ten, where one is cheap, and ten is expensive."
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
881,821 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Manufacturing Company
10%
Computer Software Company
9%
Government
6%
No data available
Financial Services Firm
14%
Comms Service Provider
12%
Computer Software Company
10%
Media Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business59
Midsize Enterprise40
Large Enterprise173
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise2
Large Enterprise18
By reviewers
Company SizeCount
Small Business2
Midsize Enterprise2
Large Enterprise6
 

Questions from the Community

How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to m...
See all answers
What do you like most about CyberArk Privileged Access Manager?
The most valuable features of the solution are control and analytics.
See all answers
What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?
My thoughts on the pricing of CyberArk Privileged Access Manager depend entirely on the vendors' requirements. If the...
See all answers
Ask a question
Earn 20 points
What needs improvement with RSA Identity Governance and Lifecycle?
There is room for improvement with RSA Identity Governance and Lifecycle. As the size becomes larger, the collections...
See all answers
What is your primary use case for RSA Identity Governance and Lifecycle?
We provide RSA Identity Governance and Lifecycle as a service, mainly to oversee the digital identity lifecycle, from...
See all answers
What advice do you have for others considering RSA Identity Governance and Lifecycle?
Overall, I would rate RSA Identity Governance and Lifecycle at an eight out of ten.
See all answers
 

Comparisons

Microsoft Entra ID vs CyberArk Privileged Access Manager Logo
Microsoft Entra ID vs CyberArk Privileged Access Manager
Compared 4% of the time
Delinea Secret Server vs CyberArk Privileged Access Manager Logo
Delinea Secret Server vs CyberArk Privileged Access Manager
Compared 4% of the time
One Identity Safeguard vs CyberArk Privileged Access Manager Logo
One Identity Safeguard vs CyberArk Privileged Access Manager
Compared 4% of the time
WALLIX Bastion vs CyberArk Privileged Access Manager Logo
WALLIX Bastion vs CyberArk Privileged Access Manager
Compared 4% of the time
Saviynt vs CyberArk Privileged Access Manager Logo
Saviynt vs CyberArk Privileged Access Manager
Compared 4% of the time
More CyberArk Privileged Access Manager Competitors
SAP Identity Management vs IBM Tivoli Access Manager [EOL] Logo
SAP Identity Management vs IBM Tivoli Access Manager [EOL]
Compared 38% of the time
CyberArk Endpoint Privilege Manager vs IBM Tivoli Access Manager [EOL] Logo
CyberArk Endpoint Privilege Manager vs IBM Tivoli Access Manager [EOL]
Compared 31% of the time
Comarch Identity and Access Management vs IBM Tivoli Access Manager [EOL] Logo
Comarch Identity and Access Management vs IBM Tivoli Access Manager [EOL]
Compared 31% of the time
More IBM Tivoli Access Manager [EOL] Competitors
SailPoint Identity Security Cloud vs RSA Identity Governance and Lifecycle Logo
SailPoint Identity Security Cloud vs RSA Identity Governance and Lifecycle
Compared 49% of the time
One Identity Manager vs RSA Identity Governance and Lifecycle Logo
One Identity Manager vs RSA Identity Governance and Lifecycle
Compared 17% of the time
Saviynt vs RSA Identity Governance and Lifecycle Logo
Saviynt vs RSA Identity Governance and Lifecycle
Compared 9% of the time
Fortinet FortiAuthenticator vs RSA Identity Governance and Lifecycle Logo
Fortinet FortiAuthenticator vs RSA Identity Governance and Lifecycle
Compared 8% of the time
Oracle Identity Governance vs RSA Identity Governance and Lifecycle Logo
Oracle Identity Governance vs RSA Identity Governance and Lifecycle
Compared 6% of the time
More RSA Identity Governance and Lifecycle Competitors
 

Product Reports

Buyer's Guide
CyberArk Privileged Access Manager
February 2026
CyberArk Privileged Access Manager reportDownload CyberArk Privileged Access Manager product report
Buyer's Guide
IBM Tivoli Access Manager [EOL]
January 2026
IBM Tivoli Access Manager [EOL] reportDownload IBM Tivoli Access Manager [EOL] product report
Buyer's Guide
RSA Identity Governance and Lifecycle
January 2026
RSA Identity Governance and Lifecycle reportDownload RSA Identity Governance and Lifecycle product report
 

Also Known As

CyberArk Privileged Access Security, CyberArk Enterprise Password Vault
Tivoli Access Manager, IBM Security Access Manager
SecurID
 

Overview

CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

Benefits of CyberArk Privileged Access Manager

Some of CyberArk Privileged Access Manager’s benefits include:

  • The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
  • The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
  • The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

Reviews from Real Users

CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

CyberArk
IBM Tivoli Access Manager is a robust and secure centralized policy management solution for e-business and distributed applications. IBM Tivoli Access Manager WebSEAL is a high performance, multi-threaded Web server that applies fine-grained security policy to the Tivoli Access Manager protected Web object space. WebSEAL can provide single sign-on solutions and incorporate back-end Web application server resources into its security policy.
IBM
RSA SecurID provides world-leading two-factor authentication, protecting 25,000 organizations and 55 million users. RSA SecurID extends security to bring your own device (BYOD), cloud, and mobile as well as traditional virtual private network (VPN) and web portals. RSA SecurID solutions comprise three primary components: authenticator, platform, and agents.
RSA
 

Sample Customers

Rockwell Automation
Essex Technology Group Inc.
NTT Com Asia, Virgin Blue, Bank of Uganda, EMEA Telecommunications Company, LAit (Lazio Innovazione Tecnologica), NyNet, OTP Bank, Red Bull Racing, Rupert House School, Signify, UK Local Authority, Bancolombia, Banco Popular de Puerto Rico (BPPR), TIVIT, Array Services, International Computerware, KPMG LLP, Moffitt Cancer Center
Buyer's Guide
Privileged Access Management (PAM)
January 2026
Download Free Report
Find out what your peers are saying about CyberArk, One Identity, Delinea and others in Privileged Access Management (PAM). Updated: January 2026.
DOWNLOAD NOW
881,821 professionals have used our research since 2012.