CyberArk Privileged Access Manager vs Okta Workforce Identity comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between CyberArk Privileged Access Manager and Okta Workforce Identity based on real PeerSpot user reviews.

Find out in this report how the two Privileged Access Management (PAM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed CyberArk Privileged Access Manager vs. Okta Workforce Identity Report (Updated: May 2023).
708,461 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"We found the initial setup to be easy.""We like it for the ability to automatically change passwords. At least for my group, that's the best thing.""What I found most valuable in CyberArk Privileged Access Manager is the Session Manager as it allows you to split the connection between the administrator site and the target site. I also found the Password Manager valuable as it lets you rotate the passwords of privileged users.""It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank.""Creating policies and the password rotation feature have been valuable. We don't have to memorize our password for the ADM account.""It is a single tool that isolates possible kinds of malware. You get lateral movement blocking and auditing information, e.g., you know who is doing what. You are getting protections from the service as well as a useful environment. All your admins can easily go in and out of your company while accessing your servers in a secure way, even if they are working abroad.""It is a scalable product.""The solution is stable."

More CyberArk Privileged Access Manager Pros →

"One of the features that I have found to be very valuable is its interoperability and compatibility with all types of resources, whether it's networking, infrastructure, or applications. That is, it is compatible as well as interoperable, as far as the federated authentication is concerned.""We find the solution to be reliable for our customers and it is nice that it is cloud-based and can be accessed from anywhere.""They have good push authentications.""Workforce Identity's best features include its user-friendliness and easy setup.""This solution has a lot of capabilities and features.""What I found most valuable in Okta Workforce Identity is that it worked together with VMware Workspace One, so there was this device check at the same time. My company used the trusted device method that enabled you to define that only the trusted devices including the Workspace One agent were able to access the applications directly without an additional authentication step.""The solution so far has been very stable.""Okta integrates well with other solutions. Once you have integrated an application into Okta and onboarded a user, they will be onboarded for just-in-time provisioning."

More Okta Workforce Identity Pros →

Cons
"The solution could improve by adding more connectors.""It is very complex and difficult to set up the solution.""The issue of technical support is crucial, as there are not many specialized partners available in Brazil to provide this service. While English language support is of good quality, there is a significant shortage of partners capable of meeting the demand locally.""Sometimes the infrastructure team is hesitant to provide more resources.""One thing that could be improved is to create of a better alternative for fixing group policy fees. We currently use Microsoft, but they have introduced new policies that may not be compatible.""CyberArk Privileged Access Manager could improve the integration with other solutions and ease of use. Additionally, there should be a feature to have remote connections without a VPN.""PAM could be more user-friendly and CyberArk could update the documentation to include more real-world examples. You have to learn it yourself through trial and error. In particular, the online documentation should have more information about troubleshooting.""It should be easy to use for non-technical people. Its interface can be a bit difficult. Some parts of its interface are not very intuitive. Some of the controls are hidden, and instead of having a screen with all the controls for that account on it, you have to use menus and other similar things."

More CyberArk Privileged Access Manager Cons →

"The solution can be quite expensive.""The only aspect in which it can be improved is that the interface could be cleaner. I found this even when I was trying to do my certification exam because the certification is hands-on. You find yourself fumbling around a little bit to find simple things. This happens even when you start to get familiar with the product.""A room for improvement in Okta Workforce Identity is its price. It could be cheaper. The biggest benefit of the solution is that everything works securely without extra steps, so you're saving on your workforce's time and effort because your applications work smoothly and securely, but you'd need to pay some amount of money for that. Another area that could be improved, though not necessarily regarding Okta Workforce Identity, is the SSO applications because so many of the source applications charge extra money to put the SSO to work, which means you have to buy a more expensive license. Nowadays, SSO is a mainstream functionality and it should be out-of-the-box in those applications because it's so easy to set up.""This user integration with the Okta integration network could be simplified.""We've not had any problems with Okta.""The solution is very expensive.""It's not compatible with on-premises installations, unless you host it as a SaaS. We were not able to do that. For example, imagine a scenario where the cloud is not available. Then, Okta will not work for you. That use case will readily fail because it doesn't have an on-premises installation that you can use to authenticate or provide identity and access management. If you have a purely on-premises solution that is not connected to the internet, then this will not work. This is one area that can be improved.""Okta Workforce Identity could improve provisioning it can be made simpler."

More Okta Workforce Identity Cons →

Pricing and Cost Advice
  • "The price of CyberArk support could be a little bit less. Otherwise, pricing is fine."
  • "Before we bought it, they were licensing each function individually, which got complicated and very expensive. When we decided to buy it, it was much more straightforward and still quite expensive, but it brings a lot of value and risk reduction to the organization."
  • "It is in line with its competitors, but all such solutions cost too much money."
  • "CyberArk DNA is free if you purchase the CyberArk solution. There is no additional charge for CyberArk DNA, which is great."
  • "The main problem for the tool is its licensing. I work for a really big company. When you try to develop this as a service, usually you work with leverage teams who are formed with dozens of members. You might dedicate one FTE, or less, for something, e.g., an antivirus administrator. You might have half an FTE's effort dedicated to administering the antivirus, but then you have a team of about 30 users who might access that ticket. The problem is that CyberArk eliminated the possibility of concurrent users years ago. This is a big problem for companies who work with leverage teams. You need to pay for everyone. 40 licenses are used by 20 or 30 people. This is a big problem because licenses are not precisely cheap."
  • "It's expensive, certainly. But CyberArk is the leader in the market with regards to privileged access management. You pay a lot, but you are paying for the value that is being delivered."
  • "Previously, the pricing was very meager. They started publicizing and advertising the solution, growing CyberArk, as an organization. They also changed their pricing with that growth, e.g., the pricier the product, the more people who will purchase it."
  • "Generally, I don't get involved in the licensing or the purchasing side of it, but I do know that the licenses are expensive."
  • More CyberArk Privileged Access Manager Pricing and Cost Advice →

  • "The pricing is reasonable."
  • "This solution is costly. Pricing is decent if you have less users, but it significantly goes up the more users you have, with its cost not justified."
  • "This is an expensive solution but the security makes it worthwhile."
  • "The price of Okta Workforce Identity is competitively priced. We pay annually for the use of the solution."
  • "The price of the solution is good."
  • "The cost per user for this solution is really high and could be reduced."
  • "The price of Okta Workforce Identity is reasonable."
  • "The solution is not the cheapest but not the most expensive. They are in the middle rating."
  • More Okta Workforce Identity Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
    708,461 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the… more »
    Top Answer:The most valuable feature of CyberArk Privileged Access Manager is privileged threat analytics.
    Top Answer:The price of the solution is reasonable. I rate the price CyberArk Privileged Access Manager a seven out of ten.
    Top Answer:It offers very helpful support. The technical team is very helpful.
    Top Answer:We are using the 30-day free trial. The solution is expensive. I'd rate it one out of ten in terms of affordability.
    Top Answer:I'm not sure what areas need improvement. They are at the top in terms of identity management. I can't find any shortcomings. We don't need any additional features as it covers more than our needs… more »
    Ranking
    Views
    32,107
    Comparisons
    19,292
    Reviews
    30
    Average Words per Review
    938
    Rating
    8.5
    Views
    18,912
    Comparisons
    15,557
    Reviews
    20
    Average Words per Review
    563
    Rating
    8.4
    Comparisons
    Also Known As
    CyberArk Privileged Access Security
    Learn More
    CyberArk
    Video Not Available
    Overview

    CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

    CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

    Benefits of CyberArk Privileged Access Manager

    Some of CyberArk Privileged Access Manager’s benefits include:

    • The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
    • The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
    • The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

    Reviews from Real Users

    CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

    PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

    Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

    Okta Workforce Identity is an Identity and Access Management as a Service (IDaaS) (IAMaaS) solution designed for web based applications, both in the cloud and behind the firewall. The solution provides easy, secure access for your workforce and protects your data from any device in any location. It also enables your business partners to collaborate with you effectively and securely. Additionally, with Okta Workforce Identity, you can streamline access across your entire organization so you can focus on moving your business forward.

    Okta Workforce Identity Features

    Okta Workforce Identity has many valuable key features. Some of the most useful ones include:

    • Single sign-on (SSO): Secure cloud single sign-on for IT teams, security, and all other users.
    • Multi-factor authentication (MFA): With this feature, your organization remains secure.
    • Fastpass: Okta Workforce Identity’s Fastpass enables passwordless authentication into anything.
    • Okta Integration Network: The solution includes 7,500+ deep, pre-built integrations to securely connect everything.
    • Universal directory: Okta Workforce Identity has a single directory for all users, groups, and devices.
    • Lifecycle management: You can manage provisioning with easy-to-implement automation
    • Identity governance: The solution has unified IAM and governance that helps to reduce risk.
    • Workflows: This feature makes it easy to automate identity processes at scale without having to write any code.
    • Privileged access management (PAM): Using Okta Workforce Identity, users can authorize, manage, and monitor account access easily.

    Okta Workforce Identity Benefits

    There are many benefits to implementing Okta Workforce Identity. Some of the biggest advantages the solution offers include:

    • All-in-one solution: Okta Workforce Identity is a complete solution for all your apps that’s universal, reliable, and easy.
    • Single identity platform: Users can securely manage apps and multi-cloud environments across a single identity platform.
    • Comprehensive and customizable: The solution is created to suit all of your evolving business needs. It enables your organization to handle any workforce or customer identity use case while enhancing your security. It has 31 API endpoints to customize configuration, user authentication, and access control.
    • API-first architecture: Its API-first architecture makes it a suitable option for developers.
    • Easy to use: Okta Workforce Identity is user friendly, easy to navigate, and has a central admin console to manage all users, apps, and policies.
    • Reliable: The solution is built with self-healing nodes for greater stability. In addition, it has high availability and reduces downtime.

    Reviews from Real Users

    Okta Workforce Identity is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it is easy to use and has great SSO and MFA features.

    Tor N., Executive Director at Semaphore, shares what he finds most valuable about the solution. “It is extremely easy to work with, simple to set up, and reasonably priced.”

    “It is secure and multi featured with trusted device, SSO, and MFA features and integrates well with other solutions,” says Timo H., Director, Device Management at IT-palvelutalo Valtti at Valtti, part of Advania.

    “One of the features that I have found to be very valuable is its interoperability and compatibility with all types of resources, whether it's networking, infrastructure, or applications. That is, it is compatible as well as interoperable, as far as the federated authentication is concerned," writes Rama N., Senior Director - Principal Architect at a computer software company.

    Offer
    Learn more about CyberArk Privileged Access Manager
    Learn more about Okta Workforce Identity
    Sample Customers
    Rockwell Automation
    Box, Groupon, National Geographic, Western Union, DocuSign
    Top Industries
    REVIEWERS
    Financial Services Firm23%
    Computer Software Company15%
    Insurance Company12%
    Healthcare Company9%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Financial Services Firm13%
    Educational Organization11%
    Government6%
    REVIEWERS
    Computer Software Company21%
    Manufacturing Company21%
    Comms Service Provider13%
    Healthcare Company8%
    VISITORS READING REVIEWS
    Computer Software Company20%
    Financial Services Firm9%
    Government7%
    Comms Service Provider7%
    Company Size
    REVIEWERS
    Small Business21%
    Midsize Enterprise13%
    Large Enterprise66%
    VISITORS READING REVIEWS
    Small Business18%
    Midsize Enterprise21%
    Large Enterprise61%
    REVIEWERS
    Small Business38%
    Midsize Enterprise20%
    Large Enterprise42%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise13%
    Large Enterprise62%
    Buyer's Guide
    CyberArk Privileged Access Manager vs. Okta Workforce Identity
    May 2023
    Find out what your peers are saying about CyberArk Privileged Access Manager vs. Okta Workforce Identity and other solutions. Updated: May 2023.
    708,461 professionals have used our research since 2012.

    CyberArk Privileged Access Manager is ranked 1st in Privileged Access Management (PAM) with 37 reviews while Okta Workforce Identity is ranked 3rd in Identity and Access Management as a Service (IDaaS) (IAMaaS) with 23 reviews. CyberArk Privileged Access Manager is rated 8.4, while Okta Workforce Identity is rated 8.4. The top reviewer of CyberArk Privileged Access Manager writes "Lets you ensure relevant, compliant access in good time and with an audit trail, yet lacks clarity on MITRE ATT&CK". On the other hand, the top reviewer of Okta Workforce Identity writes "Extremely easy to work with, simple to set up, and reasonably priced ". CyberArk Privileged Access Manager is most compared with Azure Active Directory (Azure AD), Cisco ISE (Identity Services Engine), Delinea Secret Server, WALLIX Bastion and Oracle Identity Governance, whereas Okta Workforce Identity is most compared with Google Cloud Identity, SailPoint IdentityIQ, Azure Active Directory (Azure AD), Auth0 and Zscaler Private Access. See our CyberArk Privileged Access Manager vs. Okta Workforce Identity report.

    We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.