Try our new research platform with insights from 80,000+ expert users

CyberArk Privileged Access Manager vs One Identity Safeguard comparison

CyberArk and One Identity are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #1 with an average rating of 8.7, while One Identity is ranked #3 with an average rating of 7.4. CyberArk holds a 18.0% mindshare in PAM, compared to One Identity’s 3.9% mindshare. Additionally, 94% of CyberArk users are willing to recommend the solution, compared to 93% of One Identity users who would recommend it.
CyberArk Privileged Access ...
Read 223 CyberArk Privileged Access Manager reviews
  • 8,094 Views
  • 3,158 Comparison Views
94% willing to recommend
One Identity Safeguard
Read 45 One Identity Safeguard reviews
  • 2,675 Views
  • 787 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

CyberArk Privileged Access Manager and One Identity Safeguard are leading solutions in the privileged access management category. CyberArk holds an upper hand with its security features, while One Identity is favored for ease of management capabilities.

Features: CyberArk provides extensive security controls, comprehensive policy management, and customizable integration options. One Identity Safeguard offers easy management of privileged accounts, session monitoring, and user-friendly features.

Room for Improvement: CyberArk can improve its complex configuration process, increase usability, and reduce the expertise required. One Identity needs to enhance its reporting features, frequency of updates, and enrich integration options.

Ease of Deployment and Customer Service: CyberArk's deployment is complex, requiring technical expertise, but offers dependable support. One Identity allows for faster deployment but needs improved customer support for smoother transitions.

Pricing and ROI: CyberArk has a high initial cost but shows considerable long-term ROI. One Identity is more cost-effective upfront, though opinions differ on the long-term value.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Privileged Access Manager vs. One Identity Safeguard Report (Updated: June 2025).
Buyer's Guide
CyberArk Privileged Access Manager vs. One Identity Safeguard
June 2025
Download the complete report
Helped 856,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.0
CyberArk Privileged Access Manager enhances security, reduces costs, and improves efficiency by automating password management and streamlining workflows.
Sentiment score
7.0
One Identity Safeguard enhances security and compliance, ensuring PCI-DSS compliance, reducing risks, and improving operational efficiency with substantial ROI.
The return on investment lies in improved security infrastructure, addressing over-privileged access, and reducing the risk of credential compromise, which is a major source of data breaches.
The end users have the authority to reconcile the password or verify it before using session isolation, which is one of the unique features that can be enabled through Privileged Session Manager, preventing any attacks from happening within the organization when connected with sessions through CyberArk Privileged Access Manager.
CyberArk Privileged Access Manager has helped customers save on costs primarily by reducing the number of engineering and information security personnel.
For more quotes and insights, download the CyberArk Privileged Access Manager report
Any PAM solution, when I deploy it well and customers use it, leads to a return on investment.
For more quotes and insights, download the One Identity Safeguard report
DerrickAkankwasa - PeerSpot reviewer
AS
reviewer1247523 - PeerSpot reviewer
NS
 

Customer Service

Sentiment score
6.5
CyberArk's support is mixed; effective higher-tier levels, but needs better coordination and consistency for complex issues.
Sentiment score
6.5
One Identity Safeguard’s customer service is praised for responsiveness and efficiency, but standard support faces mixed reviews.
CyberArk has been exceptional in coming back to us with immediate responses.
It could be forever until you talk to someone who knows what they are doing.
They are helpful, but complex issues can take a long time to resolve, which can delay solutions for urgent customer issues.
For more quotes and insights, download the CyberArk Privileged Access Manager report
I sometimes need escalations to reach expertise.
Sometimes, I get a very helpful response and they address issues on a call.
When I have day-to-day incidents and problems, the response is good enough in terms of time and quality.
For more quotes and insights, download the One Identity Safeguard report
reviewer2620185 - PeerSpot reviewer
SI
reviewer2618997 - PeerSpot reviewer
NS
NT
reviewer2679786 - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.7
CyberArk Privileged Access Manager is scalable, supports diverse deployments, and efficiently handles thousands of users, despite planning requirements.
Sentiment score
7.1
One Identity Safeguard is praised for scalability and ease of resource deployment but may affect performance and high availability.
The CPM can reportedly handle up to 50,000 accounts independently without issue.
I would rate it a ten out of ten for scalability.
They had 40,000 passwords in this one safe, and it was saving the last ten iterations of each password object. That means they had 400,000 password objects in this safe. They exceeded the limit.
For more quotes and insights, download the CyberArk Privileged Access Manager report
The scalability of One Identity Safeguard is perfect, scoring ten out of ten.
We have a cluster of SPPs and a cluster of SPSs, and we can add a node to that cluster without much fuss.
I would rate it a nine out of ten for scalability.
For more quotes and insights, download the One Identity Safeguard report
NC
reviewer2620185 - PeerSpot reviewer
SI
reviewer2687787 - PeerSpot reviewer
NT
reviewer2679786 - PeerSpot reviewer
 

Stability Issues

Sentiment score
7.8
CyberArk Privileged Access Manager is highly stable, reliable, with minimal issues, and excels in performance and disaster recovery.
Sentiment score
7.5
One Identity Safeguard is highly stable and reliable, with minor issues promptly addressed through regular updates.
Proper fine-tuning and expertise ensure the product performs well.
Overall, the stability of the solution is high.
It has a large customer base and positive feedback within my network.
For more quotes and insights, download the CyberArk Privileged Access Manager report
I would rate it a nine out of ten for stability.
In terms of stability, I rate One Identity Safeguard nine to ten out of ten.
I encounter problems primarily with the failover procedure.
For more quotes and insights, download the One Identity Safeguard report
Lasantha Wijesinghe - PeerSpot reviewer
TB
reviewer2619339 - PeerSpot reviewerreviewer2679786 - PeerSpot reviewerreviewer2687787 - PeerSpot reviewer
NS
 

Room For Improvement

Users recommend enhancing CyberArk's interface, integration, documentation, customization, costs, support, performance, and training for improved experience.
One Identity Safeguard needs improvements in integration, management, documentation, interface, support, monitoring, threat detection, and pricing.
They want everything to be on the cloud, but even in the SaaS version of CyberArk Privileged Access Manager, they need to deploy some servers on-premises.
We cannot generate a plug-in for web-based applications.
If they want clients to move to the cloud, they need to support them in real-time.
For more quotes and insights, download the CyberArk Privileged Access Manager report
For some configurations on the SPS side, if I need to make changes, such as for DNS servers, I must redeploy the machine.
There are many steps. We are still in the onboarding phase, and it seems very manual.
Another area for improvement could be the threat detection capabilities, like those seen in other PAM vendors.
For more quotes and insights, download the One Identity Safeguard report
reviewer2618997 - PeerSpot reviewerreviewer2619633 - PeerSpot reviewerSaransh Sondhi - PeerSpot reviewer
NS
NT
reviewer2679786 - PeerSpot reviewer
 

Setup Cost

CyberArk Privileged Access Manager is costly yet favored for its robust security and market-leading capabilities, justifying the expense.
One Identity Safeguard is costly but valued for flexibility and robust security, with straightforward licensing and worthwhile investment.
CyberArk is expensive compared to other products I know.
CyberArk is comparatively expensive compared to other PAM solutions, such as Delinea, especially during renewal.
CyberArk's SaaS solution is particularly expensive.
For more quotes and insights, download the CyberArk Privileged Access Manager report
It is one of those where the more you buy, the cheaper it is.
It is cheaper than CyberArk.
It is more expensive than Secret Server but way less expensive than CyberArk.
For more quotes and insights, download the One Identity Safeguard report
Lasantha Wijesinghe - PeerSpot reviewerreviewer2618997 - PeerSpot reviewerreviewer2619339 - PeerSpot reviewer
NT
reviewer2679786 - PeerSpot reviewerreviewer2686314 - PeerSpot reviewer
 

Valuable Features

CyberArk Privileged Access Manager offers secure, versatile management for privileged accounts with automation, integration, and a user-friendly interface.
One Identity Safeguard enhances security with seamless user experience, extensive features, centralized access, and robust monitoring for on-prem and cloud management.
CyberArk Privileged Access Manager helps ensure data privacy because we now know who is using which credentials and at what time.
It keeps a record of activities, allowing me to easily fetch screen recordings to detect any misuse and see who did what and what happened.
It can integrate with Splunk, SNMP, and other solutions and technologies.
For more quotes and insights, download the CyberArk Privileged Access Manager report
The auditing and approval mechanisms are features we did not have before and are greatly appreciated.
I think One Identity should improve its documentation because it is vast and not clear, and clear documentation on implementing the solution would be advantageous for consultants.
Compared to other PAM solutions, it is easy to implement and use from an administrator's point of view.
For more quotes and insights, download the One Identity Safeguard report
TB
Saransh Sondhi - PeerSpot reviewer
ST
NT
NS
reviewer2679786 - PeerSpot reviewer
 

Categories and Ranking

CyberArk Privileged Access ...
Ranking in Privileged Access Management (PAM)
1st
Average Rating
8.6
Reviews Sentiment
6.9
Number of Reviews
223
Ranking in other categories
User Activity Monitoring (1st), Enterprise Password Managers (2nd), Mainframe Security (2nd), Operational Technology (OT) Security (3rd)
One Identity Safeguard
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
45
Ranking in other categories
User Entity Behavior Analytics (UEBA) (6th), Non-Human Identity Management (NHIM) (4th)
 

Mindshare comparison

As of June 2025, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Privileged Access Manager is 18.0%, down from 22.6% compared to the previous year. The mindshare of One Identity Safeguard is 3.9%, down from 4.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Q&A Highlights

AG
Aug 14, 2023
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your specific needs and integrates seamlessly into your existing infrastructure. However, I recommend visiting the official website of Broadcom (the company that acquired Symantec's enterprise security business) or contacting their sales representatives to get the most up-to-date information about their PAM solutions, including any rebranding or changes that may have occurred. When evaluating any PAM solution, it's essential to consider factors such as security, integration capabilities, ease of use, vendor support, scalability, and alignment with your organization's specific needs and compliance requirements. It's also a good practice to request demonstrations, proofs of concept, and references from vendors to ensure that the solution meets your expectations. Remember to involve key stakeholders, such as IT, security, compliance, and management teams, in the decision-making process to ensure alignment with organizational goals and requirements.
See all answers
 

Featured Reviews

Abdul Durrani - PeerSpot reviewer
Enables granular and secure access with just-in-time access and Zero Trust model
CyberArk provides a good amount of control over access types. However, as a future enhancement, having additional features for cross-platform integration would be beneficial. It would be good to have integrations with other tools and firewalls, such as Zscaler and CrowdStrike. Although I am not fully aware of recent updates, more cross-platform integration would be valuable. A SOC analyst would like to have centralized access in terms of information flowing in even for privileged access management. They would like to have control over everything instead of opening four to five tabs for different sorts of information. Cross-platform integration would help with that. Customers also want CyberArk's pricing to be better so that they can implement it further and have more licenses. Implementing a privileged access management solution can be challenging. It would be great if CyberArk could provide recommendations based on the compliance standards of an organization. It would help system admins ensure that all the required ports are closed and the systems are being managed properly. If any system is not being used anymore, any ports opened for that system need to be closed. Having such recommendations would be helpful.
Read full review
Martin Ajayiobe - PeerSpot reviewer
Th password vault feature has proven to be most effective for managing privileged access
One Identity Safeguard now prevents unauthorized access to servers by eliminating privileged passwords and requiring all connections to go through a PAM-authorized process. This means no one, including hackers, can access servers without explicit approval, significantly enhancing overall security. One Identity Safeguard is easy to use with a good partner to support you, and it can be up and running within a few days. We have successfully integrated One Identity Safeguard with cloud targets, and the process was straightforward. One Identity Safeguard has improved our incident response time by 300 percent.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
856,873 professionals have used our research since 2012.
 

Answers from the Community

AG
Aug 14, 2023
Aug 14, 2023
Which PAM tool do you prefer: CyberArk Privileged Access Manager, One Identity Safeguard, Delinea Secret Server, or BeyondTrust Privileged Remote A
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your...
See 2 answers
Nurlan Temirbulatov - PeerSpot reviewer
Dec 7, 2022
Hello Avinash, it all depends on the timeline and urgency of the project. If you need to deploy a PAM tool that focuses on standing privileges, stopping lateral movement, and incorporating Zero Standing Privileges as part of Zero Trust, then please consider looking at Remediant. I've worked for BeyondTrust and have gone up against the other big players such as Delinea, Centrify, CyberArk, and HashiCorp. They more or less all offer similar solutions, but looking at your current requirements, Remediant really excels in delivering a simple, yet very effective tool in a matter of days and weeks, not months and years. 
Read full answer
DN
Aug 14, 2023
Based on your extensive list of requirements, CyberArk Privileged Access Manager appears to align well with your needs due to its comprehensive feature set, strong security controls, integration capabilities, and advanced analytics for privileged access. However, it's important to conduct in-depth evaluations, demos, and discussions with each vendor to ensure that the chosen tool meets all your specific needs and integrates seamlessly into your existing infrastructure. However, I recommend visiting the official website of Broadcom (the company that acquired Symantec's enterprise security business) or contacting their sales representatives to get the most up-to-date information about their PAM solutions, including any rebranding or changes that may have occurred. When evaluating any PAM solution, it's essential to consider factors such as security, integration capabilities, ease of use, vendor support, scalability, and alignment with your organization's specific needs and compliance requirements. It's also a good practice to request demonstrations, proofs of concept, and references from vendors to ensure that the solution meets your expectations. Remember to involve key stakeholders, such as IT, security, compliance, and management teams, in the decision-making process to ensure alignment with organizational goals and requirements.
Read full answer
 

Top Industries

By visitors reading reviews
Educational Organization
27%
Financial Services Firm
13%
Computer Software Company
12%
Manufacturing Company
6%
Computer Software Company
25%
Financial Services Firm
11%
Comms Service Provider
6%
Energy/Utilities Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the m...
See all answers
What do you like most about CyberArk Privileged Access Manager?
The most valuable features of the solution are control and analytics.
See all answers
What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?
The pricing for CyberArk Privileged Access Manager is quite expensive, and the pricing varies from region to region. In APAC, CyberArk Privileged Access Manager can be obtained for less than in Nor...
See all answers
What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
The pricing of One Identity Safeguard is fairly priced and cheaper than other solutions of the same enterprise level. It provides a good cost-benefit ratio.
See all answers
What needs improvement with One Identity Safeguard?
There is room for improvement in integration between modules. The native integration between SPP and SPS, which is currently based on a plugin, could be enhanced. Customization for lookup passwords...
See all answers
 

Comparisons

Microsoft Entra ID vs CyberArk Privileged Access Manager Logo
Microsoft Entra ID vs CyberArk Privileged Access Manager
Compared 9% of the time
Delinea Secret Server vs CyberArk Privileged Access Manager Logo
Delinea Secret Server vs CyberArk Privileged Access Manager
Compared 7% of the time
WALLIX Bastion vs CyberArk Privileged Access Manager Logo
WALLIX Bastion vs CyberArk Privileged Access Manager
Compared 6% of the time
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager Logo
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager
Compared 5% of the time
ManageEngine PAM360 vs CyberArk Privileged Access Manager Logo
ManageEngine PAM360 vs CyberArk Privileged Access Manager
Compared 3% of the time
More CyberArk Privileged Access Manager Competitors
WALLIX Bastion vs One Identity Safeguard Logo
WALLIX Bastion vs One Identity Safeguard
Compared 18% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 9% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 9% of the time
Fudo PAM vs One Identity Safeguard Logo
Fudo PAM vs One Identity Safeguard
Compared 7% of the time
Saviynt vs One Identity Safeguard Logo
Saviynt vs One Identity Safeguard
Compared 6% of the time
More One Identity Safeguard Competitors
 

Product Reports

Buyer's Guide
CyberArk Privileged Access Manager
June 2025
CyberArk Privileged Access Manager reportDownload CyberArk Privileged Access Manager product report
Buyer's Guide
One Identity Safeguard
May 2025
One Identity Safeguard reportDownload One Identity Safeguard product report
 

Also Known As

CyberArk Privileged Access Security, CyberArk Enterprise Password Vault
No data available
 

Overview

CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

Benefits of CyberArk Privileged Access Manager

Some of CyberArk Privileged Access Manager’s benefits include:

  • The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
  • The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
  • The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

Reviews from Real Users

CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

CyberArk

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

One Identity
 

Sample Customers

Rockwell Automation
Cavium
Buyer's Guide
CyberArk Privileged Access Manager vs. One Identity Safeguard
June 2025
Free Report: CyberArk Privileged Access Manager vs. One Identity Safeguard
Find out what your peers are saying about CyberArk Privileged Access Manager vs. One Identity Safeguard and other solutions. Updated: June 2025.
DOWNLOAD NOW
856,873 professionals have used our research since 2012.
See our CyberArk Privileged Access Manager vs. One Identity Safeguard report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.