Try our new research platform with insights from 80,000+ expert users

CyberArk Privileged Access Manager vs One Identity Safeguard vs OneLogin by One Identity comparison

The compared CyberArk and One Identity solutions aren't in the same category. CyberArk is ranked #1 in PAM , with an average rating of 8.6, and holds a 16.3% mindshare in the category. One Identity is ranked #4 in PAM , with an average rating of 7.1, and holds a 3.6% mindshare. Additionally, 95% of CyberArk users are willing to recommend the solution, compared to 93% of One Identity users who would recommend it.
CyberArk Privileged Access ...
Read 227 CyberArk Privileged Access Manager reviews
  • 16,420 Views
  • 6,404 Comparison Views
95% willing to recommend
One Identity Safeguard
Read 45 One Identity Safeguard reviews
  • 3,754 Views
  • 2,515 Comparison Views
93% willing to recommend
OneLogin by One Identity
Read 17 OneLogin by One Identity reviews
  • 2,408 Views
  • 939 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between CyberArk Privileged Access Manager, One Identity Safeguard, and OneLogin by One Identity based on real PeerSpot user reviews.

Find out what your peers are saying about CyberArk, Delinea, One Identity and others in Privileged Access Management (PAM).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Privileged Access Management (PAM) Report (Updated: August 2025).
Buyer's Guide
Privileged Access Management (PAM)
August 2025
Download the complete report
Helped 866,324 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

Privileged Access Management (PAM) Market Share Distribution
ProductMarket Share (%)
CyberArk Privileged Access Manager16.3%
Delinea Secret Server7.5%
WALLIX Bastion7.4%
Other68.8%
Privileged Access Management (PAM)
Privileged Access Management (PAM) Market Share Distribution
ProductMarket Share (%)
One Identity Safeguard3.6%
CyberArk Privileged Access Manager16.3%
Delinea Secret Server7.5%
Other72.6%
Privileged Access Management (PAM)
Identity and Access Management as a Service (IDaaS) (IAMaaS) Market Share Distribution
ProductMarket Share (%)
OneLogin by One Identity2.2%
Microsoft Entra ID24.2%
SailPoint Identity Security Cloud12.6%
Other61.0%
Identity and Access Management as a Service (IDaaS) (IAMaaS)
 

Featured Reviews

Abdul Durrani - PeerSpot reviewer
Enables granular and secure access with just-in-time access and Zero Trust model
CyberArk provides a good amount of control over access types. However, as a future enhancement, having additional features for cross-platform integration would be beneficial. It would be good to have integrations with other tools and firewalls, such as Zscaler and CrowdStrike. Although I am not fully aware of recent updates, more cross-platform integration would be valuable. A SOC analyst would like to have centralized access in terms of information flowing in even for privileged access management. They would like to have control over everything instead of opening four to five tabs for different sorts of information. Cross-platform integration would help with that. Customers also want CyberArk's pricing to be better so that they can implement it further and have more licenses. Implementing a privileged access management solution can be challenging. It would be great if CyberArk could provide recommendations based on the compliance standards of an organization. It would help system admins ensure that all the required ports are closed and the systems are being managed properly. If any system is not being used anymore, any ports opened for that system need to be closed. Having such recommendations would be helpful.
Read full review
Tor Nordhagen - PeerSpot reviewer
Transparent mode for privileged sessions will greatly simplify our client's administrative situation
We're introducing the solution's transparent mode for privileged sessions. This is part of what the client hasn't used before. It will simplify their administrative situation greatly. So far, the rollout of this feature has been a seamless process, but we're still in the midst of rolling it out. The benefits will be on the risk side. Right now, the way accounts are managed, you don't necessarily know who is using an account. There's a shared admin account, and that's not a good thing. And those accounts are shared in wallets by several people. One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network.
Read full review
Ben Ruset - PeerSpot reviewer
Streamlines access management with top-notch support, and a user-friendly interface, making it a highly effective solution for businesses of all sizes
During my evaluation of various products, one standout feature of OneLogin that impressed me was their mobile app for authentication through push notifications. Unlike traditional methods involving rotating codes, the OneLogin app simplifies the process by sending a push notification asking if the login attempt is legitimate. If confirmed, the login proceeds seamlessly. The primary benefit is its user-friendly interface, making it particularly accessible for non-technical users. One aspect I particularly appreciate is their exceptional customer support whenever I've needed assistance. Their sales team has also been highly responsive and helpful in connecting me with necessary resources, although we haven't faced any major challenges.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Technical support has been very responsive in navigating challenges. It is very easy to open a ticket."
"The password management feature is valuable."
"All access to our servers by both staff and vendors is monitored and recorded."
"CyberArk has resulted in a massive increase in our security footprint."
"The most valuable features of CyberArk Privileged Access Manager include its search capabilities."
"The features that are most effective, like every PAM solution, include monitoring and password rotations."
"The solution is stable."
"We've written over a hundred custom connectors ourselves that allow us to do all types of privileged session management for various applications. On top of that, the rest of the API-based central credential providers allow us to get away from credentials that may be hard-coded in the script or some application."
More CyberArk Privileged Access Manager pros
"Safeguard has the ability to record and retrieve in the full-video format."
"It is easy to manage. There is a very logical, clear user interface. Also, the integration of scripts is thoughtfully implemented. Overall, it's a nice product to manage."
"Safeguard can define and update processes and procedures into the security framework of a company, including mobile. It allows us to change the policies and configurations on a mass scale in regards to security."
"We deployed it into our company for controlling a client's behavior in our data center. It is very useful to control their connections, such as RDP."
"The technical support is tremendous."
"All the features are promising, but we love the reporting feature because we can get each and every report. That's a major compliance requirement. Its reporting is really amazing, and it has made life a lot easier."
"All sessions are audited and they are indexed/searchable through the GUI."
"We have limited the possibilities for malicious actions and have made it safer for our users when they are using privileged accounts."
More One Identity Safeguard pros
"Ease of integration with AD."
"When it comes to access management, the solution's single pane of glass is extremely important. The single pane of glass for access management enables collaborative work between IT and security. We have access to certain applications that require device trust. Based on the role, we can access those applications through OneLogin Desktop."
"It's super useful to have a single pane of glass when it comes to access management."
"The single sign-on and the fact that we can integrate everything in one place and control from there were valuable features of this solution."
"Once I made the OneLogin ID, it would essentially make user names and passwords for every application that we had."
"The most valuable feature is the ease with which we can manage the sign-on feature."
"In my role, the most valuable features are two-factor authentication and self-service password reset. The most helpful feature for the institution as a whole is probably the single sign-on. As an IT director, I care about security and ease of use."
"The solution's ability to save and manage of all my passwords is great."
More OneLogin by One Identity pros
 

Cons

"One thing that could be improved is to create of a better alternative for fixing group policy fees. We currently use Microsoft, but they have introduced new policies that may not be compatible."
"The reporting should be improved. There should be more customization."
"I would like to see improvement in the custom connector for integration with different devices."
"Our DevOps team is looking in the direction of cloud, because we are not in it today. We are hoping to build it with Conjur from the ground up."
"Overall what I would really love to see is the third-party PAS reporter tool pulled more into the overall solution, ideally as its own deployable component service installation package."
"CyberArk's license is too expensive. I rate it seven out of 10 for affordability."
"Its implementation was very complex. It needs different servers."
"There is a lot of room for improvement in the report section. I also work on other tools, such as Thycotic, which allows you to create customized reports for your organization's needs. In CyberArk, there are limited reports, whereas in Thycotic or some of the other PAM tools, because the database is different, you can customize the report based on your needs through SQL queries."
More CyberArk Privileged Access Manager cons
"It needs more marketing."
"The automated change of the passwords, which is now integrated, could be improved to be more flexible regarding different systems."
"We can't review or audit HTTP and HTTPS. This functionality should be added so that we can review and audit HTTP and HTTPS."
"We have feature requests and would like to see the turnaround times on those features to be faster."
"For some users, the physical appliance has been a bit buggy."
"There is room for improvement in the launch module. They built in a launch button but they don't have effective instructions for configuring it to allow it to launch an RDP session. They're working on that, but the button is in the live product. If they were going to install something that wasn't useful, they should have just disabled it and not rolled it out with the product."
"We would like to be able to generate certificate signing requests (CSRs) from the interface for certificates."
"The product uses a lot of resources in current sessions."
More One Identity Safeguard cons
"The uptime has not been great recently, with some outages lasting six, seven, or eight hours."
"I would like better reporting from SmartFactor Authentication when a user is not able to sign in due to a new location, new IP, new device, et cetera."
"They have downtime twice a year or once in six months. During the downtime, the SSO page did not come up. When users wanted to get to their email, they were redirected to the OneLogin page, but the page did not come up, and MFA and logins failed. It completely crippled us."
"OneLogin needs to increase the number of connectors available out of the box to connect to the different endpoints. The number of out-of-box connectors should be increased."
"This product doesn't necessarily provide us with all of the functionality that we need, such as being able to share passwords with external users."
"I'd like OneLogin to have a customization section that displays the company's offerings, categorized by different topics."
"We've been experiencing some pain points since the acquisition. For example, there have been some outages we didn't see previously, which are a big topic with my executive team. You have hundreds of applications relying on this service for login. If the service is unavailable, nobody can log into these applications."
"OneLogin offers a Virtual LDAP feature that we utilize, although it differs slightly from traditional LDAP servers."
More OneLogin by One Identity cons
 

Pricing and Cost Advice

"CyberArk Enterprise Password Vault is a very expensive product."
"Compared to other solutions, it is costly."
"It's not a cheap application. It's very expensive."
"If you are looking at implementing this solution, buy the training and go to it."
"I focus more on the technical side, but I hear customers say that if CyberArk was more affordable, they might have acquired more licenses. Some clients consider alternative solutions due to pricing concerns."
"I'm a technician so I don't handle the licensing for CyberArk Privileged Access Manager, but I know that the price for the core license is about €140 per year. There's another type of license, the external vendor license, and that's about €600 and you can manage twenty devices. From what I know, the price for one device in a subscription is about €65 per year. You can buy the CyberArk Endpoint Privilege Manager too, or you can buy some other application or application license with CyberArk Privileged Access Manager, but all other features, such as the Analytics Server is included in the basic CyberArk license. With WALLIX, you need to buy separate licenses for the features."
"Pricing and licensing depend on the environment."
"With reducing the privileged account access, there has been a huge improvement. They are now bringing more accounts on a little at a time."
More CyberArk Privileged Access Manager pricing and cost advice
"Its subscription cost is too much, and sometimes, it is very difficult to pitch the solution to the management for cost approval. If the cost is reduced a little bit, it would be easier. If its cost was less, many other organizations that currently cannot afford it would be able to use this technology. I'm sure many organizations around the globe are having issues with identity management, and it is a very difficult task for IT to manage privileged accounts."
"The pricing depends on our perspective, our budget, and, of course, the competitors we are taking into account."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"It was definitely cheaper than the other two products that we evaluated."
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"Our licensing costs are on a yearly basis."
"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."
"It is cheaper than CyberArk. Its price is fair."
More One Identity Safeguard pricing and cost advice
"Surprisingly expensive given the price of on-premise solutions."
"We were happy with the price we got when we signed up, but I don't know what will happen when the time comes to renew because it is a different company now. We haven't seen any pricing models or had that discussion yet. My renewal is a year and a half away. It's worth what we're paying for it. There's no way we could provide the level of service for cheaper or try to do the same in-house."
"The pricing and licensing are reasonable. It is much cheaper than other products."
"OneLogin's pricing, from the perspective of the education sector, seems quite reasonable for the value it delivers."
"While I wish OneLogin's pricing was more affordable, their licensing model, which is based on per user, is acceptable."
"The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it."
"The price of the licensing is fine."
"It was cheap in the beginning, and then it became very expensive. We were initially charged $2 per user per month, which was fine, but by the second year, they increased it to $5 per user. That became very expensive for us because we had about 1,500 users. At $2 per user, it comes out to be $3,000 a month, which is $36,000 a year. If we move to $5 per user, it comes out to be $7,500 a month. That made its cost so high. That is why we removed the product because the cost was high."
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
866,324 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
15%
Manufacturing Company
9%
Government
7%
Computer Software Company
21%
Financial Services Firm
8%
Comms Service Provider
7%
Government
6%
Computer Software Company
22%
Healthcare Company
7%
Financial Services Firm
5%
Manufacturing Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business59
Midsize Enterprise41
Large Enterprise170
By reviewers
Company SizeCount
Small Business18
Midsize Enterprise12
Large Enterprise19
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise4
Large Enterprise8
 

Questions from the Community

How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to m...
See all answers
What do you like most about CyberArk Privileged Access Manager?
The most valuable features of the solution are control and analytics.
See all answers
What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?
It's not a cheap application. It's very expensive.
See all answers
What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
See all answers
What is your experience regarding pricing and costs for One Identity Safeguard?
The pricing of One Identity Safeguard is fairly priced and cheaper than other solutions of the same enterprise level....
See all answers
What needs improvement with One Identity Safeguard?
There is room for improvement in integration between modules. The native integration between SPP and SPS, which is cu...
See all answers
What do you like most about OneLogin by One Identity?
OneLogin is efficient.
See all answers
What needs improvement with OneLogin by One Identity?
There have been some outages over the years. The uptime has not been great recently, with some outages lasting six, s...
See all answers
What is your primary use case for OneLogin by One Identity?
We use OneLogin by One Identity to provide SAML authentication and single sign-on for all of our SaaS apps.
See all answers
 

Comparisons

Microsoft Entra ID vs CyberArk Privileged Access Manager Logo
Microsoft Entra ID vs CyberArk Privileged Access Manager
Compared 7% of the time
WALLIX Bastion vs CyberArk Privileged Access Manager Logo
WALLIX Bastion vs CyberArk Privileged Access Manager
Compared 6% of the time
Delinea Secret Server vs CyberArk Privileged Access Manager Logo
Delinea Secret Server vs CyberArk Privileged Access Manager
Compared 6% of the time
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager Logo
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager
Compared 5% of the time
CyberArk Endpoint Privilege Manager vs CyberArk Privileged Access Manager Logo
CyberArk Endpoint Privilege Manager vs CyberArk Privileged Access Manager
Compared 2% of the time
More CyberArk Privileged Access Manager Competitors
WALLIX Bastion vs One Identity Safeguard Logo
WALLIX Bastion vs One Identity Safeguard
Compared 14% of the time
SailPoint Identity Security Cloud vs One Identity Safeguard Logo
SailPoint Identity Security Cloud vs One Identity Safeguard
Compared 9% of the time
One Identity Cloud PAM Essentials vs One Identity Safeguard Logo
One Identity Cloud PAM Essentials vs One Identity Safeguard
Compared 8% of the time
Delinea Secret Server vs One Identity Safeguard Logo
Delinea Secret Server vs One Identity Safeguard
Compared 7% of the time
Fudo PAM vs One Identity Safeguard Logo
Fudo PAM vs One Identity Safeguard
Compared 7% of the time
More One Identity Safeguard Competitors
Microsoft Entra ID vs OneLogin by One Identity Logo
Microsoft Entra ID vs OneLogin by One Identity
Compared 16% of the time
LastPass Business vs OneLogin by One Identity Logo
LastPass Business vs OneLogin by One Identity
Compared 14% of the time
Okta Workforce Identity vs OneLogin by One Identity Logo
Okta Workforce Identity vs OneLogin by One Identity
Compared 12% of the time
Auth0 vs OneLogin by One Identity Logo
Auth0 vs OneLogin by One Identity
Compared 9% of the time
Tools4ever HelloID vs OneLogin by One Identity Logo
Tools4ever HelloID vs OneLogin by One Identity
Compared 7% of the time
More OneLogin by One Identity Competitors
 

Product Reports

Buyer's Guide
CyberArk Privileged Access Manager
August 2025
CyberArk Privileged Access Manager reportDownload CyberArk Privileged Access Manager product report
Buyer's Guide
One Identity Safeguard
August 2025
One Identity Safeguard reportDownload One Identity Safeguard product report
Buyer's Guide
OneLogin by One Identity
August 2025
OneLogin by One Identity reportDownload OneLogin by One Identity product report
 

Also Known As

CyberArk Privileged Access Security, CyberArk Enterprise Password Vault
No data available
OneLogin, OneLogin Workforce Identity
 

Overview

CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

Benefits of CyberArk Privileged Access Manager

Some of CyberArk Privileged Access Manager’s benefits include:

  • The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
  • The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
  • The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

Reviews from Real Users

CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

CyberArk

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

One Identity


OneLogin by One Identity is a cloud-based access management solution for the modern enterprise. It delivers secure access for every user, every app and every device to meet an organization’s Workforce and Customer and Identity and Access Management (CIAM) needs.

OneLogin provides secure single sign-on, multi-factor authentication (supporting a wide array of passwordless authentication factors), adaptive authentication, desktop-level MFA, directory integration with AD, LDAP, G Suite and other external directories, identity lifecycle management and much more. OneLogin advanced authentication capabilities provide multi-layer, context aware and risk-based protection, minimizing the most common attacks and resulting in increased security, a frictionless user experience, and compliance with regulatory requirements. Furthermore, OneLogin’s user-friendly interface and streamlined design make it easy for end users and IT administrators to navigate the platform and remain productive.

One Identity
 

Sample Customers

Rockwell Automation
Cavium
OneLogin has thousands of customers across multiple industries and from around the globe such as Uber, Airbnb, Noom, Petco, Sony, Lucky Brand, Tesco, Airbus, Japan Airlines, Aetna, Compass, Kaplan, Susan G. Komen, AAA and PennyMac.
Buyer's Guide
Privileged Access Management (PAM)
August 2025
Download Free Report
Find out what your peers are saying about CyberArk, Delinea, One Identity and others in Privileged Access Management (PAM). Updated: August 2025.
DOWNLOAD NOW
866,324 professionals have used our research since 2012.