Try our new research platform with insights from 80,000+ expert users

CyberArk Privileged Access Manager vs Workspace ONE UEM comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CyberArk Privileged Access ...
Average Rating
8.6
Reviews Sentiment
6.9
Number of Reviews
221
Ranking in other categories
User Activity Monitoring (1st), Enterprise Password Managers (2nd), Privileged Access Management (PAM) (1st), Mainframe Security (2nd), Operational Technology (OT) Security (3rd)
Workspace ONE UEM
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
100
Ranking in other categories
Remote Access (3rd), Virtual Desktop Infrastructure (VDI) (7th), Enterprise Mobility Management (EMM) (3rd), Identity and Access Management as a Service (IDaaS) (IAMaaS) (8th), Unified Endpoint Management (UEM) (2nd)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. CyberArk Privileged Access Manager is designed for Privileged Access Management (PAM) and holds a mindshare of 18.3%, down 22.8% compared to last year.
Workspace ONE UEM, on the other hand, focuses on Unified Endpoint Management (UEM), holds 15.9% mindshare, down 19.0% since last year.
Privileged Access Management (PAM)
Unified Endpoint Management (UEM)
 

Featured Reviews

Lasantha Wijesinghe - PeerSpot reviewer
We have visibility and control through real-time user behavior analytics
It took us some time to realize its benefits because there was a learning curve for us. It took us about a year to get our heads around this product and start effectively using it. It is a journey. It takes at least five years for any company to make this product very useful and reach maturity. It is not only the product's fault. The company needs to have a vision, and the company culture needs to go with it. Senior leadership needs to support the vision. You need to have lots of ingredients for success. If everything is in place, you will see success after one year. In the first year, it is a struggle for everybody. My company was bought by a bigger company, and they were very new to privileged access management. Everybody was struggling. The advice I would give is to have a good vision for privileged access management. You need dedicated teams, senior management support, and proper company policies and standards before implementing the solution. Start building knowledge slowly and avoid jumping into the deep end without preparation. I would rate CyberArk Privileged Access Manager a nine out of ten.
Joel Amate - PeerSpot reviewer
The solution is stable, scalable, and offers single sign-on
I give the solution a nine out of ten. I suggest if a person wants to start using Workspace ONE, they should make use of the cloud instance instead of the on-premise instance. There is an on-premise instance available, but the cloud instance is a better option now. I advise them to make use of the cloud instance. This is because management-wise, there is no need to manage a server. For example, we don't need to buy a server, and we don't need to buy network switches, which are required for the on-premise. At the same time, I can advise setting up all the functionalities or whatever functionalities are available for the trial version. We need to check if the Workspace ONE integration includes Azure AD or other identity providers. A lot of applications are using these providers for authentication, such as Ping, Okta, and others. If the Workspace ONE integration doesn't include these providers, the company might have to find a different solution. Security projects should also be considered. Specifically, if the solution can integrate with local security solutions to secure mobile devices.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Their legacy of more than 20 years is very valuable. It brings a lot of stability to the product and a wide variety of integration with the ecosystem. Because of these factors, it has also been very successful in deployment. So, the legacy and integration with other technologies make the PAM platform very stable and strong. In terms of features, most of the other vendors are still focusing just on the privileged access management or session recording, but CyberArk has incorporated artificial intelligence to make PAM a more proactive system. They have implemented threat analytics into this, and there is also a lot of focus on domain controller production, Windows Server protection, and stuff like that. They have also further advanced it with the security on the cloud and DevOps systems. They have a bundle licensing model, which really helps. They don't have a complex licensing model. Even though in our market, people say CyberArk is expensive as compared to some of the other products, but in terms of overall value and as a bundling solution, it is an affordable and highly scalable product."
"The most valuable feature of CyberArk Privileged Access Manager is privileged threat analytics."
"The ability to develop and deploy applications with no stored secrets is very valuable."
"We are able to rotate privileged user passwords to eliminate fraudulent use."
"You can see the benefits of CyberArk Privileged Access Manager immediately."
"Because we now have the ability to grant access to management utilities like DNS Manager, Sequel Studio, and MMC, in a secure fashion, without system admins being required to continually reenter various passwords that are stored who knows where, it has really made the system admin's job much easier. It has made the PSM's job much easier. It has made the auditor's job and the security team's job and the access manager's job significantly easier, because we're able to move much more quickly toward a role-based access management system, and that is really streamlining the whole onboarding/offboarding management process."
"It enables companies to automate password management on target systems gaining a more secure access management approach."
"Super stable and easy to scale"
"The most valuable feature is single sign-on."
"We find it to be reliable."
"The single sign-on feature, which integrates with the Identity Manager is one of the most vital features."
"VMware Workspace ONE has been stable so far."
"The platform provides a stable environment for operations and quickly creates new environments. Additionally, it offers efficient flexibility."
"Cloud-based VMware Workspace ONE is very good. It is easy to deploy and manage. Maintenance is also quite simple."
"The Identity component of this solution is its most valuable feature."
"We've configured single sign-on for two or three enterprise customers, and it works very well."
 

Cons

"The initial setup of CyberArk Privileged Access Manager difficulty depends on the environment that you are implementing it into. However, it typically is simple."
"Occasionally, there are lagging issues. Sometimes users have to re-login. When users copy passwords, there is sometimes a lag, so they have to log out and log in, but these are very rare cases."
"CyberArk Enterprise Password Vault can improve the distributive vault feature. Distributing the vault in multiple areas and multiple data centers should improve."
"CyberArk has brought a feature called Vendor Team Manager, but it does not provide full access. It requires the vendor team leader to be onboarded as a local account instead of using their email address. Improvements could be made to onboard the vendor team leaders using their email, allowing them to manage their own team. That would greatly reduce the overhead in managing vendor team members."
"Response time is not ideal, and reaching someone knowledgeable can take time."
"CyberArk definitely needs to improve user experience and reduce complexity."
"The reporting should be improved. There should be more customization. The report should show how we are going to mitigate the risk because we cannot show the system environment to each and every auditor."
"Some of the additional features that we are looking at are in the Conjur product. I am specifically discussing key management, API Keys, and things for connecting applications in the CI/CD pipelines."
"We'd like to see a better connection to Microsoft Azure and a better connection with Check Point."
"They could provide DLP integration for applications and specific user account security."
"The solution is too complicated. A lot of end customers don't know how to start when they go into the console."
"The length of time it takes to deploy an application could improve."
"VMware Workspace ONE sometimes has bugs that prevent it from working as intended or expected. Generally, these bugs can lead to unexpected results and hinder effectiveness."
"The only downside to the solution is that the dashboard is very confusing."
"It's a costly product. It would help if they could offer it at a discount."
"There should be better compatibility with Linux devices."
 

Pricing and Cost Advice

"Overall, its pricing is really good. The main difference from all the other vendors is that they have one package that covers all the functionality and modules of the basic PAM, except the add-on modules like adware and server protection. It also doesn't include the licenses for domain controller protection or maybe an API call-related feature. For the basic privileged access management, the bundle pricing is really good, but when it comes to an agent-based solution for advanced cyber protection or application identity managers, it is expensive. Services are also very expensive if you hire the services team from CyberArk, but these guys are really good. For a couple of large banking projects, we had an experience with them. The banks wanted to have things quickly and efficiently, so we had to hire them. If we take four weeks, these guys can do everything on a weekend. They charge quite a big sum of money, but they know the system well."
"CyberArk is one of the best PAM solutions and one of the most expensive, but it works better than the others, so the pricing is fair."
"Its cost is fair."
"The price of this solution is quite reasonable."
"Our risk is definitely significantly lower. Also, our resources are low."
"The pricing for CyberArk Privileged Access Manager is quite expensive, and the pricing varies from region to region. In APAC, CyberArk Privileged Access Manager can be obtained for less than in North America, according to my understanding."
"Cost efficiency is the number one thing that can be improved in my mind. This would change lots of companies minds on purchasing the product."
"Licensing fees are paid on a yearly basis."
"The price of VMware Workspace ONE is reasonable."
"VMware Workspace ONE licensing price is good with their supportability. The price of VMware Workspace ONE is reasonable. We are using an enterprise license."
"Depending on the requirements of users, there is a need to make yearly payments towards the licensing costs attached to the product."
"It's a highly affordable solution"
"A person should pay towards the licensing costs of VMware Identity Manager on a yearly or monthly basis, but government and public sector units cannot for a perpetual licensing model."
"Workspace ONE is on the higher end of the pricing band when compared to other players in the market."
"My guess is that its licensing was yearly. There was probably no fee in addition to the standard licensing fee."
"The pricing and licensing are affordable. They are not too high."
report
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
850,671 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
33%
Financial Services Firm
12%
Computer Software Company
11%
Manufacturing Company
6%
Computer Software Company
17%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the m...
What do you like most about CyberArk Privileged Access Manager?
The most valuable features of the solution are control and analytics.
What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?
With the current model of licensing, for my use cases, sometimes it's hard to convince the management and get budget approvals for it. It's expensive and you're not getting anything new. It's just ...
How does Microsoft Intune compare with VMware Workspace One?
Microsoft Intune is a great tool for managing a mobile device fleet while keeping access control. The solution makes it easy to control security and manage the usage of mobile apps when you have a ...
How does VMware Workspace One compare with VMware Horizon 7?
VMware Workspace One has a powerful set of helpful features. The solution offers very good documentation, the initial setup is easy, and the product is very stable and reliable. I think the fact th...
What do you like most about VMware Workspace ONE?
The platform provides a stable environment for operations and quickly creates new environments. Additionally, it offers efficient flexibility.
 

Also Known As

CyberArk Privileged Access Security, CyberArk Enterprise Password Vault
VMware Workspace ONE, VMware AirWatch, Workspace ONE Assist, VMware Identity Manager, Workspace ONE Access, VMware Horizon Air
 

Overview

 

Sample Customers

Rockwell Automation
Australian Sports Commission, Stockport NHS Foundation Trust, Lomond School, Merck, United Bank, Medical College of Wisconsin, Latymer Upper School, 2gether NHS Foundation Trust, Dowling Aaron Inc., Trillium Lakelands District School Board, Harrogate Grammar School, Duke University Football, Delta Air Lines, Adventist Health System, Giochi Preziosi, Cramlington Learning Village, Intermountain Healthcare, Safexpress, TAG Aviation
Find out what your peers are saying about CyberArk, Delinea, One Identity and others in Privileged Access Management (PAM). Updated: April 2025.
850,671 professionals have used our research since 2012.