One Identity Safeguard vs Symantec Privileged Access Manager comparison

One Identity and Broadcom are both solutions in the Privileged Access Management (PAM) category. One Identity is ranked #5 with an average rating of 7.0, while Broadcom is ranked #16 with an average rating of 8.5. One Identity holds a 3.6% mindshare in PAM, compared to Broadcom’s 1.4% mindshare. Additionally, 93% of One Identity users are willing to recommend the solution, compared to 85% of Broadcom users who would recommend it.

One Identity Safeguard

Read 45 One Identity Safeguard reviews

3,553 Views
2,345 Comparison Views

93% willing to recommend

Symantec Privileged Access ...

Read 53 Symantec Privileged Access Manager reviews

909 Views
682 Comparison Views

85% willing to recommend

One Identity Safeguard

Symantec Privileged Access ...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 6, 2024

Symantec Privileged Access Manager and One Identity Safeguard compete in access management solutions. Users find One Identity Safeguard more satisfying due to its comprehensive features, despite its competitive pricing, while Symantec is favored for affordability.

Features: Symantec Privileged Access Manager is valued for its integration capabilities, comprehensive access control, and strong security measures. One Identity Safeguard is recognized for its robust auditing, reporting functionalities, and adaptability to complex infrastructures.

Room for Improvement: Symantec needs enhanced reporting tools, more intuitive configuration, and simplified setup processes. One Identity Safeguard could improve support response times, interface stability during updates, and enhance its documentation further.

Ease of Deployment and Customer Service: Symantec offers straightforward deployment and responsive customer service, aiding smoother integration. One Identity Safeguard, while more complex, benefits from detailed documentation and comprehensive support resources.

Pricing and ROI: Symantec is noted for cost-effectiveness and quick ROI with competitive setup costs. One Identity Safeguard offers higher long-term value, justified by significant ROI through superior features and scalability.

To learn more, read our detailed One Identity Safeguard vs. Symantec Privileged Access Manager Report (Updated: September 2025).

Buyer's Guide

One Identity Safeguard vs. Symantec Privileged Access Manager

September 2025

Download the complete report

Helped 870,697 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

One Identity Safeguard

Ranking in Privileged Access Management (PAM)

5th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (8th), Non-Human Identity Management (NHIM) (6th)

Symantec Privileged Access ...

Ranking in Privileged Access Management (PAM)

16th

Average Rating

7.8

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of October 2025, in the Privileged Access Management (PAM) category, the mindshare of One Identity Safeguard is 3.6%, down from 4.5% compared to the previous year. The mindshare of Symantec Privileged Access Manager is 1.4%, down from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Privileged Access Management (PAM) Market Share Distribution
Product	Market Share (%)
One Identity Safeguard	3.6%
Symantec Privileged Access Manager	1.4%
Other	95.0%

Privileged Access Management (PAM)

Featured Reviews

Tor Nordhagen

Executive Director at Semaphore

Transparent mode for privileged sessions will greatly simplify our client's administrative situation

We're introducing the solution's transparent mode for privileged sessions. This is part of what the client hasn't used before. It will simplify their administrative situation greatly. So far, the rollout of this feature has been a seamless process, but we're still in the midst of rolling it out. The benefits will be on the risk side. Right now, the way accounts are managed, you don't necessarily know who is using an account. There's a shared admin account, and that's not a good thing. And those accounts are shared in wallets by several people. One of the real benefits of safeguarding here is that the client will have an absolute audit of who is using an administrative interface, whether it's server or network.

Read full review

Muzi Lubisi

Senior technical Consultant at CA Africa

Secure management of sensitive servers and seamless applications with direct linking

The credential injection feature is highly valued, particularly for RDP sessions. A majority of customers use it for RDP, and a couple for Linux servers. The broader capabilities, including access to multiple systems, web-based applications, and clustering, have never posed an issue. The threat analytics aspect is also a robust feature that analyzes all pertinent information.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I like Safeguard's snapshot feature that enables us to review the last time an application was opened and by whom. If there are any issues, we can look behind the scenes to see what has been done. We can suspend a user's access or close off a server."

"The extensible framework for authentication is one of the most valuable features. We use an MFA plug-in and a lot of different factors, depending on what the business use-cases are. And of course, the auditing functionality is also valuable."

"The first feature I like about One Identity Safeguard is the live contact point for the VPNs. This has been working very well for us, as it's both highly available and reliable."

"We deployed it into our company for controlling a client's behavior in our data center. It is very useful to control their connections, such as RDP."

"The auditing and approval mechanisms are features we did not have before and are greatly appreciated."

"The monitoring system is very good."

"Being able to use a proxy server is an advantage."

"We have limited the possibilities for malicious actions and have made it safer for our users when they are using privileged accounts."

More One Identity Safeguard pros

"Password Management and Session Recording. The simplicity and ease that it is to be up and running out-of-the-box is very much appreciated."

"It reduces the viral attacks on my website. It also allows certain users access to see what happens daily."

"One of the key things for us about the product is around its simplicity. Being able to put in the technology that allows the business to remove complexity and also allow the security improvements."

"The credential injection feature is highly valued, particularly for RDP sessions."

"It gives you list of servers, so you can see which users have access to which servers. This is really useful, so we can make sure nobody is getting extra access than what is needed."

"It is simple to implement and is suitable for medium to large-scale enterprises."

"We have received good support from the tech support team."

"You can do A2A integration. You can have your own script, which can then run outside of PA to retrieve the password and perform other tasks."

More Symantec Privileged Access Manager pros

Cons

"The interface is better now, but it still could be improved a lot. It needs more organization, menus, automatic refresh of information, and Web 2.0."

"The high availability function of the box requires a long time to switch over from one appliance to another."

"Something for One Identity to look at is having integration guidelines for how to logically group accounts."

"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."

"The SPS could be a lot easier to administrate and the parts should be unified, from a design perspective, so that I can recognize the systems as being part of the same package. They feel like they have been forced together."

"We would like to have the option of importing assets by using the CSV file. It was available in the earlier versions, but it is not available now."

"We currently have a problem with the Active Directory integrations on Windows. Some of our users need to be logged with Active Directory, but we are having communication issues between One Identity and Active Directory. It seems that Active Directory is not well-integrated."

"The GUI has room for improvement because it is confusing and cumbersome."

More One Identity Safeguard cons

"I’m no fan of Java as an application front-end, as it tends to have issues depending on what browser one’s using."

"Recent releases need improvement in webpage management."

"We experience stability issues after every patch upgrade. This is a place where CA needs to improve drastically."

"Instead of just giving passwords to the user based on job function, from auditing perspective, turn that cycle around. That would really help from an auditing standpoint."

"Recent releases need improvement in webpage management. For instance, navigating through a webpage that acts like a wizard, where I proceed to the next page and enter more information, is not handled well by the system."

"It'd be great if you just stuck in your PIV card and Windows popped up, asked you for your password. You typed it in, then it remembered your credentials."

"The support for other remote assistance tools would be excellent. Free included tools in Windows (Remote Assist) and Microsoft SCCM Configuration Manager (ConMgr Remote Control) allow companies to reduce the amount of RDP connections and expand the usage of the tools are frequently used by companies to provide technical support for remote assistance."

"Broadcom has neglected product development since acquiring Symantec, and nothing major has been added to PAM."

More Symantec Privileged Access Manager cons

Pricing and Cost Advice

"Our licensing costs are on a yearly basis."

"The pricing depends on our perspective, our budget, and, of course, the competitors we are taking into account."

"Safeguard is cheaper than CyberArk."

"The license is around $3,000 per month."

"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."

"They offer a fair price for a robust solution."

"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."

"It was definitely cheaper than the other two products that we evaluated."

More One Identity Safeguard pricing and cost advice

"I would prefer better licensing options for the 20-100 users we have at a given time."

"They offer per-device, per-user, or monthly and yearly licensing models."

"It is more expensive than other solutions on the market."

"Don’t go with an agent model. Don’t go with a model that has you buying a thousand different parts. Go with PAM that gives you everything, or you’ll just be paying costs of implementing another tool that PAM would have just given you up front."

"The version we are using is affordable compared to BeyondTrust, which is maybe three to four times as expensive, but it depends on the features."

"The licensing is simple and scalable."

"It is reasonably priced."

"Appliances are relatively cheap, don’t skimp. Make sure you have redundancy, high availability, and enough appliances to manage the concurrent workload."

More Symantec Privileged Access Manager pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.

See recommendations

870,697 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

20%

Comms Service Provider

Government

Financial Services Firm

Comms Service Provider

17%

Computer Software Company

16%

Government

10%

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	18
Midsize Enterprise	12
Large Enterprise	19

By reviewers
Company Size	Count
Small Business	14
Midsize Enterprise	6
Large Enterprise	30

Questions from the Community

What do you like most about One Identity Safeguard?

The identity discovery is good, and the performance is pretty good value.

See all answers

What is your experience regarding pricing and costs for One Identity Safeguard?

The pricing of One Identity Safeguard is fairly priced and cheaper than other solutions of the same enterprise level. It provides a good cost-benefit ratio.

See all answers

What needs improvement with One Identity Safeguard?

There is room for improvement in integration between modules. The native integration between SPP and SPS, which is currently based on a plugin, could be enhanced. Customization for lookup passwords...

See all answers

What is your experience regarding pricing and costs for Symantec Privileged Access Manager?

Due to the nature of the solution, it is hard to gauge, but compared to competitors, the pricing is very good. I would rate it as an eight and a half out of ten.

See all answers

What needs improvement with Symantec Privileged Access Manager?

Recent releases need improvement in webpage management. For instance, navigating through a webpage that acts like a wizard, where I proceed to the next page and enter more information, is not handl...

See all answers

What is your primary use case for Symantec Privileged Access Manager?

With the customers that I have so far, I help them broker RDP sessions to sensitive servers, particularly those that manage aspects like physical access. I have also done it for backend databases, ...

See all answers

Comparisons

CyberArk Privileged Access Manager vs One Identity Safeguard

Compared 21% of the time

WALLIX Bastion vs One Identity Safeguard

Compared 10% of the time

SailPoint Identity Security Cloud vs One Identity Safeguard

Compared 9% of the time

Delinea Secret Server vs One Identity Safeguard

Compared 7% of the time

One Identity Cloud PAM Essentials vs One Identity Safeguard

Compared 6% of the time

More One Identity Safeguard Competitors

Cisco Identity Services Engine (ISE) vs Symantec Privileged Access Manager

Compared 29% of the time

CyberArk Privileged Access Manager vs Symantec Privileged Access Manager

Compared 26% of the time

ARCON Privileged Access Management vs Symantec Privileged Access Manager

Compared 17% of the time

BeyondTrust Endpoint Privilege Management vs Symantec Privileged Access Manager

Compared 14% of the time

Delinea Secret Server vs Symantec Privileged Access Manager

Compared 13% of the time

More Symantec Privileged Access Manager Competitors

Product Reports

Buyer's Guide

One Identity Safeguard

October 2025

Download One Identity Safeguard product report

Buyer's Guide

Symantec Privileged Access Manager

September 2025

Symantec Privileged Access Manager report

Download Symantec Privileged Access Manager product report

Also Known As

No data available

CA PAM, Xceedium Xsuite, CA Privileged Access Manager

Overview

One Identity Safeguard manages and monitors privileged access, enhancing security with features like automatic session recording, real-time monitoring, and credential rotation. It integrates seamlessly, supports compliance with audit trails, and improves operational efficiency across organizations. This robust platform significantly bolsters security protocols while controlling sensitive operations.

One Identity

CA Privileged Access Manager is a simple-to-deploy, automated, proven solution for privileged access management in physical, virtual and cloud environments. It enhances security by protecting sensitive administrative credentials such as root and administrator passwords, controlling privileged user access, proactively enforcing policies and monitoring and recording privileged user activity across all IT resources. It includes CA PAM Server Control (previously CA Privileged Identity Manager) for fine-grained protection of critical servers

Broadcom

Sample Customers

Cavium

NEOVERA, Telesis, eSoft

Buyer's Guide

One Identity Safeguard vs. Symantec Privileged Access Manager

September 2025

Free Report: One Identity Safeguard vs. Symantec Privileged Access Manager

Find out what your peers are saying about One Identity Safeguard vs. Symantec Privileged Access Manager and other solutions. Updated: September 2025.

DOWNLOAD NOW

870,697 professionals have used our research since 2012.

See our One Identity Safeguard vs. Symantec Privileged Access Manager report.

See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.