Try our new research platform with insights from 80,000+ expert users

One Identity Safeguard vs Symantec Privileged Access Manager comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 6, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

One Identity Safeguard
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
45
Ranking in other categories
User Entity Behavior Analytics (UEBA) (6th), Non-Human Identity Management (NHIM) (4th)
Symantec Privileged Access ...
Ranking in Privileged Access Management (PAM)
18th
Average Rating
7.8
Reviews Sentiment
7.0
Number of Reviews
53
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of June 2025, in the Privileged Access Management (PAM) category, the mindshare of One Identity Safeguard is 3.9%, down from 4.7% compared to the previous year. The mindshare of Symantec Privileged Access Manager is 1.6%, up from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM)
 

Featured Reviews

Martin Ajayiobe - PeerSpot reviewer
Th password vault feature has proven to be most effective for managing privileged access
One Identity Safeguard now prevents unauthorized access to servers by eliminating privileged passwords and requiring all connections to go through a PAM-authorized process. This means no one, including hackers, can access servers without explicit approval, significantly enhancing overall security. One Identity Safeguard is easy to use with a good partner to support you, and it can be up and running within a few days. We have successfully integrated One Identity Safeguard with cloud targets, and the process was straightforward. One Identity Safeguard has improved our incident response time by 300 percent.
Muzi Lubisi - PeerSpot reviewer
Secure management of sensitive servers and seamless applications with direct linking
The credential injection feature is highly valued, particularly for RDP sessions. A majority of customers use it for RDP, and a couple for Linux servers. The broader capabilities, including access to multiple systems, web-based applications, and clustering, have never posed an issue. The threat analytics aspect is also a robust feature that analyzes all pertinent information.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The initial setup is very easy."
"All the features are promising, but we love the reporting feature because we can get each and every report. That's a major compliance requirement. Its reporting is really amazing, and it has made life a lot easier."
"Being able to use a proxy server is an advantage."
"In terms of the user experience, it is a pretty useful product. It works in a good way."
"The whole product solves the privileged access management challenge for our company. We have a secure tunnel, a secure session manager, and automatic logging of sessions, which is good for forensic purposes. We have a rich level of logs and can trace what happened on which machine and see who did what."
"The system is easy to manage, as it is not a system that you will change everything all of a sudden. It evolves most of the time with customer requests."
"The technical support is tremendous."
"One of the most important aspects is that it is very easy to use and install. It is also agentless, so all of the operations happen more smoothly than any other product."
"Password Management and Session Recording. The simplicity and ease that it is to be up and running out-of-the-box is very much appreciated."
"It gives you list of servers, so you can see which users have access to which servers. This is really useful, so we can make sure nobody is getting extra access than what is needed."
"The two factor authentication, and the single most important capability was it supported PIV and CAC as one of the two factors. That was pretty huge for us."
"The system is very stable."
"We can check the activities in the server for fragile files and documents in case of any issues."
"The RDP-gateway: For limiting which server an operator can access."
"The product is very scalable in terms of concurrent sessions that it can handle at a time, number of device it can support, accounts that it can manage, or number of nodes that you can deploy in a cluster."
"It is great for identity governance."
 

Cons

"The interface is better now, but it still could be improved a lot. It needs more organization, menus, automatic refresh of information, and Web 2.0."
"From a usability perspective, what we are finding out is that our privileged domain admin users, in particular, want functionality for extending a checkout session. So we are working with One Identity support to see if there's an enhancement that can be made to the product."
"The automated change of the passwords, which is now integrated, could be improved to be more flexible regarding different systems."
"Even though we have two nodes, there's no way to do an upgrade without taking everything completely offline. It would be nice if they could improve that."
"The product uses a lot of resources in current sessions."
"One Identity's support is not appropriately structured, and it has a lot of room to improve."
"Our experience with technical support has been disappointing. We require more prompt and faster response times. We require answers to our questions right away but we haven't received that level of support."
"We have feature requests and would like to see the turnaround times on those features to be faster."
"Recent releases need improvement in webpage management."
"The response time for support could be faster. Some features should be added: cloud-based, VPN-less, more secure, and it should be adjusted in a hybrid environment."
"Broadcom has neglected product development since acquiring Symantec, and nothing major has been added to PAM."
"I’m no fan of Java as an application front-end, as it tends to have issues depending on what browser one’s using."
"It'd be great if you just stuck in your PIV card and Windows popped up, asked you for your password. You typed it in, then it remembered your credentials."
"The support for other remote assistance tools would be excellent. Free included tools in Windows (Remote Assist) and Microsoft SCCM Configuration Manager (ConMgr Remote Control) allow companies to reduce the amount of RDP connections and expand the usage of the tools are frequently used by companies to provide technical support for remote assistance."
"We experience stability issues after every patch upgrade. This is a place where CA needs to improve drastically."
"We have to do a lot of manual work to automate features."
 

Pricing and Cost Advice

"As compared to other products, it is reasonable, but the training sessions are too expensive."
"It is cheaper than CyberArk. Its price is fair."
"It is more expensive than Secret Server but way less expensive than CyberArk. As a customer, I would like the pricing to be lower, but it has a good price point."
"Setup cost, pricing and licensing are all very expensive."
"The license is around $3,000 per month."
"The pricing depends on our perspective, our budget, and, of course, the competitors we are taking into account."
"They have comparable pricing. All identity products are essentially priced in a similar way. It's a per-user base."
"It was definitely cheaper than the other two products that we evaluated."
"I would prefer better licensing options for the 20-100 users we have at a given time."
"The prices are not low, but one can ask for a discount. It’s not the cheapest PAM solution."
"It is more expensive than other solutions on the market."
"They offer per-device, per-user, or monthly and yearly licensing models."
"Pricing is fair compared to other top vendors."
"The version we are using is affordable compared to BeyondTrust, which is maybe three to four times as expensive, but it depends on the features."
"It is reasonably priced."
"The licensing is simple and scalable."
report
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
857,028 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
25%
Financial Services Firm
11%
Comms Service Provider
6%
Energy/Utilities Company
6%
Computer Software Company
18%
Comms Service Provider
14%
Financial Services Firm
13%
Manufacturing Company
11%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about One Identity Safeguard?
The identity discovery is good, and the performance is pretty good value.
What is your experience regarding pricing and costs for One Identity Safeguard?
The pricing of One Identity Safeguard is fairly priced and cheaper than other solutions of the same enterprise level. It provides a good cost-benefit ratio.
What needs improvement with One Identity Safeguard?
There is room for improvement in integration between modules. The native integration between SPP and SPS, which is currently based on a plugin, could be enhanced. Customization for lookup passwords...
What do you like most about Symantec Privileged Access Manager?
We can check the activities in the server for fragile files and documents in case of any issues.
What is your experience regarding pricing and costs for Symantec Privileged Access Manager?
Due to the nature of the solution, it is hard to gauge, but compared to competitors, the pricing is very good. I would rate it as an eight and a half out of ten.
What needs improvement with Symantec Privileged Access Manager?
Recent releases need improvement in webpage management. For instance, navigating through a webpage that acts like a wizard, where I proceed to the next page and enter more information, is not handl...
 

Also Known As

No data available
CA PAM, Xceedium Xsuite, CA Privileged Access Manager
 

Overview

 

Sample Customers

Cavium
NEOVERA, Telesis, eSoft
Find out what your peers are saying about One Identity Safeguard vs. Symantec Privileged Access Manager and other solutions. Updated: June 2025.
857,028 professionals have used our research since 2012.