Delinea Secret Server Reviews

I need to look at using their tool's true multi-tenancy capability to cater to multiple customers within a single platform architecture without compromising security. Information security is key, and an MSP model's objective is to have a privileged access management solution.

Secret Server is called a secret server for a reason. You can create multiple secret servers underneath the parent for every secret server. Every "parent" will be considered as one customer, secret server #1, secret server #2, etc. Under every secret server, you can create multiple secret servers. Those secrets will belong to customers A, B, and C, respectively. If I want to access a customer's Windows environment under a secret server, I will create a secret group called "Windows." This group will be onboarded with customer A's Windows environments within their secret server. We have a logically separated environment as an MSP model.

The privileged access management module is the most reliable feature, along with the password manager.

The integration with the ticketing system ServiceNow is complex. That can be enabled with an API-based out-of-the-box consumption. We have customized it, and the features cannot be used without customization. Ideally, there should be a direct mapping between our ticketing system to Delinea instead of having to do custom development.

I have been working with Delinea Secret Server for almost a year, and I'm the platform's chief architect, responsible for leveraging Delinea for a managed service provider model.

Every update goes through rigorous testing and gets updated into SaaS periodically, and they are also patching in the backend without even impacting the services. I rate the solution's stability a ten out of ten. We have not seen any downtime so far.

We have not seen any scalability issues so far because they are managing a 30 or 15-K environment within a single instance of Secret Server, so it is horizontally and vertically auto-scalable based on the volume you're bringing in. Since it is Saas, we don't worry about the infra. I rate the solution's scalability a nine out of ten.

Though I consume SaaS with platinum support, the support is not too great. By the time they resolve an issue or get into details on what to resolve, I might have resolved the issue already.

Neutral

The initial setup is seamless. I have not seen any environments or services like ServiceNow, for example, get impacted. Delinea is one of these services where you can spin up the environment within five to three minutes, and your environment is ready for consumption.

After enablement, your environment is ready for consumption in five minutes, but we have to onboard, customize, and use cases, so deploying the solution takes at least two weeks. We have integrated Delinea Secret Server with Azure AD on the MFA authentication front and Delinea with ServiceNow. All these customizations took very long. It will take two to three weeks to complete with a dedicated effort.

Delinea has a distributed engine deployed on the customer's premises, communicating securely over a CTP protocol. Every customer communication will be enabled to secret servers through this distributed engine or a remote access solution engine. Without this deployed on the customer's premises, access to the customer enrollment will not work seamlessly, or it might not be available.

We expect the solution API-based, but even if it's API-based, it will go through custom scripts.

A key highlight is that Delinea is nothing but Thycotic and Centrify combined as a ready-to-market adoption. Delinea is ISO 2700 and CSA Star certified.

If you want a ready-to-market adoption with security and compliance in place, you are good to go with Delinea. And any customization for ticketing integration needs a detailed working session with a professional servicer. I rate Delinea Secret Server a nine out of ten.

We use Delinea Secret Server for pharmacy equipment management. We use a secret vault. We use it as a temporary hold, and we use it for password rotation.

I like that you can change the password remotely.

It would be better if they had a Linux version of the secret server.

I have been using Delinea Secret Server for about a year.

Delinea Secret Server is a stable solution.

On a scale from one to ten, I would give stability a nine.

Delinea Secret Server is very scalable. We have about 20 users using this solution.

On a scale from one to ten, I would give scalability an eight.

The initial setup is straightforward. It took us about a day to deploy this solution.

On a scale from one to ten, I would give the initial setup an eight.

We implemented this solution. You need a team of three professionals to deploy this solution. Two people can maintain this solution.

We have seen a return on investment.

I would give the price a four on a scale from one to ten, with one being the cheapest and ten being the most expensive. We pay for the license on a yearly basis, and we paid for three years. It costs around 5000 a year.

I would tell potential users to keep customization flexible using the power shell. This is a good one.

On a scale from one to ten, I would give Delinea Secret Server a nine.

We use the solution to control privileged accounts in our organization. We use it to discover and track privileged account usage and to ensure accountability. For example, we can use Delinea Secret Server to see who registers accounts and when.

The valuable features are remote password changing, session recording, and integrations with other tools. Delinea Secret Server is fine and easy to use, especially compared to other solutions.

There's room for improvement regarding user interface and new functionality.

I have been using Delinea Secret Server since 2017. We are using the latest version of the solution.

I haven’t had any issues with stability.

I rate the solution’s stability a nine out of ten.

The solution scales both vertically and horizontally well. We have a couple of hundred users using the solution.

I rate the solution’s scalability an eight out of ten.

The initial setup is super easy. It takes a couple of hours to deploy the solution completely.
I rate the initial setup a nine out of ten, where one is difficult, and ten is easy.

I rate the product’s pricing a six out of ten, where one is cheap and ten is expensive.

Delinea Secret Server is a stable product with quick deployment. It delivers value when it's on. I would recommend it for PAM.

Overall, I rate the solution an eight out of ten.

I use it for laboratory practice before implementing it for end-users. Specifically, I use the Linux server to discover related accounts in our domain, pull them into the solution, manage their passwords, carry out session monitoring, and practice workflow, which allows for leading access to better-trained individuals when needed. I also make presentations to clients concerning this type of solution.

One of the features I find most valuable is workflow, which allows you to configure the solution to have multiple approvals. For example, if one person approves something, it can be set up so that others must confirm it as well.

In terms of the user interface, it's good. However, installation can sometimes be difficult, depending on the environment. We are deploying it in our own private laboratory, not as a secret server cloud. 

Additionally, CyberArk has a more robust site and development team compared to Delinea. They also provide more educational resources on recent happenings in cybersecurity, the latest attacks, newsletters that educate people in the field, and how to create two opportunities. Delinea could improve in research and development and educate the public on recent trends in the industry.

I have been using Delinea Secret Server for a year now. 

It is a stable solution. I would rate it an eight out of ten. 

For scalability, I would rate it a nine out of ten. Secret Server or Delinea comes with a range of product suites that can complement each other in terms of work. You have Secret Server; you have Business Behavior Analysis; you have Account Spectrum Manager, and all of them work hand in hand. I can say that it's a bit scalable, and, yeah, it's very much scalable.

I had issues with the discovery of a particular service account with a particular dependency during a proof of concept with a client in the past. I had to contact email support for that, but upon further investigation, we discovered that it was an issue with UPS at support dot net, and I think that was what caused the problem.

If you're installing Secret Server, you could pay it up to anything, say, 40 to 60 minutes later.

If you're requesting licenses or pricing, then you have to fill out a questionnaire that they try to gain insight into what your environment is like, what you're trying to discover, and what you're trying to manage. I like this approach. 

So I have a client currently using CyberArk and trying to switch to Secret Server. So, according to them, CyberArk is a bit expensive compared to Secret Server.

However, in my personal opinion, Delinea's technology can be costly. Delinea Secret Server is a relatively expensive product due to its advanced capabilities compared to more basic solutions like ManageEngine PAM360, considered a lower-priced option in the industry.

I haven't used comparable solutions to know if there is any other one better than Delinea Secret Server. But it's a nice solution I'm comfortable with, and I can always give it an eight, which is fair enough because I wouldn't say ten, as I have not used cyber activities or a couple of products to be able to say, yeah, I prefer this about this. It's a nice solution. It can give you what you want and meet compliance requirements.

However, I would recommend using the solution because there is not much of a learning curve with Delinea. 

We primarily use the solution for privileged access management. 

Delinea Secret Server is like a vault for the users to store their device passwords and is also used for auditing sessions monitoring password production, et cetera.

The most valuable feature is the subscription on offer.

We like the policies that can be put in place. The password duration backup part and even the pipeline are useful. 

The solution offers useful APIs as well. 

We find the initial setup to be simple. 

It's scalable. 

The stability is great. 

The pricing is good.

Support is helpful.

Account discovery and asset discovery is easier in Delinea than in other solutions.

Occasionally, the proxy does not work so well. For example, when the custom client application is integrated with a Teams solution.

The server integration needs improvement. 

We find the documentation hard to understand. 

Support can sometimes be slow. 

I've been working with the solution for the last two years. 

The solution is stable. It's reliable. There are no bugs or glitches. It doesn't crash or freeze. 

The solution would work well for medium to large organizations. The solution can scale. 

While support is good, sometimes the documentation, especially for newer features, is not. That can be a challenge. 

The support team can sometimes take a while to solve issues. While they do tend to solve problems, it does take time. 

Positive

We previously used BeyondTrust and WALLIX.

I found the licensing simpler with Delinea. BeyondTrust, for example, required the purchase of different licenses. WALLIX similarly needed more complex licensing. 

It is pretty easy to set up the product. It's been straightforward, according to my experience. 

I can deploy the solution in eight hours. However, it takes five to six days for the full implementation. 

In terms of maintenance, if the team is good, it can be handled in-house. We have three people working on the solution currently.

I handled the implementation myself. However, it depends on the organization's policy. If there's a team in place that understands the solution, it can be done internally. Otherwise, it should be handled by a vendor, for example. 

While I cannot speak to the exact pricing, it is a bit cheaper than other options. 

I'd rate the affordability a five out of five. 

We are the partner of Delinea. We are a reseller, and we have deployed for six clients already in Bangladesh there are many more POC contacts in the works for different customers.

I am working with the latest update of the solution. 

I'd recommend the solution. I'd rate it eight out of ten.

The primary use case for Delinea Secret Server is to sort the privileged passwords. It can also change passwords after a set period or revoke passwords when someone leaves the company. Delinea needs to be on-premises because Turkish regulations do not allow cloud-based security solutions for some sectors. 

Delinea's network integration is the most useful. For example, I use a Check Point firewall connect to SmartConsole, so I need to do a lot of configuration in Delinea Secret Server. Native integration with Check Point is valuable. You can also go download whatever API you need from the cloud, whether you're using Check Point, Palo Alto, etc.  Enriched discovery is another good feature. If you are dealing with several kinds of systems, you can see which system requires privileged access to my network.

I formerly used only one service: the remote server. For example, I connected to the Active Directory user and the computer's console. But now, I need to do a remote connection to the domain controller. Maybe it only connects to that tool, the Active Directory users, and the computer management console, but not to the domain controller. Another thing Delinea could add is multi-factor authentication.

I've been using Delinea Secret Server for five years.

Delinea is highly stable.

It's incredibly easy to scale up Delinea. You can install a new vendor server and deploy the Delinea Secret Server application if you have performance issues. We have 120 admin users and around 5,000 privileged passwords stored in the vault on the Secret Server.

I rate Delinea support 10 out of 10. It's good, but I don't need it often. Sometimes I need help with configuration. If you need a custom configuration, you can pay for professional services, but it's expensive.

I've also used CyberArk. CyberArk has more features, but they are minor. Some customers may need them, but others don't. The main difference is pricing. CyberArk is more expensive. 

A Delinea license costs about a dollar per admin, whereas it's $5 for CyberArk.

The installation is pretty basic, and it doesn't require advanced knowledge. It takes a day to install and configure CyberArk, but Delinea is done in an hour. But you need an escrow database. I requested a cluster system from the customer site.

After deployment, the solution doesn't require much maintenance because the Delinea is stable. I sometimes have a connection problem due to configuration, but I never have an issue with the database. You don't need to spend much time on maintenance or have a lot of technical knowledge.

We deployed Delinea in-house. 

I would rate Delinea 10 out of 10 for affordability.

I rate Delinea Secret Server 10 out of 10. If your customer uses a privileged access solution, they need to sort all the passwords. They should do a session recording and change the password, then do workflow delegation. Delinea can do it all, so I strongly recommend it.

We recently had to reset every company password globally, which I am in the process of undertaking at the moment. 

It seems to be working well for us. While we did encounter several glitches, I believe this owed itself to the solution not having been fully deployed, even though they owned it for some time. We have since deployed it fully and are learning as we go, especially as concerns the various international laws, such as the GDPR. Yet, it works well for us. 

We recently had to do a global reset of every company password, something we are still in the process of doing. While we had a few glitches, this likely attributes itself to them not having fully deployed, even as they owned the solution for a while. Now that we have done so, we find ourselves to be learning as we go, especially as concerns the various international laws, such as the GDPR. This said, it works well for us. 

As I am partial to CyberArk, I rate Thycotic Password Reset Server as a nine out of ten, owing to the minor glitches I mentioned. 

The initial setup was very straightforward for us. However, as it would not deploy easily with our 2019 servers, we were forced to make a few code changes. It continued to deploy for 2012, something I found to be odd, but started working flawlessly only after I made a few code changes. 

My only negative thing to say about Thycotic would involve the servicing not having been written for 2019.

I have, perhaps, a year-and-a-half worth of experience with Thycotic Password Reset Server. 

As I am partial to CyberArk, I rate Thycotic Password Reset Server as a nine out of ten, owing to the minor glitches I mentioned.

This said, the solution's stability is flawless. It's very stable.

We have had dealings with technical support, but have not encountered any problems with them. They helped walk us through so many things that we simply did not know. My only negative thing to say about Thycotic would involve the servicing not having been written for 2019. 

I did a PLC with them while at IQVIA, but when I came over to CNHI, they actually owned 400-license, so I went ahead with its implementation.

We are trying to capture feedback with CyberArk, as well. 

I started my certifications in CyberArk, but I deal with identity and access management. 

As I am partial to CyberArk, I rate Thycotic Password Reset Server as a nine out of ten, owing to the minor glitches I mentioned. I would likely rate it as a ten, but one tends to stick with what he knows. 

The initial setup was very straightforward for us. Since it would not deploy easily with our 2019 servers, we were forced to make a few code changes. It continued to deploy for 2012, something I found to be odd, but, once I went in and made some code changes, it worked flawlessly. It took us about two days to work through this, but we got it done. 

It seems to be working well for us. While we did encounter several glitches, I believe this owed itself to the solution not having been fully deployed, even though they owned it for some time. We have since deployed it fully and are learning as we go, especially as concerns the various international laws, such as the GDPR. Yet, it works well for us.

I am not aware of the licensing costs, as they already owned everything but had not put it in the infrastructure. I am simply unaware at the moment, but will find out, as I am the director of the area. 

At present, the solution is a hybrid, but we plan to put it totally in the cloud. 

I rate Thycotic Password Reset Server as a nine out of ten. 

In my company, Delinea Secret Server was primarily used for accessing websites with credentials that were shared among the team.

Guaranteeing that the passwords were kept up to date and not known to the users increased the security around the solution and the infrastructure.

The ease of granting access to a secret without having to share the actual password and the password rotation were the main features I found effective for password management.

Cybersecurity is constantly evolving, so there will be features needed in the future. There is space to use AI in several aspects of the solution, however, I can't pinpoint which ones.

I was using Delinea Secret Server for six years.

The stability of the solution was good.

For small companies, the complexity of the solution may be heavy. I would recommend it for medium to large companies due to its complexity versus the rewards.

The technical support by Delinea was good.

Positive

The initial setup was fairly straightforward and easy to deploy.

I did not take part in the deployment, so I can't provide details on the implementation team.

The pricing was fair, and maintenance or support was included in the subscription.

I was also looking into Keeper to compare features and see how they differ.

I would recommend Delinea Secret Server to medium to large companies, however, for smaller ones, there are likely easier solutions to use.

I'd rate the solution nine out of ten.