Delinea Secret Server Reviews

We use it for managing secrets and distributing them to our users.

It reduces the risk of secrets being stored in insecure locations, and enables us to share, control, and rotate the secrets. It has also helped to increase staff productivity. It has saved a few man-hours per employee per month.

In terms of security maturity for our organization, it definitely helps with the overall secrets-management aspect. Before, the secrets were not managed online or in a central place. Governance was hard. It has matured the security program in that way.

• The overall secrets management 
• The ability to control access by groups
• Sharing secrets

One of the things that we want is to be able to do some of the management of it using APIs.

Also, their release schedule is slower than I would like. A better release cadence, more frequent releases, would be better, even if they were smaller. 

It's been pretty stable. It has never failed.

The scalability is okay, for what the solution does.

I have only used technical support once and it wasn't bad. It was slower than I wanted, but I don't think it was bad.

We used a version that was offline but we wanted something that is centrally managed. That was the reason for the switch, if I remember correctly. There is a need, in general, for organizations to have a solution like this and we chose this vendor.

I don't know how much it costs but, generally, there has been good return on what we wanted to do.

I don't remember specific ones off top of my head, but there were definitely other vendors on the shortlist.

The biggest challenge with this solution is the usability. You should have your end customers try out different things, find out which product they prefer, and pick that.

I would rate the product at seven out of ten. The usability is very bad which makes it difficult for end-users to use. They complain about putting secrets in it.

Password checkout and the ability to change a password after checkin are the most valuable features.

• Removes the risk of passwords sitting in files on admins' desktops
• Also provides a secure portal to share passwords with the team

I would like to be able to create service accounts and set generated AD passwords from the web interface.

I have used it for 3+ years.

I have not encountered any deployment issues.

I have not encountered any stability issues.

I have not encountered any scalability issues. I was able to deploy over multiple domains.

Customer service is 10/10.

Technical support is 10/10.

We did not previously use a different solution.

The more features you add, the more complicated you can make it. Basic password storage deployment is straightforward.

It was an in-house implementation.

Before choosing this product, we did not evaluate other options.

We use Thycotic Secret Server for the lab environment. We have it as a vault for users and in a client project. We have set it as the users' mass login to the secret server so they have access to their SVN. It is for remote access, password changing, etc...

We use it on premise, mostly. I haven't used the cloud version, but we are discussing with the client about using the cloud deployment.

Its most valuables feature are its main purpose - the password changing and the Heartbeat so the user has access to only their SVN and does not have access to any other. Thycotic's access privileged management tool allows you to grant access to users for a specific period of time and with specific attributes and privileges.

In terms of what could be improved, the whole thing with distributed engines, et cetera, is a little bit tricky. Additionally, many clients wanted a more cloud version. I know there is a cloud version of Thycotic Secret Server, but a whole unified platform would be good, not like where you have to set up a connector with the distributed engine and then have the Thycotic Secret Server connect with all these. Making a simpler version of connecting different sites and synchronization of the groups that you already have. Then the secrets and folder templates would follow the current infrastructure pattern that the client has so you don't have to recreate new folders and secrets from scratch. In other words, more interoperability with other systems, for example if a user already has a Microsoft Azure subscription. So, the integration with Microsoft as well would be good.

We have been using Thycotic Secret Server for about a year and a half.

In terms of stability, I would say, yes and no. We had some issues regarding the size of the disk space, which was a Thycotic side issue. There were many log files that they couldn't delete. And then we have another issue with the service account. We have to use another service account for Thycotic, and there was a mix-up with the database. All these issues were from the Thycotic side.

We're logging the tickets and I think there will be a resolution in the future.

Scalability is okay.

We use it for lab environment uses. We have about 20 users, not too many.

It takes one person to deploy in our environment.

We do have plans to increase. We have a live contract and other client requests for Thycotic, including maybe the cloud deployment. I hope it is not as tricky as on premise. Maybe it's easier, I don't know.

The initial setup depends on the client. That's why Isaid earlier that there should be a simpler version where we connect all the different sites, et cetera. Because for client installation and deployment, you have to set up two different servers for high availability, for example, and connect another through your site connectors for the distributed engines, and the client didn't have any load balancers. So, there were many issues and the Thycotic was a little bit tricky at that moment. It wasn't just a simple solution where you set up a server and you have it up and running. 

The other thing is, and I think it's important, there is not much documentation on the internet. Besides the partner portal it would be nice if there was a blog or something that we could use. So for most cases, we have to open a ticket, either us as partners or on the client's side.

Our license is yearly.

Thycotic Secret Server is a good solution for what it does. We are happy for that, but maybe they can improve some features. Let's say the keystrokes function doesn't work. We have reported that to Thycotic, but they still have many improvements to do.

On a scale of one to ten, I think Thycotic Secret Server is an eight - maybe.

We are a system integrator and this is one of the solutions that we implement for our clients.

It is used for privileged access management for networks, servers, applications, databases, and more.

The most valuable feature is session monitoring.

The Password Changer is a useful feature.

The reporting functionality is good.

They need to open a data center in Malaysia so that we can better provide cloud-based services to our customers.

I would like to see more training sessions made available online.

Having more detailed reporting would improve this solution.

We have been working with Thycotic Secret Server for less than one year.

We have had issues with stability in the past, although technical support has always been able to help us to fix them. This type of solution is used on a daily basis.

It is easy to scale. Our clients are generally medium-sized companies.

Technical support is good. There is always somebody available to assist us with issues.

Some of our clients have switched to Thycotic because of the cost.

The initial setup is relatively simple. It can be installed in one day, although for the configuration it may take a few days.

Normally, we do the installation of this solution for our clients. One to two people is sufficient for handling the deployment.

The price of this solution is good.

My advice to anybody who is considering this solution is to first understand their requirements and then define the scope before implementing it. The reason is that once deployed, there is a lot of integration into the existing environment.

This is a product that I would recommend.

I would rate this solution a seven out of ten.

I'm working in India in a private IT firm and we are working as a consultant for Thycotic, and Azure Development.

The most valuable feature of this solution is that it provides us with a secure way of managing passwords. 

I also like the integration with the Active Directory of the Windows platform. It is really good.

Thycotic has a roadmap for moving to the cloud. The cloud version is also really good.

It would be helpful to have integration with various platforms, such as Azure Active Directory on multiple platforms. Adding this type of feature can add to Password Reset Server.

I would like to see improvement with the integration with Azure Active Directory. This would mean that we can have support on multiple platforms such as Windows, Linux, and Mac.

Currently, it is a standalone application, but if it could be combined with other Thycotic products, it would be a good on-premises, as one platform. It would be altogether a very good package.

I have been working with Thycotic Password Reset Server for approximately one year.

This solution is stable.

Technical support is very good.

The initial setup is very easy.

They are priced quite well.

I would rate Thycotic Password Reset Server a seven out of ten.

The surveillance is most valuable.

The discovery of accounts could be improved. It is also very expensive, and its price should be lower.

I'd prefer a better commercial model that includes partners and options for consulting around it. Where I've worked with my customers, we've only been able to use their professional services, and that has been a risk and constraint.

I have been working with their products for 10 years.

Their technical support is all right. Some of the open-source stuff isn't supported properly, but generally, it is pretty good.

Its initial setup is easy.

It is very expensive, and its price should be lower.

I would rate Thycotic Secret Server a six out of 10.

This solution provides us with increased security when working with privileged accounts. It has well-arranged and detailed logging of privileged accounts. It offers the possibility of secure administration of hardware devices, as well as Linux systems administration from a Windows environment.

This solution has increased security when working with privileged accounts and automates changes to their passwords.

Detailed logging of privileged account activity.

The features that we have found the most valuable are:

• Automatic password rotation to manage the security keys.
• Alerting of abnormal use of credentials.
• Dramatically improving our security posture.
• Facilitating compliance with our safety standards.
• Multiple layers of security and access management for IT admins, robust segregation of role-based duties, and military-grade AES 256 bit encryption.
• Database clustering, load balancing, and unlimited admin mode.
• Out-of-the-box & custom reports.

I would like to see the shadowing of ongoing terminal sessions (Remote Desktop Mirroring).

Recording of keyboards in the current Remote Desktop session would be a helpful feature.