One Identity Safeguard Reviews

One Identity Safeguard's main use case in our environment is authentication services. It serves as a centralized authentication solution for Linux and Unix servers, including the use of Active Directory credentials. This helps us simplify user access management, reduce local account dependency, improve security, and provide centralized authentication and auditing across servers.

A specific example of using One Identity Safeguard is for Linux and Unix server access management. Instead of maintaining separate local accounts on servers, users can log in using their Active Directory credentials. This simplifies access management, reduces password-related issues, and improves audit visibility.

The best features of One Identity Safeguard authentication services are seamless Active Directory integration, centralized integration, authentication and single sign-on for Linux and Unix systems, policy enforcement, and centralized auditing.

The Active Directory integration in One Identity Safeguard allows for seamless integration in our environment because Linux and Unix systems can directly use AD credentials for authentication without maintaining separate local user profiles. Once it is integrated properly with AD, user access management becomes much easier and centralized.

One Identity Safeguard has positively impacted our environment by simplifying Linux and Unix authentication, reducing dependency on local accounts, improving centralized access control, and making user onboarding and offboarding much easier from a security and operational perspective.

One example where One Identity Safeguard services helped us was during employee offboarding. Before, administrators had to manually remove or disable local accounts from multiple Linux servers, which was time-consuming and sometimes risky if something was missed. By integrating with Active Directory through Safeguard, disabling the AD account automatically blocks access across connected Linux and Unix systems, which improves security and reduces manual effort.

From an accuracy and reliability perspective, One Identity Safeguard has been generally consistent in our environment.

One Identity Safeguard can be improved in areas such as UI modernization. Debugging authentication issues across Linux, AD, DNS, and Kerberos sometimes still requires manual investigation and Linux expertise.

Additionally, better real-time monitoring, clearer authentication error reporting, and simpler troubleshooting tools in One Identity Safeguard would be helpful, especially when working in large and complex environments.

One area where One Identity Safeguard still needs improvement is troubleshooting and visibility during authentication failures in a real environment. Issues related to Kerberos, DNS, SSH, or AD synchronization can sometimes take time to diagnose. Better real-time monitoring and clearer error reporting would help significantly.

I have been using One Identity Safeguard for four years.

One Identity Safeguard is stable.

Scalability is good.

Support is very good.

Before implementing One Identity Safeguard, we mainly relied on local Unix accounts and manual authentication. Managing access across multiple servers was time-consuming and inconsistent, especially during onboarding, offboarding, and audit cycles.

The deployment of One Identity Safeguard in our environment took around two to four weeks, including planning, Active Directory integration, Linux server onboarding, testing, and phased rollout. The core deployment was manageable, but troubleshooting authentication dependencies such as DNS, Kerberos, and SSH configuration took additional effort during implementation.

We saw good ROI with One Identity Safeguard mainly through reduced manual Linux account management, centralized authentication, faster onboarding and offboarding, and improved audit and compliance visibility. It also reduced operational effort because disabling a user account automatically removes access on multiple systems.

My experience with pricing, setup, and licensing was generally good for an enterprise environment, although the initial setup and license cost can be somewhat high for smaller organizations. The deployment requires some planning around Active Directory and Linux integration, but overall, the solution has reduced manual administration effort and improved centralized access management, so the value was justified in our environment.

We did evaluate other options before choosing One Identity Safeguard.

The training requirement for this was moderate in our environment. Experienced Linux and Active Directory administrators were able to manage daily operations after a few days of hands-on training and documentation review. The bigger learning curve was mostly around troubleshooting Kerberos, DNS, SSH, and Linux authentication-related issues in hybrid environments.

Integration of One Identity Safeguard has positively affected our operations by centralizing authentication across Linux and Unix, reducing manual account management, and simplifying user access control through Active Directory integration. It also improved security and audit visibility because access management became more consistent across the environment instead of managing separate local accounts on individual servers.

One Identity Safeguard positively affected privileged users by improving centralized authentication and more controlled access management for Linux and Unix systems. Instead of managing multiple local privileged accounts, administrators could use centralized AD-based authentication and policies, which improved security, simplified access management, and increased audit visibility for privileged activities.

The integration difficulty for One Identity Safeguard was moderate in our environment. The Active Directory integration was straightforward, but challenges came during Linux authentication configuration, Kerberos, DNS synchronization, and integrating across multiple Unix distributions and hybrid environments.

One Identity Safeguard service was integrated with applications and services of Microsoft Active Directory, Linux and Unix servers, SSH-based access systems, VMware infrastructure, and some DevOps-related environments for centralized authentication and access management. The main advantage was centralized credential management and consistent access control across multiple platforms.

In our environment, One Identity Safeguard authentication services was mainly deployed on-premises, so cloud dependency was minimal. Although we had some integration with Microsoft Azure for hybrid infrastructure and identity-related operations, One Identity Safeguard was mainly deployed as virtual appliances on VMware infrastructure. We use virtual deployment because it is easier for scaling, backup, disaster recovery, and maintenance compared to physical appliances.

I would rate this solution an overall eight out of ten.

My main use case for One Identity Safeguard is to safeguard my password as well as my login IDs when I'm working from home, as it provides better safety for my passwords and for my login IDs.

When we log in, we get two-factor authentication, which I use for safeguarding my passwords or login IDs while working from home, and that makes it safer compared to other software.

One Identity Safeguard helps in keeping my login IDs and passwords safe, and that is very important to me.

The best feature that One Identity Safeguard provides is its flexibility, as well as the fact that it integrates well with other software like Salesforce, which I really appreciate.

The integration part of One Identity Safeguard has been quite beneficial for my workflow, especially with tools like Salesforce.

One Identity Safeguard is flexible and provides out-of-the-box integrations that have been very helpful for me, and the installation process was quite easy and smooth, which I would also rate as a feature.

One Identity Safeguard has positively impacted us because the fear of theft of passwords or IDs has been reduced to almost zero, significantly enhancing our security.

The reduction in password or ID theft risk with One Identity Safeguard has led to measurable changes as security incidents have been reduced, positively impacting us and increasing our efficiency.

In terms of improvement for One Identity Safeguard, I would like to say that the customer support needs to be improved and the pricing needs to be a bit more reasonable, as these are the two factors that require attention.

Regarding customer support for One Identity Safeguard specifically, there has been lag and they are not very responsive, which needs to be improved immediately.

I have been using One Identity Safeguard for the past eight months.

One Identity Safeguard is stable.

One Identity Safeguard's scalability is quite good, as it is scalable according to the needs of the enterprise.

The customer support for One Identity Safeguard was not very good and definitely needs to be improved.

The deployment of One Identity Safeguard took around three months.

The deployment of One Identity Safeguard affected our privileged users seamlessly, without disruption.

We use the on-demand version of One Identity Safeguard because it provides us flexibility, which was the main reason for choosing that version.

I can say we have seen a return on investment with One Identity Safeguard as we have saved a lot of time and manpower, although I cannot give a specific number for that.

My experience with pricing for One Identity Safeguard indicated that the pricing was a bit high, while the setup cost was manageable and the licensing was acceptable; overall, the cost aspect was on the higher side.

The feedback I have received from users regarding One Identity Safeguard's usability and functionality has been positive, as the usability aspect has been quite good and it is easy to learn and user-friendly.

The training required to start using One Identity Safeguard was not very extensive, but a bit of training was needed, and it was a smooth process.

If you are looking into using One Identity Safeguard, I would advise that if you are looking for user-friendly software that integrates well with other software, and if you do not mind spending a bit of extra money for that, then One Identity Safeguard is the go-to solution for you. I would rate this product a 7 out of 10.

My main use case for One Identity Safeguard is securing administrator access to critical infrastructure, like firewall servers, switches, databases, as well as the VMware environments. Earlier, multiple engineers used shared admin passwords for devices and servers, which made it difficult to track who performed what activity. This also increased the risk of password misuse and unauthorized access. We have used One Identity Safeguard to secure all of these resources.

A specific example of how I use One Identity Safeguard to secure access or track activities is when an engineer wanted to log in to a firewall for some configuration changes. One Identity Safeguard provides secure access without exposing the actual password. Once the task was completed, the password could be automatically changed, ensuring better security. This use case helps the organization improve privileged access security, maintain accountability, and reduce insider threats for auditing and compliance purposes.

One Identity Safeguard is deployed in my organization on physical appliances, which are dedicated hardware appliances provided by One Identity.

The best features One Identity Safeguard offers include a secure password vault for privileged accounts, Privileged Access Management (PAM), session monitoring, and session recording. Additionally, MFA support is available. There are different benefits and features, including real-time monitoring of administrator activity, audit logs, and compliance reporting.

Session monitoring is a feature where all privileged user activities are monitored in real-time whenever an administrator accesses critical systems such as servers, firewalls, switches, or databases. For example, if a network engineer logs into a secure firewall using One Identity Safeguard, the complete session can be monitored and recorded, including the commands executed, the configuration changes made, the previous configuration, the login duration, and the logout activity.

One Identity Safeguard has positively impacted my organization by tracking admin activities in real time. It records privileged sessions, improves the accountability of engineers and administrators, and detects suspicious or unauthorized actions.

I have nothing to improve. The solution is well-designed. I do not have anything at all that I wish could be easier or better, even if it is something small, whether in the user interface, reporting, or integration.

I have been using One Identity Safeguard for one year.

One Identity Safeguard is stable.

In terms of scalability, One Identity Safeguard can easily grow along with the organization's infrastructure and security requirements. It supports growing infrastructure and handles a large number of privileged accounts because it can support an increasing number of users, privileged accounts, devices, and locations as the organization expands.

The customer support for One Identity Safeguard is good.

I have not previously used a different solution. This is the first solution we deployed.

The deployment of the solution took up to one month in my environment.

The deployment was a smooth process for my privileged users. All integrations were executed very well.

Training of approximately ten to twelve days is sufficient for all users, both those new to One Identity Safeguard and those with existing knowledge. Very good training can be delivered within twelve days.

The return on investment comes from improving security while reducing operational risk and manual administration. Earlier, the organization managed privileged passwords manually, which increased the chance of password misuse and insider threats. After implementing One Identity Safeguard, privileged access becomes centralized, monitored, and automated. The ROI of One Identity Safeguard is mainly achieved through stronger security, reduced operational effort, automation of privileged access management, and lower risk of security incidents.

My experience with pricing, setup cost, and licensing is that the price is a bit too high. The price could be lower for licenses based on the number of privileged accounts and number of managed access systems. There is a common license factor involved.

I have not evaluated other options before choosing One Identity Safeguard.

My advice for others looking into using One Identity Safeguard is that it is very useful in the organization for preventing password issues. I would rate this review as nine out of ten.

My main use case for One Identity Safeguard is to use it as a PAM tool for managing and monitoring privileged accounts. In every organization, there are special accounts such as admin or root accounts that have a very high level of access, and if these accounts are missed or compromised, it can create problems or damage. One Identity Safeguard helps us to control who uses these accounts and when they can use them.

A quick, specific example of how I use One Identity Safeguard to manage those privileged accounts involves a database administrator needing to make an urgent change to our production database. In the past, we would just use a shared admin password that everyone in the team knows, but now with One Identity Safeguard, the admin logs into the Safeguard portal and raises an access request for the production database. The request automatically goes to his manager, and based on the review, it gets approval. One Identity Safeguard connects the admin to the database without showing him the actual password, so he never knows about the credentials.

The excellent session recording and monitoring stand out as the best features of One Identity Safeguard. It is a compliance-based deployment and can work across on-premises as well as cloud environments.

Session recording and monitoring have benefited my organization by ensuring that every privileged session is monitored in real-time. Whenever any admin logs into the server through One Identity Safeguard, the system records it and the screen is viewed. The security team can watch live sessions if needed or review the recordings whenever they need them.

One Identity Safeguard has saved our compliance efforts, so generating audit reports that used to take days now takes a minute, which is a very good example of its efficiency.

One Identity Safeguard has positively impacted our organization by giving us complete visibility over all privileged access, making compliance audits much easier than before, and ensuring that access is not time-bound, allowing admins access only for the duration they need it.

Compliance audits have become much simpler with One Identity Safeguard, as every access request, approval, session, and action is logged automatically. The audit team can ask who accessed what system and when, and we are able to generate those types of reports in minutes, significantly reducing our efforts and costs.

I have not seen any issues with One Identity Safeguard solution. I do not wish to add more about needed improvements related to usability, integration, or support.

I have been using One Identity Safeguard for more than three years.

One Identity Safeguard is stable.

One Identity Safeguard is a very good solution from a scalability perspective, and we have not seen any issues with its scalability so far.

The customer support team for One Identity Safeguard is good, responsive, and we have seen good responses multiple times.

We are using One Identity Safeguard only and did not use a different solution before.

The deployment of the solution took less than one month for my organization.

The deployment affected our privileged users smoothly, as I did not see any challenges or disruptive events with this solution.

The experience during the deployment was very smooth, as I have not seen any kind of challenges with the end-users.

We have integrated our Active Directory with One Identity Safeguard.

The integration with Active Directory was complex during the initial setup, but later we found it to be very smooth, requiring proper planning in advance.

The integration with Active Directory has improved our efficiency and security because our users are syncing properly.

We have seen a good return on investment with One Identity Safeguard because the ROI did not come in a dramatic way; it came through multiple small savings that added up significantly over the years.

I had a great experience with the pricing and setup cost of One Identity Safeguard, and there were no challenges.

We have not evaluated other options before choosing One Identity Safeguard.

I would advise others looking into using One Identity Safeguard to implement it in their environment and not wait for a security incident to occur. Most organizations consider access management only after something goes wrong and an account gets compromised, but by then the damage is already done. One Identity Safeguard is a tool you want in place before something bad happens, so this is highly recommended by us. I have given this review a rating of eight.

Our main use case for One Identity Safeguard is to integrate it to clients that need the SPP functionality, which stands for Safeguard for Privileged Passwords. They do say that we could utilize One Identity Safeguard to its full extent for now, but we're getting there.

A quick specific example of how we use One Identity Safeguard with a client is that our latest client needed a password vault, so at first, we integrated One Identity Safeguard for Privileged Passwords, and then they asked for a personal vault so they could store their passwords and secrets, much like KeePass, so we integrated One Identity Safeguard Personal Vault as well. Lastly, they figured at some point down the line that they needed SPS as well, but only the primitive version of it, so we just decided to integrate SPS as well and form it into a cluster with SPP, but they don't use any third-party plugins as of now.

The best feature One Identity Safeguard offers is that it is a pretty new, modern tool that makes extensive use of its API. In general, it's easier than other tools to just perform maintenance work or perform work using the API of One Identity Safeguard. Also, the way that the access requests are structured—with entitlements and access request policies—makes it easier to govern data and identities. CyberArk, which is essentially the industry standard right now, is doing a very primitive job of helping the administrator with the task, and One Identity Safeguard is a lot better at this.

These features help my team day-to-day by making onboarding new users easier, and they also make it easier to create existing teams that are complete with their own password management, their own password profiles and rotations, password requirements, and who gets access to what, so it all makes it easier and faster.

One Identity Safeguard has positively impacted my organization by being another tool that we have in our arsenal to be able to get other clients as well, because we also sell One Identity IAM, and we can just bundle One Identity Safeguard with it. It also has a nice feature called remote access, which a lot of people want to use for externals in their organization, coupled with its just-in-time requisition, so it makes selling it much easier because One Identity is a company that's been in the field for ages.

One Identity Safeguard can be improved by fixing the documentation, which is very convoluted as of now, and addressing versioning, as some major bugs and issues are not documented well enough in the documentation, along with some patches and fixes. Custom plugins need to be introduced as soon as possible.

I give it an eight because it's a nice tool and it's a modern tool, but there are still some issues, not necessarily pertaining to the tool itself, but to the whole philosophy of One Identity and how they have structured their workflows and their knowledge base, which essentially has no knowledge base, just like CyberArk. There are some issues that need to be fixed, plus it does not have a custom option, and a lot of clients are using in-house made applications that also need to be onboarded to One Identity Safeguard to be able to launch a browser session to that application, which One Identity Safeguard has not had any capabilities that could assist with that.

I have been using One Identity Safeguard for two and a half years, ever since we pivoted from CyberArk, as we wanted to be more tool-agnostic, and we decided that One Identity Safeguard was our best option because we had a past with One Identity, with us being in an IAM team.

One Identity Safeguard is stable.

So far, we haven't had any issues with One Identity Safeguard's scalability; it's been fine, but we generally target smaller to mid-sized implementations.

The customer support for One Identity Safeguard is fine for what it is, even though everything needs to be run through them and there are no knowledge bases, so we have to wait for a response from the One Identity Safeguard company, and they also keep a lot of information, requiring us to make a request and then they would need to reply, but it's acceptable overall. It's not the worst I've seen.

Positive

I previously used CyberArk before switching to One Identity Safeguard.

The deployment of the solution takes about two to four weeks, give or take, but that's not counting waiting for the client to respond and all that.

About a month of training is required for end-users, and for us, it was four months to understand One Identity Safeguard, but that was because we already had experience in other PAM tools like CyberArk.

We are partners, executive partners, and resellers with this vendor.

My experience with pricing, setup cost, and licensing has been a good experience overall, as the back and forth with One Identity is something that is acceptable; other tools have options to do this automatically, and they have it, but pricing, presales, and sales is acceptable overall.

Before choosing One Identity Safeguard, I evaluated Zero Trust and Delinea, but they were for smaller organizations, so we decided to adopt One Identity Safeguard.

My advice to others looking into using One Identity Safeguard is to get familiar with the concepts of entitlements and access request policies, the keywords One Identity Safeguard uses, and also get familiar with the way that it handles session management and recording because it's a tool that needs a lot of time to get accustomed to. I give One Identity Safeguard an overall rating of eight out of ten.

One Identity Safeguard is used primarily to secure privileged credentials, enforce control over administrative access, and provide visibility into privileged activities.

Whenever a network or server administrator requires access to a production system, access is granted through One Identity Safeguard's approval workflow and credential vault rather than exposing privileged account passwords directly.

One Identity Safeguard offers several best features, including its privileged credential vaulting feature, automated password rotation, and privileged session management, along with session recording and playback.

The feature that I rely on the most is automated password rotation because it reduces the risk associated with static or shared privileged credentials and improves security by automatically changing passwords at defined intervals without manual intervention, helping us to meet compliance.

One Identity Safeguard has positively impacted our organization in many ways because it has improved our organization's privileged access security through centralized credential management, enforcing strong password control, and providing complete visibility into privileged user activities.

Since we have deployed this solution, we have experienced many positive outcomes, such as faster audit preparation by fifty to seventy percent and saving operational time by almost forty to sixty percent. We are also experiencing very good visibility and accountability, enabling quick investigation of privileged user activities.

The artificial intelligence-related governance and security capabilities of One Identity Safeguard are very strong because they operate within a framework of strict access control, with analytics and intelligent insights providing detailed monitoring and session tracking.

One Identity Safeguard is very accurate in its output and very reliable, particularly when identifying unusual privileged access behavior and potential security risks, providing insights based on monitoring user activities and established behavior patterns.

One Identity Safeguard is a very strong privileged access management solution, and the only thing that needs to be enhanced is its dashboard customization; apart from this, everything is perfect.

I have been using One Identity Safeguard for almost two years.

One Identity Safeguard is a stable solution.

One Identity Safeguard is very scalable and handles organizational growth effectively.

The customer support is excellent in technical assistance, and they are ready to provide support at any time.

We are using One Identity Safeguard since the beginning and have not switched to another solution.

The deployment of One Identity Safeguard took approximately four to eight weeks, including planning, installation, integration, and fine-tuning.

The deployment effect was largely smooth for privileged users with very minimal disruption to day-to-day operations.

The end-user required very minimum training, typically a few hours or short onboarding sessions to understand the privileged access request and workflows. The implementation was very smooth, and all users are now handling it very properly.

We have seen a clear return on investment, with time savings of approximately forty to sixty percent, faster audits by fifty to seventy percent, reduced risks, and increased operational efficiency.

Pricing, setup cost, and licensing are managed by the management team.

We have not evaluated other options before choosing One Identity Safeguard.

My advice for any organization considering One Identity Safeguard is to deploy it and start by identifying your most critical privileged accounts and administrative users. Implementing credential vaulting and automating password rotation first will provide very good security benefits.

We are getting very positive feedback from the users, and they are very happy and appreciating One Identity Safeguard. I would rate this review a nine.

My main use case for One Identity Safeguard includes privilege access, session recording, and real-time monitoring.

In daily work, I use session recording and real-time monitoring as part of my workflow.

My main use case is privilege access.

The best features One Identity Safeguard offers include secure and controlled access along with real-time session controlling.

The real-time session control feature helps me in my daily tasks by providing session controlling and monitoring in user sessions that occur, allowing proactive management across web and platform access instead of reacting after something goes wrong.

Session monitoring and recording are also crucial parts of the features.

One Identity Safeguard has a noticeable positive impact around security and operational efficiency, providing secure, strong security, real-time monitoring, and full visibility.

Operational efficiency has improved as it requires less manual effort for the IT team and makes troubleshooting easier.

One Identity Safeguard needs improvement in deployment and integrating with other products.

Many team members feel that the biggest friction with One Identity Safeguard relates to access requests, session approvals, and policy changes, which require more clicks than expected.

I think One Identity Safeguard is a good product, but it just needs improvement in tech support.

I have been using One Identity Safeguard for the last two years.

One Identity Safeguard is stable in my network.

Scalability is very good as it can easily scale with organizational growth by adding more virtual appliances, and it handles increasing users, servers, and privilege accounts without any major performance issues.

Customer support is really good.

I previously used a different tool for managing, but it lacked centralized control, proper auditing, and security features.

The deployment of the solution took around two to four weeks due to initial setups, integrations, and policy configurations.

End users need a minimum of two to three weeks to understand the solutions.

I have seen a return on investment in both money saved and time saved.

I have experienced noticeable time savings and some indirect cost benefits, specifically in that access provision has reduced from hours to minutes, requiring less manual effort, and the cost impact has been mitigated due to fewer security incidents and audit issues.

The pricing, setup cost, and licensing are not the cheapest, but they offer strong security features that justify the cost.

The license is usually based on the number of user accounts, which is straightforward to understand, and the setup cost is good and reasonable.

Before choosing One Identity Safeguard, I evaluated BeyondTrust.

My advice for others considering One Identity Safeguard would be to plan and execute the deployment properly during the implementation phase.

I have given this review a rating of 8.

One Identity Safeguard is used for managing privileged passwords and monitoring sessions, which helps track admin activities and enforce secure access policies for the accounts. This is important for protecting critical resources like systems or applications, thereby improving both security and accountability.

Whenever an admin needs server access, they must request it through One Identity Safeguard. Once approval is granted based on the request, they can access the server, and the session is recorded, keeping everything monitored and controlled.

Whenever an admin accesses a server through One Identity Safeguard, they do not need to know the actual password. The system provides temporary access through the vault, ensuring secure and controlled usage of the applications.

The session monitoring and recordings are the best features of One Identity Safeguard, allowing us to review what actions were performed during a session. This helps us in both troubleshooting and audits.

One Identity Safeguard makes compliance easier and really helps in incident investigation as well as visibility.

One Identity Safeguard has impacted our organization positively because it has helped us standardize how privileged access is managed and has also reduced dependency on manual efforts in password handling, improving operational control overall. It has reduced errors, and the manual efforts have been significantly reduced.

One Identity Safeguard does not require any improvements at this time based on our current usage.

The initial setup of One Identity Safeguard is somewhat tricky and requires proper planning, so this aspect could be simplified.

One Identity Safeguard has been in use for more than three years.

One Identity Safeguard is stable.

From a scalability perspective, One Identity Safeguard is excellent and matches our organization's growth. We have seen a good response from the customer team, who are ready to provide support at any time we require it.

We have found and seen a good response from the end-user and usability of One Identity Safeguard, as it is seamless and works well in our organization.

One Identity Safeguard has been used since day one.

The deployment of One Identity Safeguard took less than one month. It was straightforward, initially taking one or two days, and from this we have seen a smooth transition to One Identity Safeguard with no issues during the deployment.

One-week training was provided for the users and the IT team to ensure they could manage One Identity Safeguard. The end-user access management is smooth as per usability, making for a great experience.

One Identity Safeguard has provided a good return on investment, which comes from the reduced risk of security incidents. Avoiding even one breach can have a significant cost. It has also reduced the time spent on password management, saving our team time in managing privileged accounts, and is helping with automation that reduces manual efforts.

One Identity Safeguard is highly recommended because it is a wonderful solution, providing great usability, great security, and great visibility. One thing I would advise is to ensure your team is properly trained before deployment and plan the architecture and policies carefully, as this will help you get the best result. This review has been given a rating of nine out of ten.