2017-12-08T18:16:00Z
it_user786423 - PeerSpot reviewer
User with 1,001-5,000 employees
  • 11
  • 14

CA SiteMinder vs IBM Tivoli Access Manager

I would like to know the pros & cons of CA SiteMinder and IBM Tivoli Access Manager SSO products.

11
PeerSpot user
11 Answers
it_user584352 - PeerSpot reviewer
‎Account Manager with 501-1,000 employees
MSP
2017-12-13T12:10:06Z
Dec 13, 2017

We worked with NetIQ from Micro Focus. One platform to manage all your SSO solutions. Also good option to migrate to the new SSO solution. https://www.netiq.com/solutions/identity-access-management/single-sign-on.html

Product comparison that may be of interest to you
it_user332136 - PeerSpot reviewer
Project Manager - Unstructured Data Access Management, at a tech services company
Real User
2017-12-12T23:00:02Z
Dec 12, 2017

https://www.itcentralstation.com/products/comparisons/ca-sso_vs_ibm-tivoli-access-manager

it_user310467 - PeerSpot reviewer
Firearms Instructor at a tech services company
Consultant
2017-12-15T14:13:39Z
Dec 15, 2017

i use SSO now working where I work and before that at Citi bank but I have never used either of these products.

it_user621207 - PeerSpot reviewer
User at Ilantus Technologies
Vendor
2017-12-14T06:43:23Z
Dec 14, 2017

Both CA SiteMinder and IBM Tivoli are access manager solutions. I am assuming that you are looking for Single Sign-On. There are other Access Manager based SSO solutions also available from Oracle, NetIQ (Micro Focus), Microsoft, etc. Access Manager based SSO solutions have been in the market for almost 2 decades now and are getting outdated. Some products are also in their sunset phase and are being reconsidered by their respective companies.
With an Access Manager (AM) based SSO solution, the solution is installed and configured to intercept each request to the target applications originating from the client machine. Each target application is modified to exchange tokens with the AM solution and establish SSO. Some AM based solutions might work differently than exchange of tokens, but this is the general concept.

Issues with AM based SSO solutions:
1. Expensive.
2. Large Infrastructure Footprint.
3. Takes a long time to implement and implementation is complex.
4. Each target application has to be modified to work with the AM based SSO solution.
5. Might restrict access to target applications only through the AM based SSO solution.

Make no mistake, AM based SSO solutions are fully functional and are being happily used by many organizations, but the idea is that not everyone wants to bring a crane to lift a nail.

I work with ILANTUS technologies (www.ilantus.com). We offer an SSO solution that is:
1. Cheaper.
2. Lightweight.
3. Quick and easy to implement.
4. Non-intrusive - Zero lines-of-code change and zero downtime to target applications to establish SSO. Target applications can also be directly accessed with credentials, if SSO solution is not accessible for some reason.
5. Capable of SSO to any and all kinds of applications (including Thick Client applications, patent pending)

We have been highly rated by analysts such as Gartner, Forrester and KuppingerCole. I will be happy to take you through the solution or answer any other queries to help you understand differences and make an informed decision, if you are interested. Please let me know. Thank you!
- Vinayak!

it_user371688 - PeerSpot reviewer
User at Imprivata
Vendor
2017-12-14T05:15:59Z
Dec 14, 2017

It depends on your use-cases but you should also consider Imprivata - especially if you are in Healthcare as we are the recognised leader in that industry.

https://www.imprivata.com

We have a fully integrated strong authentication platform and the effort involved in enabling an application for SSO is typically measured in hours not days.

it_user230526 - PeerSpot reviewer
Sales Engineer at Micro Focus
Real User
2017-12-14T04:33:24Z
Dec 14, 2017

There is no huge difference between both product, unless you are looking for specific use case, otherwise you can refer to the report like Forrester Wave: https://www.netiq.com/docrep/documents/pqt7can6c6/The_Forrester_Wave_IAM_9_4_13.pdf

Find out what your peers are saying about Microsoft, Fortinet, Auth0 and others in Single Sign-On (SSO). Updated: November 2022.
653,584 professionals have used our research since 2012.
it_user144393 - PeerSpot reviewer
Sales at salesforce.com
Vendor
2017-12-13T18:20:15Z
Dec 13, 2017

A lot depends on the use cases too. Yes there are Okta and Ping, however CA SiteMinder has been around for a while and same with TAM. Happy to share more details (pros/cons) based on use cases and IT landscape in your organization.

it_user555192 - PeerSpot reviewer
Chief Financial & Administrative Officer at a consultancy with 1,001-5,000 employees
Consultant
2017-12-13T16:53:06Z
Dec 13, 2017

Hi,
I am not too familiar with Tivoli but I can share my experience with Siteminder:
It is definitely catered towards on premise old school IBM type of environments.
It seem to work better (unfortunately) under Windows – so you will inherit all windows drawbacks(restarts comes to mind).
Failures and recovery : If you work in an automated environment – it’s not very scripting friendly – some things can be scripted, but I still see a lot of calls that require manual intervention.
In a modern setup this is not exactly ideal
I would recommend PingFederate for an on premise requirement, or Okta if you have plans to go in the public cloud anytime soon.

it_user182007 - PeerSpot reviewer
Technical Lead at Wipro
Consultant
2017-12-13T15:16:47Z
Dec 13, 2017

CA SIteMinder and IBM ISAM are both powerful tools for SSO. Among those two
I would prefer CA SiteMinder.
Site Minder is robust and easy to maintain and configure.

However, if there is an option of choosing other SSO applications
especially for interbusiness SSO access, I would recommend Azure. Microsoft
is doing really good in this space.
With provisioning on Tenants on the fly for B2B applications, the user
management becomes central to the user's organization. So, GDPR is
automatically taken care of.

Hope I have not made it more confusing.

it_user302184 - PeerSpot reviewer
Information Security Group Manager at a tech services company with 501-1,000 employees
Consultant
2017-12-13T11:17:50Z
Dec 13, 2017

Both technologies are outdated and more on-prem application focused.
in projects like this, the main part is deployment so I would consider first who will be doing the planning and the deployment
our policy is cloud first, so I'm using Okta both for SSO and Provisioning

it_user662271 - PeerSpot reviewer
Digital Sales Account Manager at CA Technologies
Real User
2017-12-13T11:08:28Z
Dec 13, 2017

You can take a look at the KuppingerCole Leadership Compass: Access Management and Federation to get a more holistic view.

https://www.ca.com/us/collateral/industry-analyst-report/kuppingercole-leadership-compass-access-management-and-federation.html

Related Questions
Mar 20, 2021
I'm looking for Siteminder identity platform pricing for users in saml athenticationb. What kind of Siteminder account support is there for this feature?
it_user786423 - PeerSpot reviewer
User with 1,001-5,000 employees
Apr 30, 2018
I would like to receive the pros and cons about IBM Tivoli Access Manager (IBM Security Access Manager and CA SSO (CA SiteMinder).
See 1 answer
it_user521199 - PeerSpot reviewer
Sr. Solution Strategist Security - Platinum Accounts at CA Technologies
Apr 30, 2018
I have been in the industry both as a buyer of these products and now I am on the vendor side. I have noticed that most of the folks answering are, like politicians, answering a different, and unasked question without addressing your question. I will do my best to answer the question you asked. Out of the gate and to the best of my knowledge IBM TAM is going end of life and has been renamed to ISAM. It consists of two primary components A user registry, and an authorization service consisting of an authorization database and an authorization engine that performs the decision-making action on the request. Tivoli Access Manager is not a single product but rather a family of products that use the same core authorization and authentication engine. Past similarities notwithstanding CA SSO has come a long way and CA has shifted left as has their product stack. CA SSO is • Industry leader. Consistently recognized as an industry leading solution by independent market research organizations, and proven in some of the most demanding environments in financial, telecommunications, and government organizations. Flexible architecture. Supports five different deployment architectures that can be used jointly or independently to meet varying business needs. These architectures include: agent and gateway-based policy enforcement points, open federation standards, format flexible cookie, and REST and SOAP-based web services.Interoperability. Provides validated integration and SSO across hundreds of applications on a broad range of platforms, including app servers, collaboration environments, cloud apps, ERP apps, mobile devices and web servers. Enhanced session assurance. Prevents hackers from hijacking legitimate sessions with stolen cookies through CA's patented DeviceDNA™ device validation process. Hybrid cloud. Integrates with CA Identity Service to enable seamless access across cloud and on premises applications optionally launched via a simple to use integrated UI. Out of the Box Integration – the solution is tested against more than 450 different third-party product combinations to ensure the widest platform support in the market.
Related Articles
Janet Staver - PeerSpot reviewer
Tech Blogger
May 31, 2022
If you are like the majority of other companies, you most likely use cloud environments or multi-cloud implementations. Even though cloud computing has become increasingly popular, it introduces security threats such as contract breaches, compliance problems, and APIs that are not secure or are misconfigured. Because most SaaS applications include large amounts of sensitive data, such as credit...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
May 30, 2022
Hi peers, This is our new bi-weekly Community Spotlight that includes recent contributions (questions, articles and discussions) by the PeerSpot community members.  Articles Check the top products and solutions below (selected based on peer reviews) or contribute your own article! Top Security Orchestration Automation and Response (SOAR) Solutions Top 8 Data Loss Prevention (DL...
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Aug 17, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 8 Single Sign-On (SSO) Tools to help...
See 2 comments
JT
CTO at NATIONAL MOTOR FREIGHT TRAFFIC ASSOCIATION INC
Jun 3, 2022
It was interesting not to see Okta on this list. Did it make a broader list, but not the top tools?   I have implemented Okta, and I have implemented a dual-headed Okta in the past with ease, so I was a little surprised. The other tool I use is Thycotic Secret Server for Admin passwords, though they are now part of a new company.  
rtechenthusiast85 - PeerSpot reviewer
Search Engine Optimization Specialist at LoginRadius
Aug 17, 2022
SSO is an essential feature of an Identity and Access Management (IAM) access control platform.  User identity authentication is important when it comes to understanding which permissions a user will have. 
Related Articles
Janet Staver - PeerSpot reviewer
Tech Blogger
May 31, 2022
How do I secure my SaaS application?
If you are like the majority of other companies, you most likely use cloud environments or multi-...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
May 30, 2022
Community Spotlight #15
Hi peers, This is our new bi-weekly Community Spotlight that includes recent contributions (ques...
Related Categories
Download Free Report
Download our free Single Sign-On (SSO) Report and find out what your peers are saying about Broadcom, Microsoft, Auth0, and more! Updated: November 2022.
DOWNLOAD NOW
653,584 professionals have used our research since 2012.