One Identity Safeguard is used for managing privileged passwords and monitoring sessions, which helps track admin activities and enforce secure access policies for the accounts. This is important for protecting critical resources like systems or applications, thereby improving both security and accountability.

Whenever an admin needs server access, they must request it through One Identity Safeguard. Once approval is granted based on the request, they can access the server, and the session is recorded, keeping everything monitored and controlled.

Whenever an admin accesses a server through One Identity Safeguard, they do not need to know the actual password. The system provides temporary access through the vault, ensuring secure and controlled usage of the applications.

The session monitoring and recordings are the best features of One Identity Safeguard, allowing us to review what actions were performed during a session. This helps us in both troubleshooting and audits.

One Identity Safeguard makes compliance easier and really helps in incident investigation as well as visibility.

One Identity Safeguard has impacted our organization positively because it has helped us standardize how privileged access is managed and has also reduced dependency on manual efforts in password handling, improving operational control overall. It has reduced errors, and the manual efforts have been significantly reduced.

One Identity Safeguard does not require any improvements at this time based on our current usage.

The initial setup of One Identity Safeguard is somewhat tricky and requires proper planning, so this aspect could be simplified.

One Identity Safeguard has been in use for more than three years.

One Identity Safeguard is stable.

From a scalability perspective, One Identity Safeguard is excellent and matches our organization's growth. We have seen a good response from the customer team, who are ready to provide support at any time we require it.

We have found and seen a good response from the end-user and usability of One Identity Safeguard, as it is seamless and works well in our organization.

One Identity Safeguard has been used since day one.

The deployment of One Identity Safeguard took less than one month. It was straightforward, initially taking one or two days, and from this we have seen a smooth transition to One Identity Safeguard with no issues during the deployment.

One-week training was provided for the users and the IT team to ensure they could manage One Identity Safeguard. The end-user access management is smooth as per usability, making for a great experience.

One Identity Safeguard has provided a good return on investment, which comes from the reduced risk of security incidents. Avoiding even one breach can have a significant cost. It has also reduced the time spent on password management, saving our team time in managing privileged accounts, and is helping with automation that reduces manual efforts.

One Identity Safeguard is highly recommended because it is a wonderful solution, providing great usability, great security, and great visibility. One thing I would advise is to ensure your team is properly trained before deployment and plan the architecture and policies carefully, as this will help you get the best result. This review has been given a rating of nine out of ten.

One Identity Safeguard has been used by our organization for more than three years. The primary use case for One Identity Safeguard is to secure admin access to the servers and the network devices, which helps us to ensure only authorized users can access our critical systems and devices, and it also monitors all the privileged sessions.

One Identity Safeguard offers secure password vaulting, which ensures passwords are not shared or exposed, significantly improving security, and session monitoring and recording, allowing us to track all the admin activities easily.

These features help our team day-to-day by eliminating password sharing among the admins and ensuring secure access to critical systems, which reduces security risks, while tracking and controlling privileged access prevents misuse of admin accounts and improves overall system security.

One Identity Safeguard has positively impacted our organization by increasing visibility into privileged user activities, allowing us to track and audit all actions easily, which helps in compliance and security.

One Identity Safeguard provides great features with a smooth process and a very good amount of stability, so there is no need to improve as of now, but it might be required in the future.

I have been working in my current field for more than eight years.

One Identity Safeguard is stable.

One Identity Safeguard's scalability matches our organization's growth over time with no issues.

Customer support has a very helpful nature and is very responsive to our technical team when they require technical support, providing 24/7 assistance based on the given timeline.

We have not evaluated any other options, as we had confirmed from day one that we were going to procure One Identity Safeguard.

The deployment of the solution has taken less than one month, and it was a great experience. Regarding deployment, we have not faced any disruptive issues; it was very smooth for our privileged users, and after a short initial adjustment, they were able to access the system through One Identity Safeguard without issues, thanks to training and clear communication that minimized disruptions.

The training requirement was very minimal, taking less than one week for training the employees, and once they had a good amount of knowledge about One Identity Safeguard, they were ready to go.

We have seen a good amount of return on investment, saving our employees time and money while providing security; it has helped us reduce manual efforts by around 30 to 40 percent.

The experience with the pricing, setup cost, and licensing was straightforward, and the sales team was very helpful during the procurement and implementation of the solution, making it a great experience.

One Identity Safeguard has been the only solution used since day one.

For any organization, whether mid-size or large, looking into using One Identity Safeguard, it will be a really good solution for managing accessibility to critical devices with great security features and automation. Planning deployment carefully and understanding access requirements is essential, so start with the most critical systems first and then go for the less critical ones. This review has been rated 9 out of 10.

My main use case for One Identity Safeguard is to use it as a PAM tool for managing and monitoring privileged accounts. In every organization, there are special accounts such as admin or root accounts that have a very high level of access, and if these accounts are missed or compromised, it can create problems or damage. One Identity Safeguard helps us to control who uses these accounts and when they can use them.

A quick, specific example of how I use One Identity Safeguard to manage those privileged accounts involves a database administrator needing to make an urgent change to our production database. In the past, we would just use a shared admin password that everyone in the team knows, but now with One Identity Safeguard, the admin logs into the Safeguard portal and raises an access request for the production database. The request automatically goes to his manager, and based on the review, it gets approval. One Identity Safeguard connects the admin to the database without showing him the actual password, so he never knows about the credentials.

The excellent session recording and monitoring stand out as the best features of One Identity Safeguard. It is a compliance-based deployment and can work across on-premises as well as cloud environments.

Session recording and monitoring have benefited my organization by ensuring that every privileged session is monitored in real-time. Whenever any admin logs into the server through One Identity Safeguard, the system records it and the screen is viewed. The security team can watch live sessions if needed or review the recordings whenever they need them.

One Identity Safeguard has saved our compliance efforts, so generating audit reports that used to take days now takes a minute, which is a very good example of its efficiency.

One Identity Safeguard has positively impacted our organization by giving us complete visibility over all privileged access, making compliance audits much easier than before, and ensuring that access is not time-bound, allowing admins access only for the duration they need it.

Compliance audits have become much simpler with One Identity Safeguard, as every access request, approval, session, and action is logged automatically. The audit team can ask who accessed what system and when, and we are able to generate those types of reports in minutes, significantly reducing our efforts and costs.

I have not seen any issues with One Identity Safeguard solution. I do not wish to add more about needed improvements related to usability, integration, or support.

I have been using One Identity Safeguard for more than three years.

One Identity Safeguard is stable.

One Identity Safeguard is a very good solution from a scalability perspective, and we have not seen any issues with its scalability so far.

The customer support team for One Identity Safeguard is good, responsive, and we have seen good responses multiple times.

We are using One Identity Safeguard only and did not use a different solution before.

The deployment of the solution took less than one month for my organization.

The deployment affected our privileged users smoothly, as I did not see any challenges or disruptive events with this solution.

The experience during the deployment was very smooth, as I have not seen any kind of challenges with the end-users.

We have integrated our Active Directory with One Identity Safeguard.

The integration with Active Directory was complex during the initial setup, but later we found it to be very smooth, requiring proper planning in advance.

The integration with Active Directory has improved our efficiency and security because our users are syncing properly.

We have seen a good return on investment with One Identity Safeguard because the ROI did not come in a dramatic way; it came through multiple small savings that added up significantly over the years.

I had a great experience with the pricing and setup cost of One Identity Safeguard, and there were no challenges.

We have not evaluated other options before choosing One Identity Safeguard.

I would advise others looking into using One Identity Safeguard to implement it in their environment and not wait for a security incident to occur. Most organizations consider access management only after something goes wrong and an account gets compromised, but by then the damage is already done. One Identity Safeguard is a tool you want in place before something bad happens, so this is highly recommended by us. I have given this review a rating of eight.

Our main use case for One Identity Safeguard is to manage and secure privileged accounts, session monitoring, and recording for audit purposes while also providing controlled access to vendors or our internal team, and enforcing least privilege access.

The best feature of One Identity Safeguard, in my opinion, is its session monitoring, which includes full visibility with session recording, user-friendly access control, and helps in a compliance-ready environment.

The session monitoring feature of One Identity Safeguard stands out because it provides full visibility on which user is accessing which servers at what time, collecting all these logs and also providing data that can be used for audit purposes.

One Identity Safeguard has positively impacted our organization by providing strong security, compliance, and the data required for audits, making it really helpful.

One Identity Safeguard is working perfectly for our organization. The initial setup could be simplified, and more documentation would be needed for faster implementation.

I have been using One Identity Safeguard for more than two years.

One Identity Safeguard is stable.

One Identity Safeguard is excellent regarding scalability.

Customer support is good; they are technical experts and efficiently resolve issues.

The deployment of One Identity Safeguard took less than two weeks to fully implement and use.

We have integrated One Identity Safeguard with Active Directory.

The integration with Active Directory was straightforward.

The integration with Active Directory has simplified our work for managing user data.

There is a very good return on investment from One Identity Safeguard, as we are saving time along with money.

I advise anyone looking for a solution for security audits, session monitoring, or access control to consider One Identity Safeguard as one of the best solutions available in the market, so it is highly recommended.

My main use case for One Identity Safeguard in day-to-day work is to provide identity across all user accounts and domains, and it improves security across the enterprise by providing enhanced features with respect to this identity solution.

I primarily use One Identity Safeguard for protecting security across all user accounts, enterprise data accounts, assets, as well as privileged access, domain user, and admin accounts, giving SSO features and providing security across all user accounts.

One Identity Safeguard offers the ability to identify and revoke access easily for terminated accounts, which reduces risk and simplifies control of access in case of detected threats.

It reduces a lot of risk and saves time; every account is synced, and it can grant access with role-based permissions across all users quickly, alerting us if any threat is detected.

I find that the deployment of One Identity Safeguard is very easy, with good integration and scalability of user accounts, enhancing feature capabilities and providing strong product support.

The user interface can be improved for better searching of user accounts, and if One Identity enhances its support in that area, it would be very helpful.

If One Identity improves integration during migration from other platforms, it will definitely enhance the overall experience.

If the integration and connectivity can be improved during deployment, it would greatly aid the overall experience.

I have been using One Identity Safeguard for more than two years.

As of now, I have not experienced any downtime or reliability issues with One Identity Safeguard.

One Identity Safeguard's scalability features are good, allowing me to improve the scale in terms of resources and user accounts.

For small issues, I have raised support cases with One Identity, and the team has been very cooperative and responsive in providing support and documentation.

I previously used SailPoint, but One Identity Safeguard is better in terms of product features.

The deployment took three phases: first, I got support from the vendor for integration, second, I deployed across all users, and finally, I identified any associated risks.

I performed the deployment in different stages for not all users, ensuring that privileged user accounts transitioned smoothly onto One Identity Safeguard.

I had some formal sessions from the vendor that provided visibility into improved features, capability, enhanced security control, user accessibility, and granting access, and the team is very comfortable now.

I saved both money and time as a result of using One Identity Safeguard.

I did not face any challenges with pricing, setup costs, and licensing, but for improved features, I need to address licensing.

Before choosing One Identity Safeguard, I evaluated Saviynt, Delinea, and Octa, finding One Identity Safeguard to be the most suitable.

In the context of increasing cyber threats across organizations, I would advise others that using One Identity Safeguard is crucial for protection. I would rate this review a 9 out of 10.

I have hands-on experience with One Identity Safeguard and attended the foundation course in the end of last year. My primary goal is to make use of the cross-product capabilities joining IGA (Identity Manager) and Safeguard (PAM) to achieve Privilege Access Governance (PAG) since lots of customers are asking for this. The trend show consolidation within the IAM market and cross-product solutions is becoming the new standard.

Most important, very easy to setup.

Safeguard for Privileged Passwords (SPP)

I have been using asset and account discovery. This means the product will assist in identifying privileged accounts across hosts, directories, and networks.

Other features include workflow and access requests. Typically time-based, which is best practice to restrict access. Workflows can have one or several approvers.

The "activity center" where I can place my custom queries and get automated reports. This will collect over time and you can see what has happened for a certain user.

I like that the upgrades are not complicated, if the appliance is clustered this is handled automatically.

Great variety of support for different platforms and protocols.

Safeguard for Privileged Sessions (SPS)

I have used something called centralized policy enforcement. You can set up a gateway proxy for privileged sessions where you are applying authentication, access controls, and security policies. This is for endpoints such as SSH, RDP, and telnet.

Then I have used session recording and audit trails. When the recording is being made, it actually records at the protocol level, meaning it can capture keystrokes, mouse input, and the GUI. The recordings can be digitally signed.

Real-time monitoring alerts. It can detect violations according to a policy. If there is a destructive command that is dangerous, it can look for those and can trigger an alert. If we want, it can also automatically terminate the session that is ongoing. Everything is indexed and searchable. It is like a forensics investigation and you can do searchable playback.

User behavior analytics. This is some kind of integration where in real time, it can detect anomalies, something that is not normal, and do some deeper insights on that matter.

I have successfully connected Identity Manager (IGA) to Safeguard to achieve Privilege Access Governance. This is being possible by using an OOTB connector in Identity Manager to talk to the Safeguard system. I can govern the data from Safeguard and provision PAM accounts from Identity Manager to achieve a complete lifecycle.

Documentation can be much better and they should provide typical use cases to get started more easily.

SPP and SPS has separate portals (even if they are joined). SPP seems to be a more mature product and the SPS seems to be less updated in its UI and has more technical depth when configuring.

I have been working with it for a couple of months.

Straighforward.

Using the virtual appliance is quite easy. You download the hypervisor file, everything is already included. There is one appliance for the SPP and one for the SPS. SPP requires a Windows license and to activate it you must have internet access. It was a little headache to get it working.

I'm rating the product 8 of 10 out of what I have seen so far, I'm satisfied by the features OOTB and the integration with the Identity Manager. Also the usage of Remote Access (SRA) and Cloud assistant should not be missed.

My main use case for One Identity Safeguard is to safeguard my password as well as my login IDs when I'm working from home, as it provides better safety for my passwords and for my login IDs.

When we log in, we get two-factor authentication, which I use for safeguarding my passwords or login IDs while working from home, and that makes it safer compared to other software.

One Identity Safeguard helps in keeping my login IDs and passwords safe, and that is very important to me.

The best feature that One Identity Safeguard provides is its flexibility, as well as the fact that it integrates well with other software like Salesforce, which I really appreciate.

The integration part of One Identity Safeguard has been quite beneficial for my workflow, especially with tools like Salesforce.

One Identity Safeguard is flexible and provides out-of-the-box integrations that have been very helpful for me, and the installation process was quite easy and smooth, which I would also rate as a feature.

One Identity Safeguard has positively impacted us because the fear of theft of passwords or IDs has been reduced to almost zero, significantly enhancing our security.

The reduction in password or ID theft risk with One Identity Safeguard has led to measurable changes as security incidents have been reduced, positively impacting us and increasing our efficiency.

In terms of improvement for One Identity Safeguard, I would like to say that the customer support needs to be improved and the pricing needs to be a bit more reasonable, as these are the two factors that require attention.

Regarding customer support for One Identity Safeguard specifically, there has been lag and they are not very responsive, which needs to be improved immediately.

I have been using One Identity Safeguard for the past eight months.

One Identity Safeguard is stable.

One Identity Safeguard's scalability is quite good, as it is scalable according to the needs of the enterprise.

The customer support for One Identity Safeguard was not very good and definitely needs to be improved.

The deployment of One Identity Safeguard took around three months.

The deployment of One Identity Safeguard affected our privileged users seamlessly, without disruption.

We use the on-demand version of One Identity Safeguard because it provides us flexibility, which was the main reason for choosing that version.

I can say we have seen a return on investment with One Identity Safeguard as we have saved a lot of time and manpower, although I cannot give a specific number for that.

My experience with pricing for One Identity Safeguard indicated that the pricing was a bit high, while the setup cost was manageable and the licensing was acceptable; overall, the cost aspect was on the higher side.

The feedback I have received from users regarding One Identity Safeguard's usability and functionality has been positive, as the usability aspect has been quite good and it is easy to learn and user-friendly.

The training required to start using One Identity Safeguard was not very extensive, but a bit of training was needed, and it was a smooth process.

If you are looking into using One Identity Safeguard, I would advise that if you are looking for user-friendly software that integrates well with other software, and if you do not mind spending a bit of extra money for that, then One Identity Safeguard is the go-to solution for you. I would rate this product a 7 out of 10.

My use case mainly involves privileged access and access to privileged accounts and privileged systems.

One Identity Safeguard's best features are that it provides easy control over your items and what you manage, and it is generally user-friendly, though we are still working on some issues.

The UI for the privileged passwords in One Identity Safeguard is really good. The support for it has also been excellent, but for the privileged sessions, the UI is not that great. We have it currently locked off, so only the administrators work in there, but it is not optimal. We are also missing a lot of documentation in my opinion for some of the features. Overall, it is acceptable. I would not say it is perfect, but it works.

The cloud assistant feature enables me to add an extra layer of security for critical passwords without needing time-consuming approval. We primarily use it for vendors, not for internal users, but we are moving towards having to use it more for internal use as well.

Since using One Identity Safeguard, we have more control over who accesses what, especially regarding vendors. We have seen billing actually go down because we now know how long vendors have been on the server and how long they have worked on it. Overall, we have a more centralized place to store items and have control over them.

The transparent mode is a seamless approach when using it. We have some issues with it, but we are working on it to make it work for us.

Managing remote access for privileged users with the secure remote access feature is both easy and hard depending on the scenario we face. We have some systems that are easy and take not even a minute to set up, while others take a bit longer.

We are in the middle of integrating One Identity Safeguard with the IGA solution, Identity Manager. We have some A2A setups, but it is not optimal. We are using RPA for developers, not actually RPA accounts, but that is something we are working on. We are also using the service account password rotation on the asset to some degree, and we are exploring options there.

For integrating One Identity Safeguard, figuring out how password rotation works is a bit difficult because we have to make custom integrations. After that, it was no problem really. For the A2A use, it is not as easy as using something like HashiCorp's password management tools.

It is mostly for certain features in One Identity Safeguard that I would like some improvements. Some of the things you can do in entitlements, there is a lot you can do there, but not everything is optimal. You have to have duplicates of a lot of things to make it work the way you want.

I have been using One Identity Safeguard for four years.

For the SPPs, I would rate stability at ten. We have never had any issues other than on the upgrades, but those are planned. For the SPS, making a simple config change puts the downtime at about five minutes, so you cannot use any or create new sessions. That is a bit annoying because we have to plan every little change we do. Other than that, I do not think there is really that much.

I would rate the scalability of One Identity Safeguard at maybe seven.

The general use for One Identity Safeguard is why I rate it seven. For the SPPs, we need to have a separate cluster for highly privileged items to access. For the SPSs as well, we need multiple clusters to reach multiple different items. It is a lot to set up instead of just having central management.

We had the premier support for some time, but we are now currently on normal support.

I did not see any value in the premier support, which was the biggest issue and the reason we moved away from it.

I would rate the technical support for One Identity Safeguard at five from my experience, though some may have had other or better experiences.

We had some issues before that took an extremely long time to get fixed. However, I have also had some issues where I sent them a support ticket and they gave me the solution instantly. When we had a tier one ticket, it took about a month before we got it back up and running again.

One Identity Safeguard was purchased through a partner purchase, and my experience with our partner was that it went pretty well. I am not directly part of the acquisition team, so I do not know how that works.

Deploying One Identity Safeguard with just the bare minimum was no problem, but knowing everything you need to get in there takes time because we did not really have control over what existed. That was the main issue for us.

One Identity Safeguard was quite easy for the initial setup. The overall configuration with all the items, all the assets, and all the accounts is what takes time.

It took about a week to set up the appliance itself and configure it, but we are talking about maybe a year to get everything configured the way we wanted it for the initial phase.

One reason we decided to have HashiCorp still and try to use SPP to push passwords to the HashiCorp setup is the password vault feature. We mainly use HashiCorp for retrieval of passwords because it is a much more built-out environment with APIs and other tools to connect to it. For that, we prefer HashiCorp. However, for overall user experience for less DevOps tasks, One Identity Safeguard or PAM is better in that regard.

It is not really that important to me that the secure remote access feature does not use a VPN because we only have it available internally. The goal is to make it easier for us to start a session, but we have some internal regulations making it not viable for us to make it available externally.

At the start, people thought One Identity Safeguard was hard to use. However, over time when they got used to it, they saw the benefit and the ease of use improved. We still have some people that are a bit harder to get to use it.

For the end user, there is really no issue in using One Identity Safeguard. They are told how to use it and usually figure it out for themselves. For the administrators, it takes a bit longer because there are quite a lot of options and things you can do. We currently have two in training, and they have been working with us for quite some time and still are not fully comfortable working with this PAM solution.

We have physical SPPs and virtual SPSs in One Identity Safeguard. I have no problem with the form factor of One Identity Safeguard's physical appliances, as they seem quite good for the use case.

One Identity Safeguard is deployed on-premises. The only maintenance we have is the upgrades, which happen every half a year I believe. Other than that, we just perform normal day-to-day tasks.

I would recommend One Identity Safeguard, but I would also recommend that they know everything they have before they actually start and prepare the users to be ready for a bit of change.

One Identity Safeguard serves as our Privileged Access Management solution to enforce session management for administrators and allow them to access our systems in recorded sessions, which secures our environment.

In our daily operations, One Identity Safeguard acts as a centralized privileged credentials manager for our systems including Windows, Linux, network devices, and our database, allowing administrators to access our database systems in critical environments while recorded sessions ensure security and accountability.

We have just-in-time access with approvals, allowing administrative access to our users based on request and approvals, which helps us monitor requests for access to critical systems.

One of the best features One Identity Safeguard offers is its capability to integrate with many systems, which is valuable for us since we have multiple database systems with many vendors in our organization.

One Identity Safeguard positively impacts our organization by reducing the likelihood of breaches from privileged sprawl by removing shared admin passwords and enforcing control checkouts while also improving our investigation times and providing strong forensics from a centralized location.

The most common improvement needed is for upgrades. One Identity Safeguard's desktop client should have a faster and easier upgrade process that ensures compatibility.

I have been using One Identity Safeguard for one year.

One Identity Safeguard is quite stable in my experience.

I previously used One Identity before switching from CyberArk to One Identity Safeguard.

The integration process for One Identity Safeguard was not straightforward. Initially, we faced a complex implementation that took about two months, but after that, we achieved a stable configuration and environment for user access to critical systems.

The deployment was seamless for our privileged users, thanks to the professional third-party team we hired for the implementation service that helped us properly implement One Identity Safeguard.

The time saved with One Identity Safeguard is significant, and I can affirm that we have seen a return on investment.

We have a separate department that studies setup costs for each product, but as far as my information goes, the pricing and setup costs are very good.

I did not evaluate other options before choosing One Identity Safeguard.

The feedback from users regarding One Identity Safeguard's usability and functionality has been very good. All users have provided positive feedback, and we encourage them to reach out with any issues, but so far, we have had no problems reported.

My advice for those looking into using One Identity Safeguard is to study the integrations between the client and One Identity Safeguard, ensuring the compatibility matrix is visible to all administrators before upgrading the product. I rated this product a ten out of ten.