Sign in
Sign in
or
Create a new account
Agent Mode
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Safeguard for Privileged Sessions

One Identity

Reviews from AWS customer

4 AWS reviews

External reviews

23 reviews
from

External reviews are not included in the AWS star rating for the product.

3-star reviews ( Show all reviews )

    Rohan Paul

Privileged access has become more controlled and auditable but the interface still needs simplification

  • January 02, 2026
  • Review from a verified AWS customer

What is our primary use case?

My main use case for One Identity Safeguard is for privileged access management to control, monitor, and secure access to critical systems, servers, and applications used by administrators and IT teams.

A quick specific example of how I use it for privileged access management in my environment is that when an administrator needs access to a critical server, they request access through One Identity Safeguard instead of using shared credentials. The system grants time-bound, approved access, rotates the password automatically after the session, and records the entire activity.

What is most valuable?

The best features One Identity Safeguard offers include Privileged Password Vaulting as the first one. The strongest features are Session Recording and Password Vaulting with rotation and Just-in-Time Access, which together give strong control and visibility and audit readiness.

The Session Recording feature specifically helps my team and makes things easier for audits or investigations by giving a clear, time-stamped playback of privileged activities. It removes guesswork, speeds up audits, and ensures full accountability for admin actions.

One Identity Safeguard has positively impacted my organization by improving our security posture, eliminating shared privileged credentials, increasing visibility into admin activity, and making compliance audits faster and more reliable.

What needs improvement?

One Identity Safeguard could be improved by simplifying the user interface and initial configuration process, especially for first-time users. More customizable reporting and clear in-app guidance would also help teams onboard faster and get deeper insights without additional effort.

For how long have I used the solution?

I have been using One Identity Safeguard for about one year.

What do I think about the stability of the solution?

One Identity Safeguard is very stable and can handle the workload easily; I have not seen any downtime.

What do I think about the scalability of the solution?

One Identity Safeguard scales well as the environment grows. It handles increasing numbers of privileged accounts, sessions, and cloud targets without performance issues, making it suitable for expanding and hybrid infrastructure.

How are customer service and support?

Customer support has been responsive and knowledgeable, being effective at resolving technical issues.

How would you rate customer service and support?

Negative

How was the initial setup?

The integration with my cloud environment and infrastructure systems was moderately easy. Core cloud and infrastructure integrations were straightforward with proper documentation, while fine-tuning policies and access workflows required some initial effort. Once configured, the integrations have been stable and reliable.

Administrators required moderate training to understand configuration, policies, and workflows, while end users needed minimal training since access requests and approvals are straightforward. Overall, onboarding was manageable with some initial guidance.

What was our ROI?

I have seen a return on investment through reduced audit effort and fewer security incidents related to privileged access, along with significant time savings for IT and security teams by automating access control and password management.

What's my experience with pricing, setup cost, and licensing?

My experience with pricing, setup cost, and licensing is that pricing is on the higher side, but aligns with the security and compliance value it provides. Setup costs were mainly related to initial configuration and training, and licensing was straightforward.

Which other solutions did I evaluate?

I evaluated other options such as CyberArk and BeyondTrust before choosing One Identity Safeguard.

What other advice do I have?

User feedback has been generally positive around the solution's security and session recording and access control capabilities. However, some users have mentioned that the interface and initial learning curve could be more intuitive, especially for new or non-specialist users.

My advice for others looking into using One Identity Safeguard is to clearly define your privileged access use cases and policies before implementation. It gives stronger security and audit capabilities, but investing time in proper planning, setup, and training will help you get the most value from the solution. I would rate this review a 7.

Which deployment model are you using for this solution?

Hybrid Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)

    Nawaz Sarwar

Monitoring features enhance infrastructure control but documentation and disaster recovery need improvements

  • February 17, 2025
  • Review provided by PeerSpot

What is our primary use case?

My main use cases include LDAP, SSH, and some utilization of HTTPS. My primary uses are LDAP and SSH.

What is most valuable?

From my experience, the features are best for monitoring and the usage of LDAP and SSH. I think One Identity should improve its documentation because it is vast and not clear, and clear documentation on implementing the solution would be advantageous for consultants. I find clear documentation helpful for clients and customers to achieve what they want.

What needs improvement?

I find it complicated to implement HTTPS monitoring because the documentation is unclear. The disaster recovery process is complicated for me. For some configurations on the SPS side, if I need to make changes, such as for DNS servers, I must redeploy the machine. Transparent Mode can be improved in newer versions, and the failover process is the most complicated for me.

For how long have I used the solution?

I have been working with this solution for the last two years.

What do I think about the stability of the solution?

The stability is consistent for me until a problem arises; then it becomes difficult. I encounter problems primarily with the failover procedure.

What do I think about the scalability of the solution?

Scalability is acceptable for me. If customer usage increases, I can add new appliances, but this incurs costs.

How are customer service and support?

I find the support good, but not excellent. When I open a ticket, resolutions can take a long time, and I sometimes need escalations to reach expertise.

How would you rate customer service and support?

Negative

Which solution did I use previously and why did I switch?

I always compare this solution with CyberArk. I feel CyberArk is not like a black box; it allows a lot of customization.

How was the initial setup?

The initial setup is not complex for me; it's straightforward. I would rate it a seven, as it takes me thirty to forty minutes per machine for deployment.

What about the implementation team?

I install the solution and offer the services to the end-users.

What was our ROI?

Any PAM solution, when I deploy it well and customers use it, leads to a return on investment. This is applicable not just to One Identity or CyberArk, but to any PAM solution that provides what customers need to achieve.

What other advice do I have?

It's about controlling what people are doing in their infrastructure. Overall, I would rate the product six out of ten.

    reviewer2037558

Works well for PSM features, but we sometimes face configuration issues

  • April 01, 2024
  • Review provided by PeerSpot

What is our primary use case?

We mainly use the Privileged Session Management (PSM) features.

What is most valuable?

In terms of the user experience, it is a pretty useful product. It works in a good way.

What needs improvement?

We sometimes face issues with configuration and things like that, but we manage to solve them. In general, it is a pretty good solution for the PSM features.

There can be an improvement in terms of the policy that can be implemented on the SSH session.

For how long have I used the solution?

I have been working with this product for more or less 2 years.

How are customer service and support?

I have never spoken to their technical support. A colleague of mine interacts with them.

Which solution did I use previously and why did I switch?

I did not work with any other solution previously. I have read about other products and their features, but I have not worked with them. One Identity Safeguard is probably one of the best solutions for PSM features.

How was the initial setup?

I do not work on the installation. I work on the setup. We do face some issues with configuration, but in general, we are able to troubleshoot them.

What other advice do I have?

Based on my personal experience with the PSM features, it is a good product. I know that there are some competitors, but I have not worked with them.

My colleagues worked on its integration with another tool. It seems to integrate fine, but I do not know for sure if he faced any issues.

My experience is with the PSM features, and for that, I would rate the product a six out of ten. There are some specific features that can be improved, but in general, I have had a good experience with the product.

    reviewer2283744

Fast to implement and has good pricing but lacks documentation

  • September 26, 2023
  • Review provided by PeerSpot

What is our primary use case?

We use the on-demand version. We use the solution for monitoring and connection to the customer's server for Windows and Linux.

How has it helped my organization?

It's easier to connect to the server and it makes it more secure. We've seen about a 40% improvement in that regard.

What is most valuable?

The monitoring system is very good.

It has a very nice user interface.

The product is very fast to implement.

We use the solution's transparent mode for privileged sessions.

What needs improvement?

There is a lack of documentation and many problems with the plugins.

I did run into problems with transparent mode for privileged sessions. We didn't connect correctly to the server. It was an issue we had with the customer's server, not the product itself.

The security of the connection could be improved.

For how long have I used the solution?

I've been using the solution for one year.

What do I think about the stability of the solution?

It's not completely stable. Sometimes the newest version does not support an older version.

What do I think about the scalability of the solution?

The solution is not so scalable.

Mabe 20 or so users are leveraging it in our organization. They are admins.

How are customer service and support?

We use regular support. The response times are too long. Sometimes it could take days.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I previously used CyberArk. I changed companies, and now I work with this product. I find Safeguard to be easier to implement, however, it does lack documentation.

How was the initial setup?

It is fast to implement.

While the process is not technically complex, there was a lack of documentation and we had to figure out how to do it ourselves. The deployment took three weeks. We had two people working on the process.

What was our ROI?

We have yet to witness an ROI.

What's my experience with pricing, setup cost, and licensing?

The solution is offered at a good price. We pay a monthly fee. I'm not sure of the exact cost we pay.

What other advice do I have?

I'm a product partner.

We are using the latest version of the solution.

I have yet to use the cloud assistant feature, so I can't say much about that aspect of the solution. We also do not use the solution's secure remote access feature for privileged users. We don't have it integrated with DevOps or RPA.

While basic knowledge is important, there isn't much training required to start using the solution.

I'd rate the solution six out of ten.

    Shashank Rawat

Bulk import with templates is helpful, but some competitors' products are better

  • July 12, 2023
  • Review provided by PeerSpot

What is our primary use case?

We use Safeguard for managing privileged passwords only, using physical appliances.

How has it helped my organization?

So far, I haven't seen any type of improvement from using this solution when compared with other products in the identity and access management space. It has been neutral.

What is most valuable?

I like the discovery functionality and the change password feature through the check-in. I also like the bulk import with the help of templates that come with it out of the box. With the help of these few features, my tasks are made easier.

We also use the Secure Remote Access feature for privileged users. Access is based on group membership and with that membership they connect to the remote machine. It's an easy process to manage.

What needs improvement?

The main thing that needs improvement is the slowness. Apart from that, the change password check-in feature also needs improvement because it is not working perfectly accurately.

For how long have I used the solution?

I have been using One Identity Safeguard for the last two and a half years. I work as an implementer and provide support operations to our clients.

What do I think about the stability of the solution?

It's not a stable solution, but it's not bad. It's neutral in terms of stability.

What do I think about the scalability of the solution?

It's not scalable.

How are customer service and support?

We are not using their Premier Support, but I am okay with the vendor's regular support. But if the product is running on an unsupported version, that is a very negative point. They should support unsupported versions as well so that their customers are not stuck somewhere in between.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

As an organization, we are using other PAM solutions for other projects, but I'm not sure which other solutions are in use.

How was the initial setup?

The initial setup for Safeguard is straightforward. Because it was deployed a long time ago in our organization, before my tenure, my expertise is based on adding to clusters. If we are going to add clients within a cluster, it depends on the speed, meaning how the network connectivity is between the cluster and the target device.

In terms of the effect of deployment on users, they are provisioned, with the help of group membership, into Safeguard. Once they are assigned to a particular group, they can follow the previous sites. Based on the previous site, they can log in and check out the password of their privileged account.

As for the amount of training needed, it depends on the solution. If the solution is only for privileged passwords, about three weeks' training is required to understand the solution. And if the server for privileges is also integrated with the solution, it will take a month or as much as 45 days.

We have an implementation team and an operations team. Between them, there are a total of five or six people required for this solution to deploy and maintain it.

What's my experience with pricing, setup cost, and licensing?

I'm not aware of the product cost, but if it's going to cost more, first they have to maintain and stabilize the product.

What other advice do I have?

My impression of the form factor of the Safeguard physical appliance is not good and not bad. It's neutral. Similarly, feedback about the usability and functionality is neutral.

My advice, if you have the budget, is to buy other products, like CyberArk Privileged Access Manager or BeyondTrust Endpoint Privilege Management. If you don't have that kind of budget you can use this product.

showing 1 - 5