Safeguard for Privileged Passwords

My main use case for One Identity Safeguard is to manage privileged identities and provide secure administration access while maintaining control over high-risk accounts.

A specific example of how I use One Identity Safeguard to manage privileged identities and secure access is when a system engineer needs elevated access to any servers. One Identity Safeguard provides controlled access through an approval process with a record of activities for review purposes.

One Identity Safeguard offers several valuable features, with privileged access governance being the most valuable. The privileged access, session auditing, secure storage of privileged credentials, access request management, and automated password updates are all useful features of the solution.

I rely most on the privileged access governance on a day-to-day basis because this feature provides complete control over who can access critical systems and under what conditions.

One Identity Safeguard has positively impacted my organization by providing excellent visibility of privileged operations, reducing unauthorized access risk, and reducing manual credential administration. These are the positive outcomes I have experienced from the solution.

One Identity Safeguard is a mature and feature-rich PAM solution, but its initial deployment could be improved as it feels complex, especially in large environments with multiple directories. This complexity could be simplified.

I have been working in my current field for more than two years.

One Identity Safeguard is stable in my experience.

One Identity Safeguard is a scalable solution designed to support growth from small deployments to large enterprise environments with thousands of privileged accounts, users, and managed systems.

The customer support team is impressive because they perform well and continue to support us at any time.

We did not switch from a different solution. We only conducted a proof of concept with One Identity Safeguard, and after seeing its powerful features and use cases, we procured the solution and are very happy with it.

We have deployed One Identity Safeguard as a virtual appliance within our virtualized infrastructure because it fits our needs well.

The deployment of the solution took three to seven weeks in our organization.

The deployment for the privileged users was largely smooth with minimal disruption. There was only a short period where administrators had to become familiar with the new access workflows, but overall, the impact was very limited.

Training for the end users was only a few hours, and they are using it very effectively. The IT team managed the solution with a dedicated one-week training session and now they efficiently manage the solution.

We have seen a good return on investment because administrative effort has been significantly reduced, and the time required for audit preparation and compliance reporting has decreased. The security team also spends less time investigating privileged access activities, which saves us time and money.

My experience with pricing, setup cost, and licensing was very straightforward due to a strong relationship with the vendor sales team. Whenever we encountered any pricing or setup cost issues, they supported us very well.

We have not evaluated other options because we found One Identity Safeguard so useful for our needs that we decided to procure it after our evaluation.

The accuracy and reliability of output from One Identity Safeguard are very high as it consistently performs well in managing privileged credentials and provides excellent audit records and session tracking data.

We are receiving a very positive response from the users regarding the usability and functionality of the solution.

My advice to others looking into One Identity Safeguard is to first identify all critical privileged accounts and compliance requirements to have a clear understanding of your privileged access landscape and design accordingly.

I gave this review a rating of nine out of ten.

One Identity Safeguard provides access to all employees who access the server and network equipment.

One Identity Safeguard has positively impacted our organization by strengthening privileged access security and improving compliance. Before implementing One Identity Safeguard, privileged credentials were managed manually, increasing security risk and making auditing difficult.

After deployment, all privileged accounts are centralized in a secure vault, password rotation is automated, and access is granted through controlled approval workflows.

The best feature of One Identity Safeguard is password vaulting combined with session management, which allows us to provide privileged access without exposing actual credentials to users. Users can access critical servers through approved workflows while all sessions are monitored and recorded for auditing and compliance.

The session management feature of One Identity Safeguard has a significant impact on my daily operations and compliance because it allows us to monitor and record all privileged activities performed on critical systems, reducing risk as administrators can access systems without knowing shared privileged passwords. If an incident occurs, we can replay recorded sessions to identify exactly what actions were performed by whom.

From a compliance perspective, One Identity Safeguard helps meet requirements for standards through session recording and audit logs, allowing us to provide evidence of privileged access approvals, session recordings, and user activity during audits without relying on manual documentation.

I have been using One Identity Safeguard for three years.

One Identity Safeguard is stable.

One Identity Safeguard's scalability is great.

Thank you for inquiring about customer support.

As an administrator, I use One Identity Safeguard to manage access by onboarding servers and their privileged accounts into the vault, creating an access policy requiring manager approval and MFA. When the DBA submits an access request, One Identity Safeguard routes it to approval. Once approved, the DBA launches the RDP or SSH session directly through One Identity Safeguard, ensuring the password is never exposed to the user while the entire session is recorded for auditing.

One Identity Safeguard can also automatically rotate the password.

After the implementation of One Identity Safeguard, I approve and monitor One Identity Safeguard logs.

One Identity Safeguard makes password manageability easy and helps us monitor and reduce manual tasks such as auditing and improving log visibility, while also providing compliance-based reporting for our upper management.

One Identity Safeguard is used to manage privileged access accounts across hybrid infrastructure, including Windows Server, Linux systems, network devices, and cloud-hosted workloads. The primary objective is to replace manual privileged account management processes with a centralized platform that enforces security policies consistently across the organization.

Before implementation, maintaining control over privileged accounts used by infrastructure teams, database administrators, and application support groups presented significant challenges. Password management was largely manual, and tracking privileged access required collecting logs from multiple systems. This created operational overhead and made compliance reporting time-consuming.

The best features of One Identity Safeguard are those that provide both security and operational efficiency, such as privileged session monitoring and recording, password vaulting, automated password resets, and access request and approval workflows.

Session monitoring and recording provides the most value for daily work, as it gives complete visibility into privileged activity across critical systems. In day-to-day operations, configuration changes, troubleshooting, software updates, and maintenance tasks are performed on production servers. With session recording enabled, every action is captured and can be replayed later if needed.

A specific example is when a configuration change unexpectedly affects an application. Instead of spending hours collecting logs from different systems or asking multiple team members what changes were made, the recorded session can be reviewed to see exactly what happened. This significantly speeds up troubleshooting and root cause analysis.

One Identity Safeguard has improved security, governance, and audit readiness rather than just a single metric. A noticeable reduction in password-related support tickets has been observed. Before Safeguard, administrators frequently requested credential password resets and temporary access changes.

After implementing centralized password vaulting and automated password management, password support tickets dropped by up to thirty to forty percent. Visible gains in audit readiness have also been achieved, as preparing for a privileged access review previously required manually collecting logs from multiple systems and reconciling user activity. With session recording and centralized audit trails available in One Identity Safeguard, the process is much faster. The time spent preparing audit evidence has been eliminated, and compliance reports have been reduced by closer to fifty percent.

The biggest day-to-day impact has been the reduction in manual administrator work related to privileged access management. Before implementation, considerable time was spent handling password requests and coordinating access approvals through email or tickets and manually tracking who had access to critical systems. Now, many of those processes are automated.

Users can request access through a predefined workflow. Approvals are routed automatically, and privileged credentials are managed by One Identity Safeguard without requiring password distribution or resets. This has freed up a significant amount of routine support work and eliminated many repetitive ticket tasks.

For example, when a system administrator needs temporary access to a production server, the process no longer involves multiple teams, phone calls, or coordination between teams. The request is submitted through One Identity Safeguard portal, approved according to policy, and access is granted automatically for the defined period.

One Identity Safeguard has proven to be a strong and reliable privileged access management solution, particularly for organizations that need greater control, visibility, and accountability around privileged accounts. What stands out the most is how it brings together password security, privileged session management, access governance, and auditing into a single platform.

This not only strengthens security but also simplifies day-to-day administration and compliance efforts. As the organization grows and manages increasingly complex hybrid environments, having centralized control over privileged access becomes even more important.

One Identity Safeguard is very strong in its privileged access management capabilities, but there are a few areas where improvement could be made. The first area is the user interface and overall user experience. The platform provides a lot of functionality, but some administrative tasks require navigating through multiple menus and configuration screens. A more modern and streamlined interface would make it easier for new administrators to learn and manage the platform efficiently.

One specific area that could be streamlined is policy creation and onboarding new systems when creating access policy workflows.

My advice to organizations considering One Identity Safeguard is to start by clearly defining privileged access management objectives before deployment, understanding which privileged accounts, systems, and user groups need to be protected, and establishing governance policies early in the project. A well-planned implementation delivers much better results than simply deploying the technology without clear processes.

Beginning with a pilot deployment involving a small group of administrators and critical systems allows the team to validate access workflows, session monitoring, password management policies, and reporting requirements before expanding across the organization. Another important recommendation is to invest time in training administrators, as One Identity Safeguard is a powerful platform with many capabilities, and understanding policy design, access control, and reporting features will help the organization maximize its value.

The more familiar the administrator team becomes with the platform, the smoother the rollout and ongoing management will be. This review has been given an overall rating of nine out of ten.

One Identity Safeguard is used primarily to secure privileged credentials, enforce control over administrative access, and provide visibility into privileged activities.

Whenever a network or server administrator requires access to a production system, access is granted through One Identity Safeguard's approval workflow and credential vault rather than exposing privileged account passwords directly.

One Identity Safeguard offers several best features, including its privileged credential vaulting feature, automated password rotation, and privileged session management, along with session recording and playback.

The feature that I rely on the most is automated password rotation because it reduces the risk associated with static or shared privileged credentials and improves security by automatically changing passwords at defined intervals without manual intervention, helping us to meet compliance.

One Identity Safeguard has positively impacted our organization in many ways because it has improved our organization's privileged access security through centralized credential management, enforcing strong password control, and providing complete visibility into privileged user activities.

Since we have deployed this solution, we have experienced many positive outcomes, such as faster audit preparation by fifty to seventy percent and saving operational time by almost forty to sixty percent. We are also experiencing very good visibility and accountability, enabling quick investigation of privileged user activities.

The artificial intelligence-related governance and security capabilities of One Identity Safeguard are very strong because they operate within a framework of strict access control, with analytics and intelligent insights providing detailed monitoring and session tracking.

One Identity Safeguard is very accurate in its output and very reliable, particularly when identifying unusual privileged access behavior and potential security risks, providing insights based on monitoring user activities and established behavior patterns.

One Identity Safeguard is a very strong privileged access management solution, and the only thing that needs to be enhanced is its dashboard customization; apart from this, everything is perfect.

I have been using One Identity Safeguard for almost two years.

One Identity Safeguard is a stable solution.

One Identity Safeguard is very scalable and handles organizational growth effectively.

The customer support is excellent in technical assistance, and they are ready to provide support at any time.

We are using One Identity Safeguard since the beginning and have not switched to another solution.

The deployment of One Identity Safeguard took approximately four to eight weeks, including planning, installation, integration, and fine-tuning.

The deployment effect was largely smooth for privileged users with very minimal disruption to day-to-day operations.

The end-user required very minimum training, typically a few hours or short onboarding sessions to understand the privileged access request and workflows. The implementation was very smooth, and all users are now handling it very properly.

We have seen a clear return on investment, with time savings of approximately forty to sixty percent, faster audits by fifty to seventy percent, reduced risks, and increased operational efficiency.

Pricing, setup cost, and licensing are managed by the management team.

We have not evaluated other options before choosing One Identity Safeguard.

My advice for any organization considering One Identity Safeguard is to deploy it and start by identifying your most critical privileged accounts and administrative users. Implementing credential vaulting and automating password rotation first will provide very good security benefits.

We are getting very positive feedback from the users, and they are very happy and appreciating One Identity Safeguard. I would rate this review a nine.

One Identity Safeguard's main use case in our environment is authentication services. It serves as a centralized authentication solution for Linux and Unix servers, including the use of Active Directory credentials. This helps us simplify user access management, reduce local account dependency, improve security, and provide centralized authentication and auditing across servers.

A specific example of using One Identity Safeguard is for Linux and Unix server access management. Instead of maintaining separate local accounts on servers, users can log in using their Active Directory credentials. This simplifies access management, reduces password-related issues, and improves audit visibility.

The best features of One Identity Safeguard authentication services are seamless Active Directory integration, centralized integration, authentication and single sign-on for Linux and Unix systems, policy enforcement, and centralized auditing.

The Active Directory integration in One Identity Safeguard allows for seamless integration in our environment because Linux and Unix systems can directly use AD credentials for authentication without maintaining separate local user profiles. Once it is integrated properly with AD, user access management becomes much easier and centralized.

One Identity Safeguard has positively impacted our environment by simplifying Linux and Unix authentication, reducing dependency on local accounts, improving centralized access control, and making user onboarding and offboarding much easier from a security and operational perspective.

One example where One Identity Safeguard services helped us was during employee offboarding. Before, administrators had to manually remove or disable local accounts from multiple Linux servers, which was time-consuming and sometimes risky if something was missed. By integrating with Active Directory through Safeguard, disabling the AD account automatically blocks access across connected Linux and Unix systems, which improves security and reduces manual effort.

From an accuracy and reliability perspective, One Identity Safeguard has been generally consistent in our environment.

One Identity Safeguard can be improved in areas such as UI modernization. Debugging authentication issues across Linux, AD, DNS, and Kerberos sometimes still requires manual investigation and Linux expertise.

Additionally, better real-time monitoring, clearer authentication error reporting, and simpler troubleshooting tools in One Identity Safeguard would be helpful, especially when working in large and complex environments.

One area where One Identity Safeguard still needs improvement is troubleshooting and visibility during authentication failures in a real environment. Issues related to Kerberos, DNS, SSH, or AD synchronization can sometimes take time to diagnose. Better real-time monitoring and clearer error reporting would help significantly.

I have been using One Identity Safeguard for four years.

One Identity Safeguard is stable.

Scalability is good.

Support is very good.

Before implementing One Identity Safeguard, we mainly relied on local Unix accounts and manual authentication. Managing access across multiple servers was time-consuming and inconsistent, especially during onboarding, offboarding, and audit cycles.

The deployment of One Identity Safeguard in our environment took around two to four weeks, including planning, Active Directory integration, Linux server onboarding, testing, and phased rollout. The core deployment was manageable, but troubleshooting authentication dependencies such as DNS, Kerberos, and SSH configuration took additional effort during implementation.

We saw good ROI with One Identity Safeguard mainly through reduced manual Linux account management, centralized authentication, faster onboarding and offboarding, and improved audit and compliance visibility. It also reduced operational effort because disabling a user account automatically removes access on multiple systems.

My experience with pricing, setup, and licensing was generally good for an enterprise environment, although the initial setup and license cost can be somewhat high for smaller organizations. The deployment requires some planning around Active Directory and Linux integration, but overall, the solution has reduced manual administration effort and improved centralized access management, so the value was justified in our environment.

We did evaluate other options before choosing One Identity Safeguard.

The training requirement for this was moderate in our environment. Experienced Linux and Active Directory administrators were able to manage daily operations after a few days of hands-on training and documentation review. The bigger learning curve was mostly around troubleshooting Kerberos, DNS, SSH, and Linux authentication-related issues in hybrid environments.

Integration of One Identity Safeguard has positively affected our operations by centralizing authentication across Linux and Unix, reducing manual account management, and simplifying user access control through Active Directory integration. It also improved security and audit visibility because access management became more consistent across the environment instead of managing separate local accounts on individual servers.

One Identity Safeguard positively affected privileged users by improving centralized authentication and more controlled access management for Linux and Unix systems. Instead of managing multiple local privileged accounts, administrators could use centralized AD-based authentication and policies, which improved security, simplified access management, and increased audit visibility for privileged activities.

The integration difficulty for One Identity Safeguard was moderate in our environment. The Active Directory integration was straightforward, but challenges came during Linux authentication configuration, Kerberos, DNS synchronization, and integrating across multiple Unix distributions and hybrid environments.

One Identity Safeguard service was integrated with applications and services of Microsoft Active Directory, Linux and Unix servers, SSH-based access systems, VMware infrastructure, and some DevOps-related environments for centralized authentication and access management. The main advantage was centralized credential management and consistent access control across multiple platforms.

In our environment, One Identity Safeguard authentication services was mainly deployed on-premises, so cloud dependency was minimal. Although we had some integration with Microsoft Azure for hybrid infrastructure and identity-related operations, One Identity Safeguard was mainly deployed as virtual appliances on VMware infrastructure. We use virtual deployment because it is easier for scaling, backup, disaster recovery, and maintenance compared to physical appliances.

I would rate this solution an overall eight out of ten.

I have been using One Identity Safeguard for the past three years. One Identity Safeguard is one of our champion PAM tools that our organization uses. We started using One Identity Safeguard for our very premium accounts and clientele accounts where there were a lot of cyber threats or cybersecurity issues.

With our privileged accounts, the main issue we face is doing any sort of integration through API, as that becomes very susceptible to threat attacks. We are using PAM tools during our API integration to ensure security.

There is one thing that we are currently focusing on, which is detecting behaviors or threat behaviors to improve our analysis of threat detection.

As I mentioned earlier, this past trend analysis of all these threat attacks, flagging up the red issues, is something very good and happens in a proactive manner. One Identity Safeguard has definitely strengthened our operational security because what they do is combine your password with a secure solution and analyze any deviations such as unusual password activity.

One Identity Safeguard is a game changer for us, especially for rapid business expansion and building trust with our clients.

The only thing that we are looking for is to reduce the false alarming in the system to better analyze genuine concerns.

I need more improvement on the product trials and the signup features. Easing the initial deployment would benefit new users. We have requested that real-time privileged threat analytics be made very customizable to the specific business and IT environments.

I have been using One Identity Safeguard for the past three years.

I will give a stability rating of more than 90 percent for One Identity Safeguard, as I have never seen it crash or slow down during updates.

We have seen enormous productivity enhancement, measured through client feedback, with our ratings never dropping below 4.2.

We are always in touch with customer care, which is available 24/7, and issues are resolved through a ticketing solution very efficiently.

We were using a PAM solution from Automation Anywhere but switched due to issues with their licensing and lack of support.

For us, it took three to four months because we had multiple layers of negotiation regarding pricing and licensing.

For those who manage it, I think about one to two days of training is required, and existing users can use it within a few hours.

It was pretty seamless for them; this solution does not feel like a burden to them and they did not have to compromise their existing routines.

I would say the pricing was a bit on the higher side, but we had a good rapport that led to a favorable pricing model.

We have not been able to evaluate other options due to time constraints given by one of our clients.

One Identity Safeguard is a one-stop solution for all your privileged account management needs, and I recommend experiencing it before making a decision. My recommendation is to choose One Identity Safeguard for a long, secure, sustainable future in managing privileged accounts. I gave this review an overall rating of 9 out of 10.

In day-to-day work, I use One Identity Safeguard to manage centralized login for Linux and UNIX servers, troubleshoot login access issues, enforce security policies, manage AD-based permissions, monitor authentication logs, and ensure secure and compliant access across the systems.

Additionally, I use One Identity Safeguard for operational tasks like on-boarding and off-boarding users, reducing dependency on local accounts, improving audit and visibility, and simplifying administration through centralized access control and policy management.

The best features of One Identity Safeguard are centralized authentication, seamless Active Directory integration, single sign-on on Linux and UNIX systems, role-based access control, policy enforcement, and auditing capability, which improve security and simplify administration and enhance compliance across the enterprise environment.

The most valuable feature is seamless integration with Active Directory, allowing Linux and UNIX systems to use centralized AD authentication, enabling single sign-on, centralized user management, consistent security policy, and easier access control without maintaining separate local accounts.

Additionally, the auditing, policy enforcement, and centralized access management features of One Identity Safeguard are very valuable as they improve security, visibility, simplify compliance management, and reduce administrative effort across Linux and UNIX environments.

One Identity Safeguard has positively impacted my organization by reducing manual user management efforts, improving security through centralized authentication, eliminating most local account-related issues, simplifying access management, and improving audit and compliance visibility across Linux and UNIX systems.

One Identity Safeguard can be improved with a more modern and intuitive interface, better troubleshooting and diagnostic tools, enhanced real-time monitoring and reporting, and stronger integration with cloud and hybrid identity platforms to simplify administration and improve operational visibility.

Additionally, One Identity Safeguard could improve policy synchronization speed, provide clearer error messages during authentication failures, simplify complex configurations, and enhance automation and self-service capabilities to reduce administrative overhead in large enterprise environments.

I have been using One Identity Safeguard for the last two years.

One Identity Safeguard is generally stable and reliable in an enterprise environment with consistent authentication performance and minimal downtime when properly configured and maintained.

One Identity Safeguard scales well in enterprise environments, as it can efficiently handle a large number of Linux and UNIX systems and users through centralized authentication and policy management without significant performance impact.

Customer support for One Identity has been generally good, with knowledgeable technical teams and effective guidance for most deployment and troubleshooting issues; although response times for complex cases can sometimes be slow.

Customer support for One Identity Safeguard is around a seven out of ten for strong technical expertise and helpful guidance, with some room for improvement in response and escalation times.

Previously, I used local authentication and manual account management for Linux and UNIX systems, but I switched to One Identity Safeguard to achieve centralized authentication, better security, simplified administration, and improved compliance.

The deployment of One Identity Safeguard took approximately two to four weeks, including planning, Active Directory integration testing, policy configuration, and phased rollout across Linux and UNIX systems.

One Identity Safeguard required moderate training, especially for administrators managing Active Directory integration, authentication policies, and troubleshooting; typically, a few days of hands-on training and documentation review is enough for experienced system administrators to manage daily operations effectively.

I achieved a good ROI with One Identity Safeguard through approximately thirty to forty percent reduction in manual user management effort, fewer password and local account issues, faster access management, and improved audit and compliance efficiency, which saved administrative time and improved security operations.

Pricing and licensing for One Identity Safeguard are generally enterprise-based and depend on the number of users and systems; while setup costs are moderate due to deployment, integration, and training requirements, overall the solution provides good value through centralized authentication, improved security, and reduced administrative overhead.

I evaluated solutions including CyberArk Privilege Access Management, BeyondTrust Remote Access, and Microsoft Entra ID before selecting One Identity Safeguard due to strong Active Directory integration and simplified Linux and UNIX authentication management.

The feedback for One Identity Safeguard has generally been positive, especially regarding simplified login, single sign-on experience, and reduced password-related issues; while administrators appreciate the centralized authentication and improved security, some users mentioned that troubleshooting and advanced configuration could be more user-friendly.

One Identity Safeguard is integrated with tools and platforms including DevOps environments, Linux, UNIX applications, SSH-based systems, and Active Directory services, helping provide centralized authentication, role-based access control, and security management across infrastructure.

The integration of One Identity Safeguard with Active Directory was moderately easy; the core AD integration is straightforward, but advanced configuration, policy mapping, and troubleshooting in a complex hybrid environment require careful planning and some expertise.

I recommend One Identity Safeguard for organizations seeking centralized authentication, strong Active Directory integration, improved security, and simplified Linux and UNIX access management in enterprise environments. I would rate this product an eight out of ten overall.

I primarily use One Identity Safeguard for Privileged Access Management, mainly to control, monitor, and secure administrative access to critical systems. I also used it for session monitoring and audit visibility for sensitive administrative activities. Having centralized logging and session tracking was important from both a security and compliance perspective. The practical use case involved temporary privilege access. Instead of giving permanent elevated permissions, teams could get controlled access for specific tasks or durations, which supported least privilege practices better.

One practical example was during a production support activity where a vendor team needed temporary administrative access to troubleshoot an application issue on a critical server. Instead of sharing privileged credentials directly, access was provided through One Identity Safeguard with time-based control. The session was monitored, and the access automatically expired after the approved maintenance window.

One additional area where One Identity Safeguard was useful was improving accountability around privileged operations. In many environments, multiple teams need elevated access for infrastructure, database, or application support, and without proper PAM controls, it becomes difficult to track who actually performed what action.

The strongest features of One Identity Safeguard are definitely privileged session monitoring, password vaulting, and controlled temporary access workflows. Those are the areas that stood out most in my day-to-day operations.

A feature area that I think is sometimes underrated is the centralized visibility One Identity Safeguard provides across privileged activities in a large environment.

One Identity Safeguard had a positive impact mainly in improving privilege access control, operational accountability, and audit readiness. Before implementing PAM properly, privileged access management was more dependent on manual controls and shared administrative practices, which increases both security and operational risk. One major improvement was better control over privileged credentials.

There were definitely some measurable operational improvements after implementing One Identity Safeguard. One noticeable improvement was audit readiness and reduction in access-related observations. Earlier, collecting evidence for privileged access reviews or administrative activity tracking required more manual efforts. With centralized session logging and monitoring, audit preparation becomes much faster and structured.

They mainly helped by improving accountability and reducing unnecessary permanent privilege access. For example, during production troubleshooting, external vendor or internal support teams sometimes needed elevated access urgently. Earlier, in many environments, teams would share privileged credentials directly to save time, but that created security and audit risk because multiple people could use the same account without proper visibility. With One Identity Safeguard, access could be approved for a limited duration and the session was monitored and logged.

One Identity Safeguard is a strong PAM solution, but there are definitely areas where it could be improved. I feel reporting and dashboard visibility could become more business-friendly. The technical teams can work with detailed logs and session data, but leadership teams often want quicker risk-focused insights instead of deep technical information.

For integration, One Identity Safeguard works well in core PAM scenarios, but in more complex environments, especially where there are multiple tools for IAM, SIEM, and DevOps, integration can sometimes require extra effort and planning. On user experience, one challenge is that different user groups experience the system differently. For security teams, the depth of control is good, but for operational teams like system admins or support engineers, the workflow sometimes feels a bit layered, especially under time pressure.

The reason it is not a perfect ten is mainly because of usability and operational friction in some scenarios. In real production environments, especially during urgent troubleshooting, the workflow can feel a bit heavy, and integrations with newer cloud-native ecosystems can require extra effort.

I have been working in my current field for more than ten years.

I have been using One Identity Safeguard for two years.

One Identity Safeguard is generally considered stable. In our experience, we did not face major downtime issues in production. The platform handled privileged sessions and access workflows consistently, and most of the time it runs smoothly.

The scalability was one of the areas where One Identity Safeguard worked well for us. As the environment grew with more servers, more admin users, and more privileged access requests, the tool was able to handle the increased load without major performance issues.

I had direct interaction with their support mainly during configuration and integration phases, especially around Active Directory connectivity, flow setup, and some session-related troubleshooting. Overall, my experience has been positive, and they are technically strong.

Before One Identity Safeguard, privileged access was mostly handled through a more traditional approach: direct administrative access on systems along with shared credentials in some cases and basic directory-level controls using Active Directory. In some areas, there were also a few manual scripts and ticket-based approvals, but there was not a centralized PAM platform in place to fully control, monitor, and record privileged sessions.

The deployment of One Identity Safeguard was not a one-day or one-week activity. It was more of a phased rollout that took a few weeks to a couple of months overall.

The transition for privileged users was a bit of a mixed experience at the beginning, but it became smoother after the initial adjustment phase. At first, there was some resistance because users were used to direct administrative access. With One Identity Safeguard, they had to go through controlled workflows for requesting access and launching privileged sessions, which added a few extra steps compared to the earlier way of working. Initially, some users felt it slowed things down, especially during urgent production issues.

Training was needed for both administrators and end users, but the level of effort was different for each group. For the admin or security team managing One Identity Safeguard, there was definitely a learning curve. They needed proper training on configuration, policy setup, session management, and integrations with Active Directory and troubleshooting. For end users, the training was much simpler. Most of it was just about how to request privileged access, how to launch sessions through the portal, and what the approval flow looks like.

In terms of savings, one of the biggest improvements was in privilege access handling. Earlier, a lot of time was spent managing password sharing, manual approvals, and coordinating between teams for admin access. After implementing One Identity Safeguard, those processes became more structured and controlled through workflows, which reduced back-and-forth communication and improved response time during support or maintenance activities. I also saw savings in audit and compliance effort. Previously, collecting evidence for privileged activity reviews required manual tracking and coordination across systems. With centralized session monitoring and logs, audit preparation becomes significantly faster and less effort-intensive.

It was actually on the higher side compared to basic security tools, but it was expected because it is an enterprise-grade PAM solution. The setup cost was not just about licensing. A big part of the effort went into implementation, configuration, and designing proper workflows.

During the evaluation phase, I looked at a few other PAM options to compare capabilities, especially around session monitoring, ease of administration, and integration with my existing AD environment. Some of the commonly discussed alternatives were tools such as CyberArk, which is a very strong tool, and also a few Microsoft native approaches combined with Azure-based identity controls for privileged access management.

I would say the biggest advice is to not treat One Identity Safeguard just as a tool installation. Treat it like an access governance project and involve both security and operations teams early. In many organizations, PAM fails not because of technology but because operational teams feel it slows them down. If their input is taken early, the workflows can be designed in a more practical way.

I think the success of PAM is not only about the tool; it depends heavily on how well the organization is disciplined with its access governance. If teams try to bypass processes or create too many exceptions, even the best PAM tool loses effectiveness. I would rate this product nine out of ten.

My main use case for One Identity Safeguard is to store our IDs and passwords so that they can be used later for logging in. It also helps us when our employees are working from home by managing IDs, passwords, and other login credentials safely, without any worry of password theft or identity theft.

A specific example of how I use One Identity Safeguard with employees working from home is when they are using their personal Wi-Fi connection, where the chance of personal theft increases. One Identity Safeguard helps us manage the chances of theft, reducing the instances of password theft and identity theft, which has been very useful for us and has also reduced the cases we experience.

The best features are that the user interface is very good and the functionality is smooth, with a good user experience overall. Apart from this, the third-party integration that One Identity Safeguard provides is another major feature that I appreciate. It integrates well with other third-party websites and solutions, allowing the end user to log in or save their password on those websites using One Identity Safeguard.

A specific third-party integration that I found especially useful was when we integrated Salesforce Cloud, which was a smooth experience overall without any bottlenecks during the integration process, resulting in a good workflow.

One Identity Safeguard has positively impacted my organization by reducing the cases of password theft and increasing efficiency. Our employees no longer have to worry about password theft, allowing them to be more efficient in their work. It has helped us reduce the effort that our employees used to expend by entering passwords and user IDs manually before using One Identity Safeguard.

The incidents of password theft have reduced by around forty percent, which has been a very good result from using One Identity Safeguard for our organization and is a great benefit for us.

We have saved a lot of time because users no longer have to save passwords manually, as everything has been automated. This saving of time leads to increased overall efficiency of our organization.

One feature that I feel One Identity Safeguard lacks is a robust reporting interface, as the data we get from it is not very well displayed. A reporting dashboard is missing and needs to be incorporated in the coming updates. This is one of the essential features that is missing from the solution.

One Identity Safeguard needs improvement in customer support, and there are also glitches while logging in that end users face. These minor glitches cause problems for us, which need to be addressed.

In the case of the glitches, sometimes we have to try two or three times for one task. While these glitches are minor and happen occasionally, they need to be taken care of.

I have been using One Identity Safeguard for the last one and a half years.

One Identity Safeguard is stable and quite performance-centric.

One Identity Safeguard's scalability is quite good.

The customer support for One Identity Safeguard needs improvement. I would rate the customer support as a seven out of ten.

We were not using any other solution prior to One Identity Safeguard. This is the first solution that we have purchased, as One Identity Safeguard was the market leader and that is why we selected it.

The deployment of One Identity Safeguard took around four to five months.

The deployment affected my privileged users by being somewhat disruptive, as they had to make changes to their day-to-day workflow. Overall, it was a very good experience with support from the One Identity Safeguard team during the deployment stage.

There was no need for any training for either end-users or for the people who manage One Identity Safeguard.

We have not integrated One Identity Safeguard with other parts of our business.

If you are looking to increase the organization's efficiency, One Identity Safeguard is the solution that needs to be purchased, as it is an overall cost-efficient solution for business needs.

I find that the pricing is very affordable and the setup cost is also very affordable, aligning with our budget. Licensing is per-user based.

While selecting One Identity Safeguard, we evaluated other options, but they were not aligning with our business needs, so we chose One Identity Safeguard instead.

After thoughtfully considering the pros and cons of One Identity Safeguard, I give this product a rating of nine because it is overall very good software. However, factoring in the subpar customer support and the technical glitches, I believe nine is a perfect rating.