Cloudflare's Zero Trust Network Access (ZTNA) technologies create secure boundaries around applications. When resources are protected with ZTNA, users are only allowed to access resources after verifying the identity, context, and policy adherence of each specific request. Cloudflare's Zero-Trust-as-a-Service model enables users to deploy access controls on the company's instant-on cloud platform, backed by Cloudflare's global network.
N/A
Delinea Secret Server
Score 9.0 out of 10
N/A
Secret Server (originally from Thycotic, now from Delinea since the 2021 Thycotic merger with Centrify) is an enterprise password management application, which is available with either a cloud-based or on-premise deployment which emphasizes fast deployment, scalability, and simplicity.
As long as all Cloudflare products and services rely on anycast technology, in a complex approach Cloudflare is faster and more relevant for cloud applications. The balance between security and performance is fully established. Also, Cloudflare has quite a good stack for API …
Cloudflare Gateway does not require local resources and hardware to implement, is very simple and efficient, easy to use, and has clear analytics. It is backed by a very fast DNS resolver in the market.
There were not very many solutions that provided the entire package of taking an account from creation and deactivating it when no longer needed, as well as providing the discovery of unknown service accounts. Other solutions like RoboForm and LastPass did not offer the …
We tried using 1Password, and they have a great mobile app, but they weren't able to do the password rotation on our devices. Secret Server was basically our top option after reviewing.
KeePass is fine for individual use, but it does not meet the same objectives. There are a lot of products like KeePass that are just not as portable or robust, and do not have the kind of granularity Secret Server has. Being able to assign password permissions based on user …
I've only used simple phone apps for this before. This is the only enterprise-grade solution I've used in this space. Given THOSE options, Secret Server is a fantastic solution. I still feel like there is a better interface out there somewhere.
Besides KeePass, I have used the built-in browser password vaults, like the one for Chrome. These however are not very secure as security can be bypassed. KeePass is lighter weight and could be considered more secure as it is not a website. You can also create alternate modes …
We explored Jum Cloud and ManageEngine. Delinea is comparable in terms of features; however, the implementation of these tools differs. Delinea is a bit more manual than the other two. However, the licensing and overall ROI are better for Delinea, as it provides almost all …
I wanted to securely connect to my servers without getting tracked by malicious attackers, even though I was on public Wi-Fi. Security was my top priority, and I also wanted a setup that was easy and quick to start and provided great network performance. Cloudflare's Zero trust matches my criteria for becoming my first choice.
Great for managing access to secrets and servers and is more secure than storing passwords in a browser. The browser plugin to autofill passwords works well. Being able to schedule access ahead of time is a big plus for me as I can be forgetful. If you want a lightweight password vault, however, it may not be the best choice.
Cloudflare picks the nearest device location to route the traffic, but It would be great if we could select any particular location.
Cloudflare enables monitoring for all the connected clients; it would be great if we could monitor any individual client device while keeping some client devices private.
Sometimes, its DNS is not able to resolve a few project websites; we have to manually purge the cache and even disable the Security to get the work done. So, it would be better if we could manually provide a DNS list or whitelist some websites.
The sharing functionality NEEDS improvement. We share most passwords at a group level, but then it becomes impossible to share them with a dynamic group and one or two one-off people as well. This is a major shortcoming.
I don't love the interface. I feel like there is an attempt at a dashboard, but it is really not effective.
I've heard, but never seen, that the software can actually change passwords in the target systems. If this is part of its deliverable, I do not know how to use it, and I don't know how you would do that. Seems like a great feature for password management.
Within a few hours, new engineers are trained in basic tasks and are quite happy they are able to resolve issues independently. After SSO is configured, onboarding is as simple as signing into m365 via a web browser popup.
My rating is purely based on the configurational activities, as feature-wise delineation has all the features that are very beneficial for customers, though the implementation is a bit more manual work, which can be reduced with a low-code platform. Along with that, we can have a better UI to have intuitiveness and can manage the platform for shared customers in a better way. Overall, it is a very good tool for PAM.
As long as all Cloudflare products and services rely on anycast technology, in a complex approach Cloudflare is faster and more relevant for cloud applications. The balance between security and performance is fully established. Also, Cloudflare has quite a good stack for API connection protection, like the API Shield example, which makes it more effective compared to F5 for example. Warp as a ZTNA agent gives better visibility and device posture information than FortiClient does.
We explored Jum Cloud and ManageEngine. Delinea is comparable in terms of features; however, the implementation of these tools differs. Delinea is a bit more manual than the other two. However, the licensing and overall ROI are better for Delinea, as it provides almost all market-ready solutions and has a robust licensing mechanism, resulting in a better ROI.
The best return on investment is that all of our passwords are now up to date and usable by everyone in the department. The old way could only be accessed by one person at a time, and it was frequently wrong.
We save a lot of time in IT by having the passwords easily accessible. We also meet our security audit objectives by using this app instead of, say, an Excel spreadsheet or an old application that is no longer supported, as was the case at a previous workplace.
With the size of our department, we don't have enough passwords to go beyond the free version. It's fully functional, but it costs nothing (except some resources on a VM). ROI on free can't be beat.