Go Beyond Legacy PAM.
Think Zero Trust Privilege. Think Centrify.
Those who run the world, run Centrify Zero Trust Privilege. Trusted by over half of the Fortune 100, the world’s largest financial institutions, intelligence agencies, and critical infrastructure companies, Centrify offers the most complete Privileged Access Security solution in the market.
See how Centrify compares when it comes to securing access to infrastructure, DevOps, cloud, containers, Big Data and other modern enterprise use cases.
More Complete. More Value. More of Everything.
| Privileged Identity and Access Management | Centrify | CyberArk | BeyondTrust | Thycotic |
|---|---|---|---|---|
|
Bring your own directory; brokered authentication to AD, LDAP, Cloud, and federated enterprise directories |
 |
 |
 |
 |
|
Support the most demanding Active Directory authentication models including hybrid cloud |
|
|
|
|
| No enterprise directory replication or sync required, that introduces additional silos |
|
|
|
|
|
Centrally manage the full lifecycle of local *NIX users and groups |
|
|
|
|
| PRIVILEGED ACCOUNT AND SESSION MANAGEMENT | ||||
|
On-premises and true multi-tenant SaaS vault deployment options (no “cloud-washing”) |
|
|
|
 |
|
Secure brokered access to hybrid resources for external users without VPN risks |
|
|
|
|
|
Single solution for cross-platform auditing, session recording, and advanced monitoring |
|
|
|
|
|
Proxy-based session recording with option of host-based that can’t be bypassed |
|
|
|
|
| PRIVILEGE ELEVATION AND DELEGATION MANAGEMENT | ||||
|
Centrally-managed privilege elevation across hundreds of OS variant |
|
|
|
|
|
Hierarchical Zones model (patented) for scalable and efficient user, computer, and role management |
|
|
|
|
|
Centrally-managed per-host session recording, auditing and monitoring |
|
|
|
|
| UNIVERSAL CAPABILITIES | ||||
|
Broadest and strongest adaptive MFA options – built-in and 3rd-party to NIST AAL3 |
|
|
|
|
|
Risk assessment and conditional MFA based on rules or behavioral models |
|
|
|
|
|
Request/approval workflow for password checkout, remote access, and temporary roles built-in or via ITSM vendor |
|
|
|
|
|
Common code PASM & PEDM to control privileged access using shared or individual accounts |
|
|
|
|