Professional Documents
Culture Documents
Competitive Analysis (IBM Secret Server Vs WALLIX)
Competitive Analysis (IBM Secret Server Vs WALLIX)
Passphrase Encryption WALLIX has inbuilt passphrase key encryption which protects the No such protection inbuilt
VM to be copied and used for illegimate access
Protection for Target servers WALLIX stores a x509 certificate when it interacts with any target No Such protection
device for the first time and ensures verification of this certificate
every time user wishes to connect to target devices. This is useful
in case if some malware tries to modify identity of the servers ,
BASTION will identify and block access
TCO Very low, High,
can be deployed with 4GB RAM & 2 core processor at minimum Comparatively requires more resources & TCO is higher
with just 1 server
High Availability Solution has inbuilt ACTIVE-ACTIVE high availability with inbuilt Needs additional expensive SQL enterprise license for
hardening of the PAM appliance ACTIVE-ACTIVE High availability
Agentless Secured VPN-less Present with WALLIX ACCESS MANAGER, with no separate Present, however opens servers in different windows
HTML5 remote access gateway license included in the license cost. Opens servers in tabs separately
for external access(vendor access
over the inetrner)
Comprehensive Analysis
Differentiators Wallix IBM PAM
User account lock on violation of Yes, user ill be locked and session will be terminated as well Not present, IBM PAM is limited to simply terminating
PAM policies like critical the session
command execution etc
Risk analysis based on user Wallix marks risky sessions as red and normal sessions as green Not available
activity on audit screen
Agentless Access to targets Present in true sense Not available, it also needs an installation of agent \ app
purely based on native RDP & on end user machine
SSH putty
Web App Integration Well integrated, Seamless, Easy process \ approach to onboard Fairly complicated in terms of onboarding web
web-based applications using New App Driver approach where applications. Each web app requires different
in same config works for numerous web applications configurations to be done