TrustRadius Insights
Easy to use: Reviewers have consistently praised Secret Server for its user-friendly interface and intuitive navigation. Many users have …
Delinea Secret ServerFormerly Thycotic Secret Server
Overview
What is Delinea Secret Server?
Secret Server (originally from Thycotic, now from Delinea since the 2021 Thycotic merger with Centrify) is an enterprise password management application, which is available with either a cloud-based or on-premise deployment which emphasizes fast deployment, scalability, and simplicity.
Recent Reviews
Product Demos
Secret Server's Vaulting Capabilities | Product Demo
YouTube
Secret Server Demo
YouTube
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is Delinea Secret Server?
Secret Server is a Privileged Account Management (PAM) solution available both on premise and in the cloud. It empowers security and IT ops teams to secure and manage all types of privileged accounts.
The software gives security and IT ops teams the agility to secure and manage all types of privileges, protecting administrator, service, application, and root accounts from cyber attack. Store privileged credentials in an encrypted, centralized vault.
The vendor states that unlike traditional, complex PAM solutions, Secret Server works the way users work, starting with a rapid deployment and giving users direct control to customize as they grow.
Secret Server aims to enable organizations to:
Improve Security Posture: Protecting privileged accounts helps businesses tighten their attack surface and build resilience against other causes of disruption
Minimize Complexity & Maintain Productivity - Secret Server is presented as fast to deploy and easy to use, unburdening IT teams.
Experience Enterprise-Class Performance - According to the vendor, Delinea secures privileged accounts for more than 10,000 organizations worldwide, including Fortune 500 enterprises and is deployed on the largest networks in the world.
Delinea Secret Server Features
- Supported: Secure Vault and Password Manager with AD Integration
- Supported: Discover Local and Active Directory Privileged Accounts
- Supported: Automatic Password Changing for Network Accounts
- Supported: Enhanced Auditing & Reporting
- Supported: Service Account and Dependency Management
Delinea Secret Server Competitors
Delinea Secret Server Technical Details
| Deployment Types | On-premise, Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Windows |
| Mobile Application | Apple iOS, Android, Windows Phone, Blackberry, Mobile Web |
Frequently Asked Questions
Secret Server (originally from Thycotic, now from Delinea since the 2021 Thycotic merger with Centrify) is an enterprise password management application, which is available with either a cloud-based or on-premise deployment which emphasizes fast deployment, scalability, and simplicity.
BeyondTrust Password Safe, Delinea Server PAM, and CyberArk Privileged Access Management are common alternatives for Delinea Secret Server.
Reviewers rate Support Rating highest, with a score of 6.
The most common users of Delinea Secret Server are from Mid-sized Companies (51-1,000 employees).
Comparisons
Compare with
Reviews and Ratings
(37)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Recommendations
Based on user reviews, here are the common recommendations for the software:
-
Try the free version or free trial to test if it meets your needs.
-
Evaluate the software in your own environment before making a decision.
-
Consider using alternative browsers like Chrome instead of Firefox for better performance.
-
Report any bugs experienced to help improve the software.
These recommendations offer valuable insights for potential users to consider when evaluating the software's suitability for their organization.
Attribute Ratings
Reviews
(1-4 of 4)Companies can't remove reviews or game the system. Here's why
February 25, 2022
Enterprise level access management.
We use it to store secrets (passwords) for websites and applications. Secrets for production access can also be checked out in approved time windows, meaning you can schedule the access ahead of time. This is a great way to manage and approve this type of privileged access. Secrets can be individual or shared within a team.
- Store and access secrets (passwords) securely.
- Manage access to secrets and servers.
- Autofill secrets via browser plugin.
- Personally I would prefer an app instead of a website.
- Can be too many options. Sometimes I just want to add a secret quickly.
- Can be slow to adopt until you get used to how it works.
- Secure secret (password) vault.
- Management of access to servers.
- Autofill secrets on websites.
- Scheduled access in advance reduces last-minute calls/emails.
- Less reliance on browser password storage which is not secure.
- Adoption can be slow.
Besides KeePass, I have used the built-in browser password vaults, like the one for Chrome. These however are not very secure as security can be bypassed. KeePass is lighter weight and could be considered more secure as it is not a website. You can also create alternate modes of access like a picture as your master password.
We currently use Secret Server within the IT department only. It keeps track of all of our shared passwords— systems, websites, support sites—in one centrally located, secure place. The department used to use a shared desktop application that was hard to keep up to date, and frequently resulted in passwords being recorded elsewhere unofficially, and as less secure.
- Password Management: Its entire purpose, really. Secret Server stores passwords in an incredibly easy to use way. They can be organized in groups, they contain all the information about the site or system the password is used for (including URLs for websites), and even a notes field. You can set up specific policies for expirations and complexity, and Secret Server can even generate strong passwords for you. Using a password is simple, too, since you can just click a button to add it to your clipboard; you don't even have to unmask the password.
- Security: The passwords are stored encrypted in a SQL database, and the application requires an authenticated login. This could be local, but we tie it into Active Directory. Each folder of passwords has groups assigned (in our case, again, AD, but you can make them local groups) with different permission levels, so we can compartmentalize passwords. Desktop technicians don't have access to network switch passwords, etc.
- Easy Setup: It took me about an hour to get the server running, from spinning up the VM to importing our old password list. It took a little longer to organize the passwords into proper folders, and then assigning groups, but it was easy to do.
- Personal Passwords: Each user also gets a personal folder, where they can keep their own, unshared passwords. This is nice for sites or systems with individualized logins (e.g., a firewall, VPN, etc.)
- Favorites: Secret Server lets you tag passwords as "favorites" so you can easily find ones you use constantly. The search feature is nice, but this is nicer.
- Granularity in Security Groups: Groups can be assigned per folder, and different groups can have different permissions, but sometimes there are groups of passwords where only some of them should be visible to some users, and there's no good way to organize that. The best way right now is subfolders, which works, but it can clunky if you have a lot of cases like that.
- Direct URL Logins: Secret Server has a feature where, if it works, lets you click the resource link in the list, which should take you to the site directly and log you in. However, in the years I've used this, it has never worked. I always get a weird application redirection error.
- Default Policies: Some of the default expiration/complexity policies are annoying. I recognize that they are trying to meet best practices, but in many cases this is impractical. I end up having to turn off the default policy altogether and do this manually or with my own policy that I can apply later.
- The best return on investment is that all of our passwords are now up to date and usable by everyone in the department. The old way could only be accessed by one person at a time, and it was frequently wrong.
- We save a lot of time in IT by having the passwords easily accessible. We also meet our security audit objectives by using this app instead of, say, an Excel spreadsheet or an old application that is no longer supported, as was the case at a previous workplace.
- With the size of our department, we don't have enough passwords to go beyond the free version. It's fully functional, but it costs nothing (except some resources on a VM). ROI on free can't be beat.
KeePass is fine for individual use, but it does not meet the same objectives. There are a lot of products like KeePass that are just not as portable or robust, and do not have the kind of granularity Secret Server has. Being able to assign password permissions based on user roles is huge, especially from a security standpoint.
January 04, 2019
Enterprise grade password solution... with a few shortcomings.
We use Secret Server enterprise-wide as the source for all password administration. It generally (but not always) generates our passwords, so as to maintain password complexity. We use it to securely share passwords between administrators and users. On a personal level, I use it for my personal passwords as well. It keeps them secure, albeit on our corporate hardware.
- Recommends complex passwords.
- Interfaces with our Identity Management software to already know users. No extra passwords needed.
- Ability to track additional information such as system, resource and even notes on a password.
- The sharing functionality NEEDS improvement. We share most passwords at a group level, but then it becomes impossible to share them with a dynamic group and one or two one-off people as well. This is a major shortcoming.
- I don't love the interface. I feel like there is an attempt at a dashboard, but it is really not effective.
- I've heard, but never seen, that the software can actually change passwords in the target systems. If this is part of its deliverable, I do not know how to use it, and I don't know how you would do that. Seems like a great feature for password management.
- Helps share passwords securely. One cannot put a monetary value on security these days since the cost of a breach can be catastrophic.
- Helps ensure password complexity. It forces us to maintain complex passwords and even randomly generates them for us.
- I feel that a person who changes roles often could still have access to many passwords that have been assigned to them manually. The administration of this is time-consuming and very inefficient.
I've only used simple phone apps for this before. This is the only enterprise-grade solution I've used in this space. Given THOSE options, Secret Server is a fantastic solution. I still feel like there is a better interface out there somewhere.
February 19, 2018
Thycotic Secret Server
As a distributor, we are using the SecretServer for our demo environment. We are able to share all our logins to websites or servers. In this way, the whole team can use them and work with the product.
- Quick and easy installation.
- All features for PAM in one product.
- Modern and intuitive UI.
- Functions can be extended by license.
- You have to work with it regularly to find the right menu, because of the high functionality.
- Admins can work much more faster with the one-click-session-launcher.
- They don´t need to know an admin password.
Heavily to install and you need far more features than a vault.