Sold by: One Identity
Deployed on AWS
Hackers want access to your privileged accounts, which provide unlimited access to your systems and data. In nearly every recent high-profile breach, lapses in security and user practices were exploited by hackers to get their hands on privileged account credentials.
4.2
Overview
One Identity Safeguard for Privileged Passwords automates, controls and secures the process of granting privileged credentials with role-based access management and automated workflows. Deployed on a hardened appliance, Safeguard for Privileged Passwords eliminates concerns about secured access to the solution itself, which helps to speed integration with your systems and simplifies management. Plus, its user-centered design means a small learning curve and the ability to manage passwords from anywhere and with nearly any device. The result is a privileged password management solution that secures your enterprise and enables your privileged users with a new level of freedom and functionality.
Highlights
- Release control - Manages user password requests via a secure web browser connection with support for mobile devices.
- Discovery - Quickly discover any privileged account or system on your network with host, directory and network-discovery options.
- Approval Anywhere - Leveraging One Identity Starling, you can approve or deny any request without being on the VPN.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Win2016 10.0.14393
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
All fees are non-refundable and non-cancellable except as required by law.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Additional details
Usage instructions
Right click Safeguard AWS image. Select "Launch" Select you preferred disk size. For testing 100Gb is fine. For production environments, you will want 1Tb or greater. Choose your preferred network NIC/network etc. review and accept Image will deploy. You can see a progress of the image that is deploying by navigating to the deploying image, "right-click instancesettings -> Get System Log. Instance will deploy and then Safeguard will deploy. This will take several minutes. System log will show the percentage of Safeguard deploy progress. Finished when reaches 100% Compete instructions: https://support.oneidentity.com/technical-documents/one-identity-safeguard-for-privileged-passwords/7.0%20lts/appliance-setup-guide/4#TOPIC-1820747
Resources
Vendor resources
Support
Vendor support
One Identity offers an extensive range of services from online resources, 24x7 and premier support. One Identity support provides solution support to suit any business organization.
https://support.oneidentity.com/essentials/support-offerings
Contact support at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Syteca PAM enables you to manage privileged access across numerous platforms, servers, and endpoints effortlessly. Syteca's thorough privileged user activity controls help reduce the risk of intentional or accidental privilege misuse.
miniOrange's PAM solution ensures robust Privileged Access Management across cloud, on-premises, and hybrid environments. Here’s how it benefits your business: enhances visibility, streamlines deployment, and automated processes, and boosts security, along with risk minimization. It enables companies to securely manage, control, and monitor privileged access anywhere in the digital infrastructure.
LogiZone by Logicata provides a pre-configured and managed AWS Landing Zone, ensuring a secure and compliant foundation for your AWS environment. It automates the deployment of a multi-account AWS Organization with robust security controls and centralised management. LogiZone simplifies AWS adoption and governance, allowing you to focus on innovation.
Next Level3's Just-In-Time (JIT) Access is a top MultiFactor Authentication (MFA) solution, providing superior AWS environment protection against unauthorized access and breaches. Seamlessly integrating with AWS Cognito and IAM, it delivers advanced Identity Verification and robust MFA, surpassing traditional IAM systems.
Our solution addresses key use cases: securing dormant accounts, managing employee transitions, protecting endpoints, legacy, and IoT devices, and offering robust security for cloud-hosted systems and custom applications.
With white-label MFA capabilities, Next Level3's JIT Access integrates with your brand. As a secure, reliable, and versatile IAM solution countering a wide range of cyber threats, choose Next Level3's JIT Access for unmatched AWS security and superior MFA and Identity Verification solutions.
Customer reviews
Vishal Koovaparambil
Centralized privileged access has improved security, compliance, and session oversight
Reviewed on Jun 05, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for One Identity Safeguard is as our centralized privileged access management, which is the PAM system, to safely store administrative passwords and also restrict temporary access and record high-risk sessions.
Whenever our third-party vendor or any internal team engineer needs temporary administrative access to fix any kind of database or One Identity Safeguard issues, a timed credential that automatically expires is issued. The entire troubleshooting session is recorded for security.
What is most valuable?
The best features One Identity Safeguard offers include secure credential vaulting, live session recording and playback, and just-in-time access workflows that prevent engineers from having permanent admin rights.
I find myself relying most on the live session recording feature. Being able to look up a specific command used during an administrative session and jump directly to that video timestamp makes finding security or operational mistakes very quickly, which is valuable for us.
One Identity Safeguard has positively impacted our organization in many ways by providing privileged access security and improving compliance. The overall access management, the better visibility we are getting into user accounts, and the better compliance controls are helping us in many ways.
What needs improvement?
I think the initial setup of One Identity Safeguard could be more simplified, and the dashboard customization could also be improved. Apart from this, the feature sets and the efficiency of the solution are very outstanding.
For how long have I used the solution?
I have been using One Identity Safeguard for more than three years.
What do I think about the stability of the solution?
One Identity Safeguard is stable.
What do I think about the scalability of the solution?
The scalability of One Identity Safeguard is excellent.
How are customer service and support?
Customer support is very helpful in nature, and they provide good support to us in troubleshooting complex issues.
I rate the customer support nine out of ten.
Which solution did I use previously and why did I switch?
We have not switched from a different solution; we have been using One Identity Safeguard since the start.
How was the initial setup?
The deployment of One Identity Safeguard took three to seven weeks.
What about the implementation team?
The deployment of the solution did not affect my privileged users disruptively. It was straightforward because we have not faced any kind of challenge, and it had minimal impact. We just required a brief adjustment period for our team, but overall it was not disruptive. The biggest breakthrough was that it saved our time, and the deployment was very smooth, with the vendor team helping us significantly.
What was our ROI?
We have seen a great return on investment with One Identity Safeguard due to its automation and AI capabilities.
What's my experience with pricing, setup cost, and licensing?
For the end-user training, we provided just a few hours of training, and they started using the solution without needing much training. For the solution management, we provided three to four weeks of training properly so they could manage it easily. Now we are able to handle it smoothly.
Which other solutions did I evaluate?
We have not evaluated other options before choosing One Identity Safeguard.
What other advice do I have?
I would advise anyone looking for or considering One Identity Safeguard to carefully map out your asset hierarchy and account discovery rule before doing the main rollout. Spend time grouping your servers and target databases logically on paper first, and after that, you can go for the deployment.
We have integrated One Identity Safeguard directly into our DevOps. Thanks to its API-first design, we hook it up into tools such as HashiCorp Vault , allowing our automated build system to securely pull hardcoded secrets and API keys dynamically during deployment.
The integration with our DevOps tools was very smooth and easy.
The feedback I have had from users regarding the solution's usability and functionality has been very positive.
I would rate this review nine out of ten.
Ronak Sharma
Password security has improved and single-click logins now streamline our remote work
Reviewed on Jun 05, 2026
Review from a verified AWS customer
What is our primary use case?
My main use case for One Identity Safeguard is to safeguard our ID and password during work from a home environment, and we also use it to integrate with third-party applications. Whenever we try to log in to any third-party software, we use One Identity Safeguard , basically securing our ID and password while working from one environment and integrating it with third-party software for one-click logins.
When I use One Identity Safeguard with a third-party application, for example, data compute, I don't have to enter the ID and passwords repeatedly; we just use the one-click feature of One Identity Safeguard to log in. This improves our efficiency and reduces the hassle of entering passwords and IDs every time we want to use that software, thus reducing the time taken for launching the software.
What is most valuable?
In my opinion, the best features that One Identity Safeguard offers include customer support, which is quite good and very quick and responsive. Whenever we face any kind of trouble with One Identity Safeguard and contact support, they are reactive with their responses. Another standout feature is the dashboard, which provides all the necessary information required for analytics and research, making it very useful for our organization.
We look at information such as the number of logins, number of login attempts, failed attempts, and any kind of security breach on the dashboard. It provides all this information on one screen, facilitating easy management of the software and tracking those metrics.
The impact of One Identity Safeguard on our organization has been positive; earlier, we used a much more expensive software than One Identity Safeguard, and now we are saving around 30% on costs that we were previously spending on the same software from a different vendor.
Besides cost savings, we have noticed significant improvements in efficiency and security since switching to One Identity Safeguard. The hassle of entering login credentials repeatedly is eliminated, increasing efficiency, while the incidents of password theft or identity theft have decreased, enhancing our security.
What needs improvement?
One Identity Safeguard needs significant improvement; there are minor glitches that we face regularly which need correction. Additionally, the user-friendliness of the software is not very good, requiring considerable training for the end user to become accustomed to it, hence making it necessary to improve the user's experience with more user guides or training resources.
An example of the glitch we experience is when attempting to log in using the one-click feature, which often throws an error stating that the server is not working. This needs to improve, as such small errors are a headache for us, and I believe the team will address these issues in the next updates.
For how long have I used the solution?
I have been using One Identity Safeguard for the last one year.
What do I think about the stability of the solution?
One Identity Safeguard is quite stable, and we have not faced any stability issues.
What do I think about the scalability of the solution?
The scalability of One Identity Safeguard is quite good; it adjusts according to the needs of the organization, whether it is a small company or a large firm.
How are customer service and support?
As I previously mentioned, the customer support for One Identity Safeguard is very good, and it is quick and responsive, which enhances the overall experience.
Which solution did I use previously and why did I switch?
Previously, we used Microsoft login authenticator, and the main reason for switching to One Identity Safeguard was to reduce costs, as we were paying much more before.
How was the initial setup?
The deployment of One Identity Safeguard took around six months.
What about the implementation team?
The deployment did not disrupt our privileged users in any way; it was a smooth transition from the previous solution we were using to One Identity Safeguard, making the experience seamless with no disturbances.
What was our ROI?
Regarding ROI, I would say we are forecasting a 100% ROI in three years; we have already seen considerable returns.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing has been quite good; as I have mentioned, the pricing is around 30% less than what we were previously paying for the same solutions from another vendor. Both pricing and setup costs are economical, while licensing is on an annual basis, depending on the number of users.
Which other solutions did I evaluate?
We did not evaluate any other options before choosing One Identity Safeguard because it was recommended to us by someone we know, and after discussions with the One Identity Safeguard team, we finalized the solution.
What other advice do I have?
On a scale of 1 to 10, I would rate One Identity Safeguard a nine.
I rate it a nine because, while it is a perfect software, as I have mentioned, there are minor glitches and training challenges that hold it back from being a perfect ten. Still, considering all the positives, a nine is a fitting score for the software.
I have not used the AI capabilities of One Identity Safeguard, so I cannot comment on its governance and security.
I have not explored the AI part of One Identity Safeguard either, so I cannot provide any insights on accuracy and reliability of output.
We did not purchase One Identity Safeguard through the AWS Marketplace .
The training required to start using the solution for both those who manage it and for end users was lengthy and necessitated a significant amount of time and effort. This aspect needs to be addressed by the One Identity Safeguard team to enhance user-friendliness and simplify the learning process.
Feedback from users regarding the solution's usability and functionality has been quite positive; the functionality and out-of-the-box features that One Identity Safeguard provides have proven useful for end users.
If you are looking for software to safeguard your passwords and IDs while working from home, along with a cost-efficient solution that offers excellent customer support and great functionality, then One Identity Safeguard is the ideal choice for you.
I rated this product a nine out of ten overall.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Aiman Sayyed
Secure access governance has reduced privileged risks and simplifies audits for critical accounts
Reviewed on Jun 01, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for One Identity Safeguard is to manage privileged identities and provide secure administration access while maintaining control over high-risk accounts.
A specific example of how I use One Identity Safeguard to manage privileged identities and secure access is when a system engineer needs elevated access to any servers. One Identity Safeguard provides controlled access through an approval process with a record of activities for review purposes.
What is most valuable?
One Identity Safeguard offers several valuable features, with privileged access governance being the most valuable. The privileged access, session auditing, secure storage of privileged credentials, access request management, and automated password updates are all useful features of the solution.
I rely most on the privileged access governance on a day-to-day basis because this feature provides complete control over who can access critical systems and under what conditions.
One Identity Safeguard has positively impacted my organization by providing excellent visibility of privileged operations, reducing unauthorized access risk, and reducing manual credential administration. These are the positive outcomes I have experienced from the solution.
What needs improvement?
One Identity Safeguard is a mature and feature-rich PAM solution, but its initial deployment could be improved as it feels complex, especially in large environments with multiple directories. This complexity could be simplified.
For how long have I used the solution?
I have been working in my current field for more than two years.
What do I think about the stability of the solution?
One Identity Safeguard is stable in my experience.
What do I think about the scalability of the solution?
One Identity Safeguard is a scalable solution designed to support growth from small deployments to large enterprise environments with thousands of privileged accounts, users, and managed systems.
How are customer service and support?
The customer support team is impressive because they perform well and continue to support us at any time.
Which solution did I use previously and why did I switch?
We did not switch from a different solution. We only conducted a proof of concept with One Identity Safeguard, and after seeing its powerful features and use cases, we procured the solution and are very happy with it.
How was the initial setup?
We have deployed One Identity Safeguard as a virtual appliance within our virtualized infrastructure because it fits our needs well.
The deployment of the solution took three to seven weeks in our organization.
The deployment for the privileged users was largely smooth with minimal disruption. There was only a short period where administrators had to become familiar with the new access workflows, but overall, the impact was very limited.
What about the implementation team?
Training for the end users was only a few hours, and they are using it very effectively. The IT team managed the solution with a dedicated one-week training session and now they efficiently manage the solution.
What was our ROI?
We have seen a good return on investment because administrative effort has been significantly reduced, and the time required for audit preparation and compliance reporting has decreased. The security team also spends less time investigating privileged access activities, which saves us time and money.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing was very straightforward due to a strong relationship with the vendor sales team. Whenever we encountered any pricing or setup cost issues, they supported us very well.
Which other solutions did I evaluate?
We have not evaluated other options because we found One Identity Safeguard so useful for our needs that we decided to procure it after our evaluation.
What other advice do I have?
The accuracy and reliability of output from One Identity Safeguard are very high as it consistently performs well in managing privileged credentials and provides excellent audit records and session tracking data.
We are receiving a very positive response from the users regarding the usability and functionality of the solution.
My advice to others looking into One Identity Safeguard is to first identify all critical privileged accounts and compliance requirements to have a clear understanding of your privileged access landscape and design accordingly.
I gave this review a rating of nine out of ten.
Mithun Sharma
Privileged access has become tightly controlled and monitoring now strengthens compliance
Reviewed on Jun 01, 2026
Review from a verified AWS customer
What is our primary use case?
One Identity Safeguard provides access to all employees who access the server and network equipment.
How has it helped my organization?
One Identity Safeguard has positively impacted our organization by strengthening privileged access security and improving compliance. Before implementing One Identity Safeguard, privileged credentials were managed manually, increasing security risk and making auditing difficult.
After deployment, all privileged accounts are centralized in a secure vault, password rotation is automated, and access is granted through controlled approval workflows.
What is most valuable?
The best feature of One Identity Safeguard is password vaulting combined with session management, which allows us to provide privileged access without exposing actual credentials to users. Users can access critical servers through approved workflows while all sessions are monitored and recorded for auditing and compliance.
The session management feature of One Identity Safeguard has a significant impact on my daily operations and compliance because it allows us to monitor and record all privileged activities performed on critical systems, reducing risk as administrators can access systems without knowing shared privileged passwords. If an incident occurs, we can replay recorded sessions to identify exactly what actions were performed by whom.
From a compliance perspective, One Identity Safeguard helps meet requirements for standards through session recording and audit logs, allowing us to provide evidence of privileged access approvals, session recordings, and user activity during audits without relying on manual documentation.
For how long have I used the solution?
I have been using One Identity Safeguard for three years.
What do I think about the stability of the solution?
One Identity Safeguard is stable.
What do I think about the scalability of the solution?
One Identity Safeguard's scalability is great.
How are customer service and support?
Thank you for inquiring about customer support.
What other advice do I have?
As an administrator, I use One Identity Safeguard to manage access by onboarding servers and their privileged accounts into the vault, creating an access policy requiring manager approval and MFA. When the DBA submits an access request, One Identity Safeguard routes it to approval. Once approved, the DBA launches the RDP or SSH session directly through One Identity Safeguard, ensuring the password is never exposed to the user while the entire session is recorded for auditing.
One Identity Safeguard can also automatically rotate the password.
After the implementation of One Identity Safeguard, I approve and monitor One Identity Safeguard logs.
One Identity Safeguard makes password manageability easy and helps us monitor and reduce manual tasks such as auditing and improving log visibility, while also providing compliance-based reporting for our upper management.
Satyam Gupta
Centralized privileged access has boosted security, accelerated audits, and improved compliance
Reviewed on May 30, 2026
Review provided by PeerSpot
What is our primary use case?
One Identity Safeguard is used primarily to secure privileged credentials, enforce control over administrative access, and provide visibility into privileged activities.
Whenever a network or server administrator requires access to a production system, access is granted through One Identity Safeguard 's approval workflow and credential vault rather than exposing privileged account passwords directly.
What is most valuable?
One Identity Safeguard offers several best features, including its privileged credential vaulting feature, automated password rotation, and privileged session management, along with session recording and playback.
The feature that I rely on the most is automated password rotation because it reduces the risk associated with static or shared privileged credentials and improves security by automatically changing passwords at defined intervals without manual intervention, helping us to meet compliance.
One Identity Safeguard has positively impacted our organization in many ways because it has improved our organization's privileged access security through centralized credential management, enforcing strong password control, and providing complete visibility into privileged user activities.
Since we have deployed this solution, we have experienced many positive outcomes, such as faster audit preparation by fifty to seventy percent and saving operational time by almost forty to sixty percent. We are also experiencing very good visibility and accountability, enabling quick investigation of privileged user activities.
The artificial intelligence-related governance and security capabilities of One Identity Safeguard are very strong because they operate within a framework of strict access control, with analytics and intelligent insights providing detailed monitoring and session tracking.
One Identity Safeguard is very accurate in its output and very reliable, particularly when identifying unusual privileged access behavior and potential security risks, providing insights based on monitoring user activities and established behavior patterns.
What needs improvement?
One Identity Safeguard is a very strong privileged access management solution, and the only thing that needs to be enhanced is its dashboard customization; apart from this, everything is perfect.
For how long have I used the solution?
I have been using One Identity Safeguard for almost two years.
What do I think about the stability of the solution?
One Identity Safeguard is a stable solution.
What do I think about the scalability of the solution?
One Identity Safeguard is very scalable and handles organizational growth effectively.
How are customer service and support?
The customer support is excellent in technical assistance, and they are ready to provide support at any time.
Which solution did I use previously and why did I switch?
We are using One Identity Safeguard since the beginning and have not switched to another solution.
How was the initial setup?
The deployment of One Identity Safeguard took approximately four to eight weeks, including planning, installation, integration, and fine-tuning.
The deployment effect was largely smooth for privileged users with very minimal disruption to day-to-day operations.
What about the implementation team?
The end-user required very minimum training, typically a few hours or short onboarding sessions to understand the privileged access request and workflows. The implementation was very smooth, and all users are now handling it very properly.
What was our ROI?
We have seen a clear return on investment, with time savings of approximately forty to sixty percent, faster audits by fifty to seventy percent, reduced risks, and increased operational efficiency.
What's my experience with pricing, setup cost, and licensing?
Pricing, setup cost, and licensing are managed by the management team.
Which other solutions did I evaluate?
We have not evaluated other options before choosing One Identity Safeguard.
What other advice do I have?
My advice for any organization considering One Identity Safeguard is to deploy it and start by identifying your most critical privileged accounts and administrative users. Implementing credential vaulting and automating password rotation first will provide very good security benefits.
We are getting very positive feedback from the users, and they are very happy and appreciating One Identity Safeguard. I would rate this review a nine.