Try our new research platform with insights from 80,000+ expert users

Cisco Identity Services Engine (ISE) vs Symantec Privileged Access Manager comparison

The compared Cisco and Broadcom solutions aren't in the same category. Cisco is ranked #1 in NAC , with an average rating of 8.3, and holds a 26.3% mindshare in the category. Broadcom is ranked #21 in PAM , with an average rating of 8.0, and holds a 1.5% mindshare. Additionally, 87% of Cisco users are willing to recommend the solution, compared to 85% of Broadcom users who would recommend it.
Cisco Identity Services Eng...
Read 142 Cisco Identity Services Engine (ISE) reviews
  • 15,693 Views
  • 10,251 Comparison Views
87% willing to recommend
Symantec Privileged Access ...
Read 52 Symantec Privileged Access Manager reviews
  • 653 Views
  • 382 Comparison Views
85% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Identity Services Engine (ISE) and Symantec Privileged Access Manager based on real PeerSpot user reviews.

Find out what your peers are saying about Cisco, Hewlett Packard Enterprise, Fortinet and others in Network Access Control (NAC).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Network Access Control (NAC) Report (Updated: March 2025).
Buyer's Guide
Network Access Control (NAC)
March 2025
Download the complete report
Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Identity Services Eng...
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
142
Ranking in other categories
Network Access Control (NAC) (1st), Cisco Security Portfolio (1st)
Symantec Privileged Access ...
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
52
Ranking in other categories
Privileged Access Management (PAM) (21st)
 

Mindshare comparison

Cisco Identity Services Engine (ISE) and Symantec Privileged Access Manager aren’t in the same category and serve different purposes. Cisco Identity Services Engine (ISE) is designed for Network Access Control (NAC) and holds a mindshare of 26.3%, down 31.4% compared to last year.
Symantec Privileged Access Manager, on the other hand, focuses on Privileged Access Management (PAM), holds 1.5% mindshare, down 1.5% since last year.
Network Access Control (NAC)
Privileged Access Management (PAM)
 

Featured Reviews

SunilkumarNaganuri - PeerSpot reviewer
Enhanced device administration hindered by complex deployment and security limitations
Cisco Identity Services Engine (ISE) needs to improve the profiling preauthentication. They are very poor in asset classification and should focus on improving the preauthentication profiling, especially for NAC use cases. This will give them a roadmap for software-defined access (SDA) use cases and network segmentation. Threat detection capabilities are very weak. Additionally, the product is vulnerable and has many bugs.
Read full review
Krishnan Srinivasan - PeerSpot reviewer
Enhances credential management and relatively inexpensive but needs feature improvements
I work for a service provider company, and we implement Symantec Privileged Access Manager solutions for our clients, which include various banking and mining clients We have implemented both the remote access and credential management features. The agent-based credential management solution…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I like that Cisco ISE is easy to use."
"Visitors can be granted access to the wifi network using their cellphones, notebooks or tablets in a very easy way. The ease of accessibility that anyone can have to the network is very quick and is a big improvement in our network."
"I really enjoy the live log section. Sometimes, you will have someone who is having issues connecting to the network, and then you have to ask them the dreaded question of, "Did you type a password wrong?" They will probably tell you, "No," but the live log can help sort that out. It gives us that extra ability to assist the end user and make sure that we are making them happy."
"The most valuable feature is the flexibility of the policy sets."
"The most important feature for us is visibility in terms of user connections. It's the ability to see what devices are online for a particular user that helps a lot with our troubleshooting."
"We have multiple metal devices from different places that use management, so we need to know who would be accessing all those devices and what changes are being done to those metal devices. With Cisco ISE we have visibility of all the changes happening on those devices."
"The posture assessment is a valuable feature because of the ability to do assessments on the clients before they connect to the network."
"The solution is great for establishing trust for every access request no matter where it comes from."
More Cisco Identity Services Engine (ISE) pros
"We can check the activities in the server for fragile files and documents in case of any issues."
"The interface is very friendly, colorful, and bold."
"CA PAM is working well for us."
"Transparent login for users of privileged IDs (Linux, Windows). This prevents sharing of the password because it is never seen."
"The key benefits are we improve our governance. We ensure we can build more trust in the way we run and operate our environment, and most of all is the accountability."
"Symantec PAM is easier to deploy compared to its competitors, such as BeyondTrust."
"We found that the architecture is scalable and very resilient."
"For me, it is the robust API which is the most valuable feature. This allows for low maintenance costs and allows applications to automatically connect. This is great to automate security of the DevOps pipeline for shared secrets across environments. Also, being on Linux and a virtual appliance is great."
More Symantec Privileged Access Manager pros
 

Cons

"There are issues with respect to the posture assessment function. It's been observed that customers are not receiving total access to the network because the assessment agent is glitchy and malfunctions from time-to-time. I would like to see refining of the compliance assessment and adding more detailed compliance of endpoints on the user end."
"Its user interface could be better. It's not bad. They've just redesigned the whole user interface. It's not terribly difficult. The drop-down menus are easy to use. However, when you're looking for some things in the user interface, it takes a minute to find where you were prior."
"It does a good job of establishing trust for every access request. We have had a little bit of a challenge with profiling, but we are probably about 80% there."
"The UI and UX could be more seamless and easier to use."
"I would like to see the product simplified more, especially with the configuration."
"Also, the menus could have been much simpler. There are many redundant things. That's a problem with all Cisco solutions. There are too many menus and redundant things on all of them."
"The interface could be more user-friendly and the ability to apply rules to MAC addresses, for example, if I wanted to allow a certain MAC address access at a particular time I cannot make this adjustment."
"Troubleshooting and multi-ISE can be challenging with the solution."
More Cisco Identity Services Engine (ISE) cons
"Broadcom has neglected product development since acquiring Symantec, and nothing major has been added to PAM."
"Technical support was good when CA handled it. After Broadcom took over, it's not as good."
"They should include some assignments in the test environment to explore the product's features."
"I wish it could create local accounts on desktops."
"The support for other remote assistance tools would be excellent. Free included tools in Windows (Remote Assist) and Microsoft SCCM Configuration Manager (ConMgr Remote Control) allow companies to reduce the amount of RDP connections and expand the usage of the tools are frequently used by companies to provide technical support for remote assistance."
"The response time for support could be faster. Some features should be added: cloud-based, VPN-less, more secure, and it should be adjusted in a hybrid environment."
"They need to do a little bit more on the mainframe side.​"
"We have to do a lot of manual work to automate features."
More Symantec Privileged Access Manager cons
 

Pricing and Cost Advice

"Its price is probably good if you use all of its features and functionalities to protect your environment. If you use only a part of the functionality, its price is too high. It is just a question of value and the functionality you use."
"I am not aware of the current price for Cisco ISE, but considering it is a Cisco product, it is likely to be quite high."
"Its licensing could be improved. It used to be perpetual, but now they are moving away from that."
"Our customers pay for the license of Cisco ISE (Identity Services Engine). They have an annual subscription, rather than a monthly subscription."
"Licensing has got much simpler since Cisco moved to the DNA model because we just have the three tiers, but it could always stand to be improved upon."
"If you consider money only, Cisco ISE is not a cheap solution."
"If you go directly with Cisco for the implementation it's very, very expensive."
"There are other cheaper options available."
More Cisco Identity Services Engine (ISE) pricing and cost advice
"The prices are not low, but one can ask for a discount. It’s not the cheapest PAM solution."
"It is more expensive than other solutions on the market."
"The licensing is simple and scalable."
"It is reasonably priced."
"The version we are using is affordable compared to BeyondTrust, which is maybe three to four times as expensive, but it depends on the features."
"Pricing is fair compared to other top vendors."
"I would prefer better licensing options for the 20-100 users we have at a given time."
"Cost-wise, CA was better compared to others in the market. ​"
More Symantec Privileged Access Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Network Access Control (NAC) solutions are best for your needs.
See recommendations
845,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
26%
Computer Software Company
14%
Financial Services Firm
8%
Government
7%
Computer Software Company
17%
Manufacturing Company
16%
Financial Services Firm
13%
Comms Service Provider
13%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
See all answers
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
See all answers
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
See all answers
What do you like most about Symantec Privileged Access Manager?
We can check the activities in the server for fragile files and documents in case of any issues.
See all answers
What is your experience regarding pricing and costs for Symantec Privileged Access Manager?
Symantec Privileged Access Manager is potentially cheaper than other solutions. I am not involved in the business side, so I do not have specific cost details.
See all answers
What needs improvement with Symantec Privileged Access Manager?
Comparing Symantec Privileged Access Manager with market leaders like CyberArk and Delinea, CyberArk is the market leader. Delinea is better than Symantec Privileged Access Manager in terms of secu...
See all answers
 

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE) Logo
Aruba ClearPass vs Cisco Identity Services Engine (ISE)
Compared 24% of the time
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)
Compared 22% of the time
Forescout Platform vs Cisco Identity Services Engine (ISE) Logo
Forescout Platform vs Cisco Identity Services Engine (ISE)
Compared 11% of the time
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE) Logo
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)
Compared 5% of the time
Fortinet FortiAuthenticator vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiAuthenticator vs Cisco Identity Services Engine (ISE)
Compared 4% of the time
More Cisco Identity Services Engine (ISE) Competitors
CyberArk Privileged Access Manager vs Symantec Privileged Access Manager Logo
CyberArk Privileged Access Manager vs Symantec Privileged Access Manager
Compared 30% of the time
BeyondTrust Endpoint Privilege Management vs Symantec Privileged Access Manager Logo
BeyondTrust Endpoint Privilege Management vs Symantec Privileged Access Manager
Compared 17% of the time
ARCON Privileged Access Management vs Symantec Privileged Access Manager Logo
ARCON Privileged Access Management vs Symantec Privileged Access Manager
Compared 15% of the time
Delinea Secret Server vs Symantec Privileged Access Manager Logo
Delinea Secret Server vs Symantec Privileged Access Manager
Compared 11% of the time
More Symantec Privileged Access Manager Competitors
 

Product Reports

Buyer's Guide
Cisco Identity Services Engine (ISE)
March 2025
Cisco Identity Services Engine (ISE) reportDownload Cisco Identity Services Engine (ISE) product report
Buyer's Guide
Symantec Privileged Access Manager
March 2025
Symantec Privileged Access Manager reportDownload Symantec Privileged Access Manager product report
 

Also Known As

Cisco ISE
CA PAM, Xceedium Xsuite, CA Privileged Access Manager
 

Overview

Cisco Identity Services Engine (ISE) offers comprehensive network access control and visibility, supporting features like 802.1X authentication, profiling, and posturing. It integrates with Microsoft and other Cisco products, facilitating robust security policies across distributed networks.

Cisco Identity Services Engine is a key player in network access control, offering centralized management and a user-friendly interface. It supports zero trust principles and provides strong authentication for wired and wireless networks. ISE's capabilities include granular security policies, enhanced device posturing, and seamless integration, bolstering security infrastructure. Users benefit from its dual authentication through EAP, simplifying access management across networks.

What are the key features of Cisco ISE?
  • 802.1X Authentication: Supports network security for authorized device access.
  • Profiling: Identifies devices for accurate policy enforcement.
  • Posturing: Evaluates device compliance for access decisions.
  • TACACS: Streamlines network device authentication and authorization.
  • Guest Access: Provides secure access to visitors.
  • Microsoft Compatibility: Seamlessly integrates with Microsoft environments.
What benefits and ROI should be considered?
  • Security Enhancement: Offers strong network security policies.
  • Operational Efficiency: Centralized management improves operational aspects.
  • Improved Compliance: Ensures adherence to industry standards.
  • Scalability: Supports growing network demands effectively.

In industries like finance, healthcare, and education, Cisco ISE is pivotal for securing wired and wireless networks, implementing BYOD policies, and managing user access. Organizations leverage ISE for effective authentication and authorization, while maintaining compliance with industry security standards.

Cisco

CA Privileged Access Manager is a simple-to-deploy, automated, proven solution for privileged access management in physical, virtual and cloud environments. It enhances security by protecting sensitive administrative credentials such as root and administrator passwords, controlling privileged user access, proactively enforcing policies and monitoring and recording privileged user activity across all IT resources.  It includes CA PAM Server Control (previously CA Privileged Identity Manager) for fine-grained protection of critical servers

Broadcom
 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
NEOVERA, Telesis, eSoft
Buyer's Guide
Network Access Control (NAC)
March 2025
Download Free Report
Find out what your peers are saying about Cisco, Hewlett Packard Enterprise, Fortinet and others in Network Access Control (NAC). Updated: March 2025.
DOWNLOAD NOW
845,406 professionals have used our research since 2012.

We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.