Add to Chrome
Add to Edge
Add to Firefox
Add to Opera
Add to Brave
Add to SafariWhen comparing CloudFlare Red October vs Thycotic Secret Server, the Slant community recommends CloudFlare Red October for most people. In the question“What are the best shared secret managers?” CloudFlare Red October is ranked 4th while Thycotic Secret Server is ranked 12th. The most important reason people chose CloudFlare Red October is:
Red October is fully open source, from the encryption library to the UI modules. Everyone can inspect the code hosted on GitHub or fork it and implement it to suit their needs if they have to.
Question Ranking
Pros
Pro Fully open source
Red October is fully open source, from the encryption library to the UI modules. Everyone can inspect the code hosted on GitHub or fork it and implement it to suit their needs if they have to.
Pro Uses the "two-man rule" for extra security
Red October was built to add an extra layer of security inside organizations. The "two-man rule" that Red October employs means that data can only be decrypted if two or more users provide the necessary keys.
Pro Free Version Available
NB: Free edition does not have all features. See comparison chart: https://thycotic.com/products/secret-server/features/
Pro Geo-Replication
Pro Clustering (HA)
Pro Unlimited Admin / Break Glass
Pro Custom Ticket System Integration
Pro SSH Dependencies
Pro SQL Dependencies
Pro PowerShell Dependencies
Pro PowerShell Password Changing
Pro Application API
Pro Web Services API
Pro SSH Key Management
Pro Unix SUPM
Pro Keystroke Logging
Pro Session Monitoring
Pro Session Recording
Pro Proxying RDP & SSH
Pro HSM Integration
Pro SAP Integration
Pro IBM z/OS Integration
Pro SIEM Integration
Pro SAML Integration
Pro CRM Integration
Pro Vulnerability Scanning Integration
Pro Workflow: Native Ticket System Integration
Pro Workflow: Checkout (OTP)
Pro Workflow: DoubleLock
Pro Workflow: Request Access
Pro Workflow: Require Comment
Pro FIPS Compliance
Pro Custom Reports
Pro Scheduled Reports
Pro Event Subscriptions
Pro Dual Control
Pro Discover and Manage Service Accounts
Pro Discovery Rules
Pro Discover Local Accounts
Pro Automated Distributed Engine
Pro Automated Secret Policy
Pro Automated Heartbeat
Pro Automated Changing of Network Passwords
Pro IP Address Restrictions
Pro Automatic Backups
Pro Email Notifications
Pro Auditing & Reports
Pro Password “Hiding”
Pro Smartphones and Devices
Pro Import / Export
Pro Web Password Filler
Pro RDP/PuTTY Support
Pro Active Directory Integration
Pro File Attachments
Pro Folders & Permissions
Pro Role Based Access Control
Pro Two Factor Authentication
Pro AES 256 Encryption
Uses a recognised secure encryption protocol.
Cons
Con Uses its own crypto library
Red October uses its own crypto implementation in to encrypt secrets. While it's not necessarily a security risk, it would be safer to use a crypto library that has proven it's worth and that has been used for a long time in a lot of projects.
Con Prices are not published
To gain a quote, you need to contact Thycotic Sales; prices are not published openly on their site.
You can obtain a quote via: https://thycotic.com/products/request-a-quote/
Con More advanced features incur a cost
See https://thycotic.com/products/secret-server/features/ for comparison of editions.
