Quest Acquires e-DMZ: Get Ready For Consolidation In The PIM Space

Quest is making aggressive moves to extend into the heterogeneous, non-Microsoft-centric land of identity and access management. After acquiring Voelcker Informatik for provisioning, Quest just announced the acquisition of e-DMZ, an enterprise-class, high-performance PIM appliance vendor. Novell (now Attachmate) acquired host access control specialist Fortefi, Oracle bought Passlogix (vGO-SAM), CA extended Access Control, and IBM integrated Encentuate's eSSO solution with ITIM as a service offering to manage privileged access. The remaining major PIM players like Cyber-Ark, Lieberman, and BeyondTrust will now face added client RFP scrutiny and price pressures from the competition. Forrester expects that new IAM entrants like Symantec/VeriSign,  NetIQ (to compete with arch-rival Quest), or MSSPs will look at acquiring the remaining above vendors.


I have been looking at this space for a while now...

since we were evaluating products. You missed my new favorite product - Secret Server by a smaller company - Thycotic. I think they are positioned well to dominate in the PIM space in the next few years.

I too have looked at

I too have looked at Thycotic. While they may work well enough for small businesses that have these needs, they certainly do not scale nor have the vision of the other players.

Andres comments

Quest bought eDMZ for a steal because they want to get into a space they have not been able to break into. Quest was years behind on anything they tried and their purchase of eDMZ does not make it much better though it does give them a very limited platform from which to manage some passwords at a small scale. While Quest is likely realize this and then try rebranding eDMZ to be under their own brand name eventually, they will have much to make up for in terms of lack of technological ability. CyberArk was another company that overpromises and comes close to under delivering. In the couple of companies I have worked with over the last five years, absolutely everything is professional services, and required so much manual effort to get to the point of a few thousand passwords being stored, let alone managed, the projects years later (my and co-workers experiences) are still attempting to get to the first major milestone of managing even local administrator passwords. They work well if all you want to do is store passwords in a glorified and encrypted version of SharePoint. But that is what they were with the IBV and they haven't gotten much farther in the last 10 years. The worst part to me was when they said they had no foreign interests but a quick search revealed plenty of their own documents talking about the dev and support and VC money coming from Isreal. BeyondTrust I understand is powerful in the privileged user management space but beyond weak in the password management space by comparison of even CyberArk. The only application I have had great success with was Lieberman Software's product, Enterprise Random Password Manager. I brought 18,000 systems under management - not just storing passwords but managing them - in under 2 weeks. This included Windows, VMware ESX, AS400, Dell DRAC and a few other odd platforms. All I have to say is thanks for the awesome support. I like passing my audits.