Sonrai Security Reviews & Product Details

I discovered Sonrai Security at AWS re:inforce 2024, and within 15 minutes, I had a full POC set up in AWS and running—nothing fancy, just smooth and effective. From day one, it’s filled a critical gap in our access protections.

Here’s what sticks out:

Effortless Least Privilege via Cloud Permissions Firewall: One click and it quarantines zombie roles, disables unused services and regions, and tightens permissions across the entire cloud estate—without breaking anything.

Third-party Tracking and Management: In a single screen, I can track every ISV with access to my cloud, understand if their roles use best practice protections, and disable them with a single click for later cleanup. Better is that I can prevent unapproved new access by setting the default action to block.

Super-simple Permissions-on-Demand — When someone needs access, it’s a seamless ChatOps workflow that grants just what is required, only when it’s needed. No more standing permissions, no Jira tickets for role increase, and a simple audit trail of yes/no approvals with time constraints sent easily directly to the people who need to approve.

Just-in-Time (JIT) Access with AI-powered summaries: This is the next level. Pulling temporary elevated access only when needed, policy-enforced, and fully auditable. With integration into Amazon Bedrock, each privileged session generates a concise, human-readable summary. For businesses in regulated industries, it's the perfect auditing solution for user access.

Genuine usability and visibility: G2 users say it best: “Sonrai gave us unparalleled visibility and control over identity governance and cloud permissions,” and “the solution is very easy to use and implementation was also quick.”

In short, what I appreciate most is how Sonrai simplifies complex security challenges (and how I never have to write another SCP!). It’s powerful and intelligent, but never heavy. It just works. Review collected by and hosted on G2.com.

Nothing. Not only is Sonrai a fantastic product that plugs a unique gap, but the team is incredibly dedicated and responsive to their customers. They take our feedback, and the next thing we know, they deliver those features. Review collected by and hosted on G2.com.

Sonrai delivered an exceptionally seamless experience for implementing just-in-time access governance across our cloud infrastructure. The deployment process was remarkably straightforward—operational within minutes—with effortless Slack integration that enabled real-time access orchestration. The platform's elegant architecture combines performance with intuitive design, while the automated approval mechanisms function with impressive precision and reliability. Review collected by and hosted on G2.com.

My sole recommendation centers on enhancing transparency regarding automated approval workflows, particularly in scenarios involving shared role assignments among multiple users. This represents a minor consideration, and the support team demonstrated exceptional responsiveness in providing comprehensive guidance. Review collected by and hosted on G2.com.

Sonrai's Cloud Permissions Firewall is purpose-built for cloud environments, avoiding the limitations of legacy access management solutions retrofitted for cloud use. It delivers low-latency performance with minimal deployment overhead and enables rapid, just-in-time provisioning for high-sensitivity roles. Review collected by and hosted on G2.com.

The only challenge we encountered was aligning initial permission set mappings within AWS Identity Center. Fortunately, the support team was highly responsive and quickly provided clear guidance to resolve the issue. Review collected by and hosted on G2.com.

Sonrai’s Cloud Permissions Firewall delivered the speed and simplicity we were looking for—along with real, immediate results. Deployment was quick, and within minutes, we saw it in action, automatically cleaning up thousands of unused privileges across our AWS environment. The interface is user-friendly, the controls are powerful, and it’s easy to navigate and master. We especially appreciate how fast it was to get started and how it simplifies securing our environment without requiring manual effort. It’s the first PAM solution we've encountered that truly matches the speed and agility that cloud teams demand. Review collected by and hosted on G2.com.

There were a couple of minor display bugs during early testing, though the Sonrai team responded with speed and delivered fixes. They’ve been transparent and proactive in regard to resolving any edge cases. Review collected by and hosted on G2.com.

The overall workflow was amazing start to finish when it was protecting services and identities, it made sense what/how/when things were happening.

The Setup was clear and well thought out, can deploy a top to bottom protection in a few hours.

The Customer Service was always top notch and would quickly evaluate the issue with a zoom call within a quick SLA. Review collected by and hosted on G2.com.

The UI was a bit tricky to navigate, when mass updating settings, it would reset or clear filters and reload the screen constantly. Future versions or deployments can easy fix that issue.

Deploying changes took a long time, would have to iterate the whole stack versus the one item you were updating, but I believe that was already on a release branch. Review collected by and hosted on G2.com.

Sonrai's analytics, policies, and quarantine workflows let us lock down excessive permissions in a controlled, risk-aware way. It’s different from our other visibility tools, it’s enforcement. The ability to target unused or risky privileges and act instantly is a huge leap forward for cloud IAM. Review collected by and hosted on G2.com.

There’s a learning curve if you want to go deep on advanced configuration, but the Sonrai team supports you well through onboarding. Review collected by and hosted on G2.com.

Sonrai Security gave us unparalleled visibility and control over identity governance and cloud permissions. Review collected by and hosted on G2.com.

Sonrai's platform provides deep insights into identity access paths, risky entitlements, and over-permissioned accounts across multi-cloud environments. The user interface is clean and easy to navigate, making complex security data more actionable. The Cloud Permissions Firewall is particularly impressive — it helps enforce least privilege policies with minimal friction. Review collected by and hosted on G2.com.

Sonrai saved us months in manual effort to get to least privilege with Chatops permissions firewall enabler and automated SCP management which had been a painpoint for years. Review collected by and hosted on G2.com.

If we ever get off of it, we will have to do all of the work manually. Review collected by and hosted on G2.com.

Its ability to simplify cloud security by focusing on identity and data governance. It helps uncover over-permissioned accounts, data risks, and misconfigurations across AWS, Azure, and GCP. The solution is very easy to use and implementaion was also quick.The customer services support are really good. Review collected by and hosted on G2.com.

Integration are quite confusing as there is no visibility for third party solution. Review collected by and hosted on G2.com.

It provides end to end visibility into cloud which I like it also inculde data and identities. Review collected by and hosted on G2.com.

I dislike the fact that it offers limited options for dashboard customization. While complex scans and running advance queries its performance gets drop. Review collected by and hosted on G2.com.