The vendor presents AWS Control Tower as the easiest way to set up and govern a new, secure multi-account AWS environment. With AWS Control Tower, builders can provision new AWS accounts in a few clicks, while knowing new accounts conform to company-wide policies.
N/A
Cisco Secure Access by Duo
Score 9.1 out of 10
N/A
Cisco Secure Access, by Duo is a two-factor authentication system (2FA), acquired by Cisco in October 2018. It provides single sign-on (SSO) and endpoint visibility, as well as access controls and policy controlled adaptive authentication.
We were wanting to prove the concept of a low touch process for quickly spinning up boilerplate AWS environments. We were able to get started quickly and to ensure that the AWS Well-Architected Framework principles were followed - at least upfront - however, we found that for our use case and expertise level it ultimately wasn't a fit. We have the skills on our team to manage more of this on our own. My recommendation would be contingent on what skills are already available on your team: if you can "do it yourself" you might as well so that you don't pay for resources you don't need and you have finer grain control over what's created.
Any business seeking to secure access to their corporate resources by adding that additional authentication layer. It's essential now - phishing scams are rampant and are generally unstoppable. Remote work is the norm and, whether it's hybrid or fully remote, it needs to be controlled. Cisco Secure Access by Duo is a simple, lightweight, and highly effective method of achieving what is quickly becoming "table-stakes" in the cyber security realm.
If you need to integrate some legacy applications to Cisco Secure Access by Duo, it's not easy.
If you want to have more detailed information and reports, you need to pay more for the licensing. The basic option is not enough.
A constraint could be that each employee has to install it on their personal smartphone, which some don't like. But, there is an alternative using SMS, although sometimes it takes too long to receive the message.
There are a lot of competing solutions on the market; however, Duo "just works", and there is little to no learning curve for the new members to be acclimated to it. As long as that continues I see it as the preferred option moving forward
I believe this is one of the most popular methods of authentication and it works for us. I haven’t had any issues since I set up my account and I have been able to use it even abroad during business trips. Overall a great experience and I would recommend it to someone looking to protect clients' sensitive data
In the last 5+ years we've been using Duo, there may have been 1 outage that impacted us. We do receive periodic notifications of issues but, for the most part, they impact carriers or functionality that we either don't use, or do not care about.
Most of my support has come from the pre-sales side, as I haven't done much with post-sales support. The engineer was helpful, though it would have been even better if he had more production experience. Hopefully the backing by Cisco will give Duo support the deep bench that one would expect out of Cisco.
Implementation was straight forward and you can isolate different scenarios in order to test new application setup or add to an existing setup. Gui interface is pretty easy to understand and follow. I had no experience with Duo and still manage to easily set up new policies and rules.
Using AWS Systems Manager and other slightly lower level components has been helpful for us to manage parts of our AWS presence at a more granular level than AWS Control Tower was designed for. It's not at all an apples-to-apples comparison as they solve different use cases, but for us, the use case associated with AWS Systems Manager was a better fit for our specific needs and skillsets. We did not need everything that AWS Control Tower was doing for us.
I think that Duo is better than SecureAuth because the interface is better. I like the usability better and I like the design and functionality better. I wasn't involved in the selection process and initially didn't want to make the switch because I had heard some complaints about Duo but now that I have used it for a couple of years I would definitely say it is better than what I was using.
