Bitium vs. SailPoint Identity Security Cloud vs. WatchGuard AuthPoint

Best suited for companies that use the same services across multiple teams, services that might require support at one point. For us, it is very easy to share access to either the IT support team or to me, as the Salesforce administrator, and we can easily take care of the issue and then log out without any hassle.

I would not strongly recommend it for single users, who don't need to share access to others.

Incentivized

We are happy with the management of the Id, accounts where the user can request any access easily. Also the many connector which Sailpoint is offering in order to onboard lots of applications is quite helpful. The access review module has also have been improve so that large campaigns can we work out easily.

Where we see some improvement is on the UI as here it is not so intuitive for the end user, so that we need to make lots of communications and training so that the user is able to understand how to use it.

For the administration and creation of roles it also would be great to have some improvements here to make it more easily its management.

We use multiple authenticators at my company. We use WatchGuard AuthPoint just for our VPN for security purposes. The app works very well and over the past year we've only had a handful of issues with the authentication service, and these were resolved relatively quickly. We do have to remind people to enable push notifications from the app, or have the app open when they need to use it to authenticate, otherwise they won't get the push to approve. The biggest issue I've found is that people will forget to do this and then say that the VPN isn't working - the VPN is working, it's just that they didn't get/approve the push from AuthPoint in time.

Incentivized

• Sharing access. It's as easy as 1-2-3 with Bitium, no more hassle with sharing the actual password and then changing it, violating company policies, etc.
• Lots of apps supported. In all three years since we are using Bitium, we haven't encountered any app that would not be supported by it.
• Easy to set up strong passwords. Another very easy and intuitive feature: when you are setting up an app, you can ask Bitium to generate an A-level password automatically, that you can therefore use with ease.

Incentivized

• Brings users access, profiles and accounts all into one place
• Manages the Life Cycle Management process across ALL identities, permanent and Temporary
• Secures and manages access to critical applications and resources across the group
• Enables Info. Security to customise, share and delegate authority across the group
• Single version of the truth across our technology platform

Incentivized

• Works well with the free Authpoint client and the OpenVPN clinet.
• Token management is simple and hosted completely in the cloud to reduce overall complexity
• Setup was simple and and staighforward
• Suppports several authentication methods we have used both RADIUS and SAML effectively, but ADFS, IDP, RDWeb, and RESTful API, and other custom apps are supported.
• Geofencing for RDP has been very useful as it is independant of our firewall geofencing. This is quite useful for organizations like us who do not Geofence at at the firewall level so as to provide global access to resources on the DMZ.

Incentivized

• Apps crashing. From time to time, some apps stop working in Bitium and they come back only after a while (1, 2, 8 hrs). We don't have a clear explanation for this yet.
• Very tied to Chrome. Bitium is almost 'married' to Chrome, making it unusable in other browsers, which is sometimes problematic.
• Sometimes slow Chrome Add-on. From time to time, the add-on seems so unresponsive that it is easier to go to the web dashboard and log in from there in the app you were looking for.

Incentivized

• The user interface is not very intuitive. It is hard for the occasional user to navigate through the request process. There are no instructions on the screen to help the user to know what to do. It is left up to the user to figure out what to click on and how to navigate through the process.

Incentivized

• Email support is SLOW unless I want to allow a stranger to access my production firewall. That is never allowed here, so our hands are tied in terms of being able to get support in less than 48 hours.
• Again, support takes far too long because you refuse to employ any staff that works in US time zones during normal business hours.
• There has to be another option besides: 1) you take full control of my systems or 2) I wait on SLOW email support that isn't that great.

Incentivized

Today to ensure our ISO 27001 certification it is important that we maintain this solution. Today it is part of the way any employee within the organization works, we no longer have any other way of working and it is the simplest way to ensure that access to the workstation is done with MFA.

Incentivized

Overall usablity is excellent. The product is capable of performing all the expected tasks for a IAM solution.

Incentivized

After initial setup, it practically runs itself. Onboarding new users is fast and easy as it should be. The AuthPoint mobile app is small and simple to use. The only reason I do not give it a 10 is that I frequently get complaints from end users that the AuthPoint app is "constantly downloading". In fact, it's not downloading anything and that what the users are seeing in the app is a timer for the 6-digit code that changes every minute.

Incentivized

Has rarely been unable to use; if that were the case, it was operator error

Incentivized

No apparent problem besides a couple of times that systems weren't working

Incentivized

Support for Customizations is very limited.

Incentivized

WatchGuard support is always quick and reliable. They have urgency levels that you are able to select when creating your support ticket, and they respond in accordance to the severity that you have set. I have never had an issue with getting someone on the phone in the same business day, even for very low priority issues.

Incentivized

It was an Onsite demo at the ditributor with the benefits of Watchguard Authpoint. Was very nice to see the abilities of the product. This Demo was a few years back, since then Authpoint changed allot. It is very nice for partners that you can get this demo without any aditional cost.

Incentivized

We use the online training for all our employees. There are both sales and technical trainings available and there even is a technical certification. You can use this for the Watchguard Partner Program which can give you aditional benefits. Every now and then you have a webinar that discusses multiple Watchguard products.

Incentivized

Implementation was done correctly and all the requirements were met.

Incentivized

the first time it takes more effort. It is helpful to already understand how each authentication type works. Then it's much easier to understand the MFA solution that you implement. It is useful to check the release notes from time to time and update the key parts of the Watchguard Authpoint. Authpoint Gateway, Logon App, RDWeb... Also, it's useful to set up notifications when something goes wrong or sometimes check the statistics of how many requests are being approved/denied, etc.

Incentivized

The on-prem SailPoint IdentityIQ platform provides the necessary customization that is required in our dynamic environment. Although we may look at a cloud-based Identity Management service again in the future, (there are many advantages), our identity management, authentication, and application assignment processes cannot be quickly consolidated to a single cloud-based service at this time.

I would slot Authpoint (as a product) as better than ESET but not Duo. ESET has the same limitations as Watchguard in the OTP support. It also is an on-prem installed console rather than a cloud, which increases cost and maintenance requirements. The duo now supports standard OTP for admin accounts, so it can be managed by a team. Duo support however leaves a lot to be desired and gives Watchguard the edge

Incentivized

We are a medium-sized company. We don't need rapid scaling.

Incentivized

• Everyone is now required to have A-level passwords, so the overall level of security has increased a lot.
• Having a secured way of sharing access to different apps, users are now very open to being helped more hands-on by the support teams, not fearing that their credentials might be exposed or later used.

Incentivized

• Over 300,000 password change/reset calls avoided to the helpdesk annually.
• 1,000 plus accounts with proper accesses provisioned via automated birthright processes weekly versus 1-2 days of manual provisioning and approvals. With a call center population that churns many people per week, this brings many dollars of efficiency to the operations teams.
• Flexibility on terminations to manage accounts and access for target applications based on regulatory or business rules to ensure compliance and avoid fines for non-compliance.

Incentivized

• We currently have 300 users on Authpoint, and most of them use insecure passwords. Authpoint gives us peace of mind that we don't have to police individual employee passwords.
• In line with the comment above, with so many people in our organization using insecure passwords, I'm sure that Authpoint has already saved us from many potential security breaches.
• Security breaches can cost a lot of money. Preventing them saves the company money and helps to achieve our bottom line.

Incentivized