Internet speed is good. supporting RDP network for accessing, and as compared to other VPN like FortiClient, it has good speed! It's bypassing SSO login and we don't need to provide credentials or form based authentication for each time. Many websites or private sites are safely accessible via Cisco AnyConnect VPN. It's essentially used for Work From Home or public networks.
Imperva web application firewall does a great job in giving us control over access to our public web servers. With our regular hosting provider, we couldn't block access based on geography, or really anything. So we had to rely on traditional access controls to protect the data. But with the WAF, we can block countries such as North Korea, or we could stop any SQL Injection attempts, or even do a temporary block of IP in the case of detected brute-forcing.
Any Connect is building a stable VPN connection across any different kinds of networks. So it gives me the assumption that I will be sitting in the office and work locally on my workplace, but I get this assumption nearly from everywhere.
Alert Aggregation - Correlates different violations into perceived correlated attacks.
Ease of deployment - as one of the only WAFs that allow bridge mode deployment, this can be deployed with without downtime and no Network Architecture modifications. If the need for proxy is required at a later time, Transparent Reverse Proxy can be deployed within seconds and minimal configuration.
Custom Policies - Custom security policies are easy to configure.
Reporting - There are a good amount of pre-configured reports available by default.
Manual Administrative Config: The Enrollment requires the user to enroll from their end and can't just be "Setup" for the user unless you act as the user. For things like SMS text, it would be nice just to put it in place and have it work without a "Setup/Enrollment" process. This does, however ensure the user understands the process.
Active Directory Sync and Azure Sync Did not automatically match up accounts and duplicate, so I had to do it manually, to be fair the account usernames do not match the Email Address which is used for Azure so it would be difficult.
Duo Support and Cisco Support seem to have not been integrated with each other well, most support tickets end up with a Duo expert and a Cisco Firewall Expert on at the same time, though this has improved dramatically.
They did not force my Admin to use an NTP Server off the bat, which would have fixed a few issues we had that persisted for a while until he started using one. (A bit old fashioned)
As I am getting all the services which are expected. I would highly recommend the organization to renew the use. But if I get better services than Cisco AnyConnect then I would definitely give that one try however it needs to have more resiliency and trustworthiness then only can move towards other provider.
Compared to other products that I have used, Cisco gives me more information and it is easy for me to understand what's happening from the application, which is Cisco AnyConnect, which other vendors don't. It's very hard for me if I have to work with other applications, I have to get support from the application owner vendor. But in Cisco, I myself can read through and get this thing. Now with that being very comfortable, I mean very, very useful. I would like to get to more detail in a more simplified way. There are plenty of things. It is also where there is something it gives me in a simplified way. This is what has happened that would help me in some cases. But always there is a scope for improvement in any product. I never rate any product to 10, even if it's better because there is always room for improvement. So I personally feel we can still make this better. It is a good product, but we can still make it better
There are just a couple of points that are hard to find, that probably could be elsewhere. But these are minor; everything else is right where you'd expect it to be.
Thus far, I have not encountered any outages to Cisco AnyConnect. Any firmware updates are completed infrequently and efficiently such that the users don’t experience noticeable downtime. I have not encountered any errors running the platform at any time of day or night , or from any geographical location. Provided a hard-wired or WiFi internet connection is available, expect Cisco AnyConnect to run without unexpected interruption.
Absolutely no speed issues, and I see no evidence of slowdowns across any of the multiple platforms I use daily. It's operation is completely invisible most of the time, except where there is a loss of connection due to server issues or a loss of power. Everything loads quickly and accurately.
Their support team is extraordinary and quick responding. All support team members have great product knowledge and takes very minimum time for query resolution. Support is available on phone, emails, etc. As per my experience with their support team, I will rate them with 10 stars here because it was truly exceptional.
We haven't needed support from Imperva since implementation. But during that time, their personnel were very quick to respond to questions. Since then, it's been largely doing its thing for us (which is exactly what we'd hoped).
Our Managed Services vendor helped us with the implementation. When we initially setup our AnyConnect using MFA for remote connectivity, the setup was easy and straight forward and worked just fine. After a year, we decided to change to an "always on" feature and use machine and user based security certificates instead of MFA. We had to open a ticket with Cisco support and have their assistance getting this feature to work. Turned out they had a small bug in the code for that version of AnyConnect and it has since been corrected. We have had no issues with the upgrades since that time. The deployment of the software to the user machines was done with SCCM and was straight forward. The user machine upgrades are easy - when the user machine connects and sees a new version available, it upgrades itself! What could be easier?
I have tried the above too. I have noticed that the consistency and reliability that connect provides are way better than theirs. Integration with 2-factor authentication apps is something extremely important, and I am not sure if this two software provide such functionality. Network stability and speed are also not as good as Cisco Anyconnect.
Ultimately, it was the easiest to work with that was still a "known" company (we've been burned too many times by up-and-comers). We needed something that gave us a lot of control but then didn't need its handheld on a daily basis. Imperva gives us a lot of that and we are still able to navigate it with ease.
Cisco AnyConnect has been a speedy, reliable, and efficient tool for the creation of your own VPN whatever location that you've brought your laptop. Customer support is consistently top-notch, coming up with quick fixes to whatever difficulties are thrown your way. I would not hesitate to reccommend Cisco AnyConnect to any business that needs connected employees throught the world.
We are able to seamlessly work on multiple clients daily, and it allows us to quickly handle more projects at the same time.
Cisco AnyConnect has allowed our own company's coworkers to remotely connect back to the corporate network, easily assisting work schedules and processes, during the COVID-19 pandemic. Being forced to work remotely, meant our processes still happened quickly and efficiently, by being able to leverage and use Cisco AnyConnect VPN.
Even prior to the COVID-19 pandemic, I have worked 100% remotely for a few years now. This was always due to the reliable connectivity and ease of use with Cisco AnyConnect VPN. I live 2+ hours from our nearest corporate office, and even further from some of my client locations, and I have always been able to connect to any of my multiple Cisco AnyConnect VPN connections, within seconds.
Better Insight into web application - Absolutely great, checks all the traffic against RFC standards and will alert on common development mistakes that duplicate application traffic or provide attack vectors for potential attackers.
Have had several issues blocking a customer without producing alerts, while it happened only one week out of 2 years of working with the devices, it did produce a lot of headaches.
