The Forcepoint ONE Secure Web Gateway (SWG) is one of the three foundational gateways of the Forcepoint ONE all-in-one cloud platform. Forcepoint ONE SWG monitors and controlsany interaction with any website, including blocking access to websites based on category and risk score, blocking download of malware, blocking upload of sensitive data to personal filesharing accounts, detecting shadow IT, and optionally providingRemote Browser Isolation (RBI) with Content Disarm andReconstruction (CDR).
N/A
Omnissa Horizon
Score 7.2 out of 10
N/A
A VDI solution used for the secure delivery of virtual desktops and apps from on-premises to the cloud. It is used to deploy, manage, monitor and scale desktops and apps across private, hybrid and multi-cloud infrastructure using a cloud-based console and SaaS management services.
Citrix did not have the level of Instaclone type feature that VMWare had in its offering. The application layering also was better in our opinion as well as overall support from our vendor. Security was a close call but we found VMWare to be a better fit for our company and its …
Over the years, [in our experience], the maintenance of the Forcepoint Web Security solution proved to be more cumbersome and troublesome with each version upgrade. In addition, it did not transition well to support the large increase of remote workers. We also experienced weird incompatibilities with the client. We have since replaced this solution with Zscaler Internet Access, a cloud-based secure web gateway solution with a client that behaves as expected, is more flexible, and requires significantly less administration.
VMware is well suited to a business where there will be many remote users needing to connect to the companies desktop. The installation on a remote computer is simple and is easy to use remotely but can be complicated to set up on the back end on the office system. It may not be worth the effort for a company that has few people who need remote access.
It provides a robust, secure, rich desktop environment that is able to access all internal network resources.
Addresses security and compliance concerns as all data resides within the internal network. All data accessed stays within the internal network and does not need to traverse a VPN to the local desktop where it may be cached, etc.
The connection is thin client that does not require large amount of bandwidth.
Client application is available for all common devices and O/S’s.
No need to install, configure and maintain applications on local desktop.
The user access logs contain a lot of useless information. I understand this is very hard to tackle as I've seen this across any product that logs web activity.
I would like to see more customization options of website block pages.
It is very stable, the organisation has "locked in" the product and has no plans to change or try another product. We have already renewed our 2019-2020 licenses. It is user friendly and people catch on easily when they first use it. The only downtime is when we install Microsoft updates! It has excellent reporting which help in determining how the organisation's Internet is used and also during both internal and external IT audits.
Despite the intimidating Linux CLI when you use the appliance for troubleshooting, the web security usability compensates as most of the Administration of the system is done there. It is GUI based and has an easy to use UI where one can navigate around rather easily like getting reports, checking alerts, looking the whole setup under deployment to check if all services are running in one place though there are other parts to the system.
Because it delivers what it promises, I am giving this rating. While there is scope for improvement, it does the job and meets our requirements reasonab;y well. It helps our remote resources connect to our environment securely and improves their productivity. We also get to access our client environment from remote locations and complete the tasks assigned to us.
There are a lot of things that went into my rating from the ease of use compared to other systems to the limited amount of issues I have had with this one. Any issue with this system has been identified and resolved in a much quicker manner than I have seen with like systems.
The is a quick first response to acknowledge your issue and the Engineers never take more than two hours to fix an issue and we hardly get issues looking at the fact that the system is pretty stable. There is also a robust Knowledge Base in the site for known problems.
It is surely way better than Citrix, but it could improve a bit. Usually, they send us the solution without saying what was the root cause so we can avoid breaking something in the future. Besides that, VMWare support answers in an OK time-frame and even speaks our language (Portuguese).
Research known issues with upgrading from the Support Knowledge base, this will enable you avoid road blocks along the way and reduce your dependence on Forcepoint Support
To be honest, once using Forcepoint for our Web Security, I have not wanted to look anywhere else. The dashboard gives me quick insight of threats, productivity, and bandwidth usage. Again, this is a layer in my security and it fills many holes. I feel safe and I do like I can just let it do its thing
Although I really prefer Microsoft Remote Desktop for accessing Windows servers (from Windows machines especially), and this can be done from off-site with a VPN, this entails much more effort, namely getting everyone's Active Directory in the correct group to have access. VMWare Horizon is a much simpler solution in terms of granting access. Chrome Remote Desktop and TeamViewer are really not viable solutions for remotely accessing servers in business settings, although they work alright for home servers and such, especially from off-site.
Being a non-profit the cost is a bit higher than some competitors so our ROI takes a bit longer to recoup. I would really like to see better non-profit pricing.
The ease of doing a report on someone cuts down on the IT man-hours to do website tracking for managers as we can do it from a central point whereas in the past (prior to Forcepoint/Websense) we would have to ghost their machine to look for activity as well as their local servers.
