HID DigitalPersona (formerly Crossmatch) provides a comprehensive multi-factor authentication solution. The vendor’s value proposition is that their solution frees users from cumbersome login activities while making it easy for an IT Team to secure access to their networks, data and applications.
$3.75
per user per month
Sophos NAC Advanced (discontinued)
Score 5.2 out of 10
N/A
UK-based Sophos provided Network Access Control technology. Sophos NAC Advanced has been discontinued since 2013.
During the onboarding process, remote workers can enroll their fingerprints or create secure PINs. This eliminates the need for complicated passwords and enables them to safely access company resources and critical apps from remote locations. HID DigitalPersona's robust authentication techniques and access control features can assist you in adhering to data security laws.
Sophos Network Access Control would be most effective in an enterprise environment where there are many different groups of users, including guest users because it has the ability to block unauthorized users and control the access of guest users. It would not be well suited for an environment with less than 1000 users because as far as I know, the license requires at least that many users.
Speeding up the login process with fingerprint in PIN rather than having to remember a long password. Our IT department has seen a huge decrease in the amount of account lockout and forgot password calls.
It is highly customizable to meet the needs of remote or on-premises workers. It is all configurable through group policy, so it is very easy to set specific requirements on certain groups.
Setup was quick and the administration guides are very easy to follow if you need to go back in and adjust things.
I find that sometimes I have had to delete a users fingerprints and re-add them. There must be something going on where the software believes that the user has changed their fingerprints.
I have on occasion come across a person where the reader was unable to create fingerprints for that user. It would be interesting to see if the sensitivity of the 4500 reader could be improved on.
I find that using the DigitalPersona software makes the users ultimately forget their passwords. Maybe every once in a while the software could require the user to type in their Windows password to help them remember it.
Customer support was basically non-existent during the time we needed it the most. This should be #1 priority for any company.
Lack of support for Linux servers and Mac OS
The reporting system relies on information provided by the agents
Wide scale removal process needs some vast improvements. When using a batch removal script, it wrecks the NIC drivers to the point that they have to be removed and reinstalled.
It is wonderful for multifactor authentication and gives us many options for what we use to authenticate. All of our users use it and it is engrained into our group policies and people would be very disappointed if it went away.
I think there are still fundamental enhancements needed to be added to the management consoles and I think there ought to be a Centralized, Windows Based "Thick" Management Application instead of individual utilities which vary from MMCs, Scripts, Wizards, etc.
Extremely poor; I've never encountered such. Professional Services completely dropped us for months. Crossmatch tech support seems like it has 3 techs tops! No response to emails, calls, the absolute worst! I will never recommend DP to anyone.
Could use tools to audit license usage at a more granular level as to allow an administrator to free up licenses from users whom seldom use their biometrics to login.
We have used One Identity for software tokens. The Defender software tokens were originally included with our bundle and work pretty well for integration into the AnyConnect VPN client with Cisco. All that said, we use the two products for different applications and DP does what it does very well.
I have used Mcafee Antivirus Suite, Trend Micro, and Vipre Antivirus. I actually had more experience with Vipre than anything else so that is the one that I will be comparing it too. From what I remember, Vipre was more expensive but had better customer support. Other than that, they both do pretty much thing as well as what all the others do. I personally do not believe that any enterprise level antivirus solution is better than any other, it boils down to which one can your company afford, and which one fits best with your needs.
I'm happy to say I'm not involved in budgeting or finance, but the financial benefits are easy to state: Less helpdesk time - helpdesk staff don't have to spend time resetting people's passwords.
Users don't have to wait for Helpdesk to get around to helping them log in.
Positive -- We were able to control guest users access
Positive -- Using the entire Sophos Security Suite I only remember one major virus while I was with the company which saves on downtime, and IT man hours
Negative -- The time we spent removing this, and reinstalling NIC drivers because the removal process crashed them cost the company in IT man hours.
