Possibly the best vendor for MFA protection of Endpoints and Servers.
Updated February 26, 2024
Possibly the best vendor for MFA protection of Endpoints and Servers.
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Cisco Duo
We use Cisco Duo for MFA of Active Directory and other software/services that are used within the company. It allows us to require MFA for our servers, endpoints, and a variety of other platforms that we deem necessary to have MFA.
Pros
- Provides a great user experience for MFA on Endpoints.
- Offers multiple options for completing the MFA process from mobile apps to Yubikeys.
- Allows for granular configuration based on each companies needs.
Cons
- Documentation is oftentimes missing key information for proper implementation. This is circumvented by reading third-party guides or contacting support for additional details.
- They do not push Fail-Closed as much as I think they should. Fail-Open is fairly trivial to bypass and it should be made known to the customer during setup how much this will affect overall security.
- More vendor integration is something that is always craved by administrators. There are so many third-parties to integrate with.
- We have greatly bolstered our security by implementing Cisco Duo for MFA on our systems.
- The biggest negative impact is that when you enable Fail-Closed, you are going to need an offline code set up for any device you want to log into while the internet or Duo is down. Fail-Closed is certainly the recommended way to configure this, but just keep that in mind, especially for servers and other critical systems that are necessary to be accessed during any sort of outage scenario.
- The Okta Identity Cloud
Cisco Duo had an integrated method for handling MFA on Endpoints and Servers. This was a huge bonus. Administration and implementation seemed more efficient as well.
Do you think Cisco Duo delivers good value for the price?
Yes
Are you happy with Cisco Duo's feature set?
Yes
Did Cisco Duo live up to sales and marketing promises?
Yes
Did implementation of Cisco Duo go as expected?
Yes
Would you buy Cisco Duo again?
Yes
Cisco Security
To further protect our customers, as well as our employees. We want to be at the forefront of security and put ourselves in a position that allows us to encourage other companies to work towards similar security goals.
We wanted a robust solution that had native integration for Windows Logon and Duo, without a doubt, had the best offering for that.
The native Windows Logon/RDP integration was a major selling point for us.
It pretty much ticked all the boxes and had some features that competitors did not have a direct comparison to.
While AI will inevitably have a negative impact on cybersecurity, I believe legitimate companies will invest a significant amount of time and money into utilizing AI to better their own products, which should open up the jobs of IT/Security staff to spend more time on more meaningful tasks and less time on tasks that can be automated and "learned" by a computer system.
Yes. Many of our tools include these features and create actionable items to be reviewed.
AI lessens the time required to work through a detection and determine a course of action.
Resilience and Reliability
Work towards becoming intimately familiar with the product so that you are comfortable to handle difficult situations as they arise. Confidence is so important.
Using Cisco Duo
68 - Every department is using this product.
2 - There are 2 primary people who are responsible for this product.
- MFA
- Security
- Compliance
- Adding MFA to additional products and services
- Passwordless
Comments
Please log in to join the conversation