We performed a comparison between Runecast and VMware Aria Automation based on real PeerSpot user reviews.
Find out what your peers are saying about Palo Alto Networks, Wiz, Microsoft and others in Cloud Security Posture Management (CSPM)."The security baseline and vulnerability assessments is the valuable feature."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has VMware knowledge-based articles."
"The solution is intuitive and user-friendly. E.g., you have less number of logins."
"vRealize automation stability is pretty good. They are always fixing bugs. The product team is doing a great job of addressing any issues that we might have."
"The operations manager does a fantastic job on the front end because it includes on-premises and cloud use cases."
"The most valuable features are the metrics and reporting aspects. The historical data and extraction enable us to tell where the trends are and where contentions may exist in the future."
"The setup is getting better with each version."
"vRA provides that single pane of glass for our cloud tenants to deploy, monitor, access, and manage their VMs/guest operating systems."
"The most valuable feature that we have is that it's able to deploy several different operating systems, it's able to deploy whatever we want. We can take a template, spin it up, revise it, save it back off, and be able to have that for other departments. We can have one for our Dev team and one for our research team which has some specific requirements. We can keep track of them and deploy things automatically."
"The automation part is valuable, especially where vRA integrates with vRO, because it reduces the amount of effort we have to make."
"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
"The solution's container security could be improved."
"We would like to see improvements to executive-level reporting and data reporting in general, which we understand is being rolled out to the platform."
"The only thing that needs to be improved is the number of scans per day."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IPs for vulnerabilities and issues."
"The setup needs coding. It's not easy. It's not straightforward."
"7.5 is not user-friendly, in fact, it's a nightmare. They changed everything on the graphic user interface, the mode where the user interacts with the product."
"The initial setup was complex because we have a high availability cluster. Especially when it comes to upgrades, we have a lot of downtimes and problems. The upgrade experience has been painful."
"It needs to be more dynamic with variable customization to make new workloads more reliable. It also needs to be faster. We are exploring vRA version 8 right now and maybe what I'm requesting is available in the new version, but we haven't yet explored it fully."
"Stability has gotten a lot better. However, the vRO aspect, when you have a multi vRA head, is a little bit finicky still. vRO still needs to stay on one appliance and be one application, because, when you have two, you can't see runs on the other one that are happening when you're not logged into that one."
"The stability needs a lot of work. The troubleshooting component of vRealize is a pain. The administration and the upgrades are not up to the mark. If they were able to improve on that, that would be the best thing and would make it much easier to run it in the enterprise."
"I don't think it's intuitive or user-friendly. I think it's a good tool. Any automation tool, these days, the learning curve is kind of high. You're teaching sysadmins who never developed stuff. Maybe they modified a little bit of code and now you tell them, "Hey, here's the tool, use it." But you have to know a little bit of DevOps. So you have to train them how to do the scripting."
"The basic support is not there for Google Cloud and Azure. They are unable to provision nor do cost controls. Google is still left out. It is great that they have done AWS, but we are a retailer which means nothing to us because it is a competitor. Azure is good, but Google is where a lot of our development environments are."
Runecast is ranked 24th in Cloud Security Posture Management (CSPM) with 1 review while VMware Aria Automation is ranked 15th in Cloud Security Posture Management (CSPM) with 133 reviews. Runecast is rated 9.0, while VMware Aria Automation is rated 8.0. The top reviewer of Runecast writes "Helps with risk assessments for containers, assessing security, and ensuring container compliance". On the other hand, the top reviewer of VMware Aria Automation writes "Allows for a lot of orchestration or customization within our environment to suit our customers". Runecast is most compared with VMware Aria Operations, whereas VMware Aria Automation is most compared with Red Hat Ansible Automation Platform, VMware Aria Operations, vCloud Director, Morpheus and vCenter Orchestrator.
See our list of best Cloud Security Posture Management (CSPM) vendors.
We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.