We compared Prisma SD-WAN and Prisma Access across several parameters based on our users' reviews. After reading the collected data, you can find our conclusion below:
Features: Prisma SD-WAN provides deep application visibility, centralized control, and the option to utilize local breakouts for internet connections. Prisma Access stands out for its ease of use, advanced security features, and global performance.
Room for Improvement: Prisma SD-WAN has room for improvement in various areas such as routing behavior, alerts and monitoring, and event analysis. Prisma Access could benefit from enhancements in error handling, latency, and integration with other cloud architectures.
Ease of Deployment: Some users experienced issues with existing traffic paths while setting up Prisma SD-WAN, which required several hours or more to resolve. Similarly, the setup process for Prisma Access varied in complexity and duration based on the size and requirements of the organization. While some users found it straightforward, others mentioned the need for expertise and assistance.
Service and Support: The feedback about Prisma SD-WAN's customer service varies. Some customers appreciated the support team's expertise, while others have noticed a decrease in the quality. Prisma Access's customer service has received mixed reviews. Some customers expressed a desire for better technical support, while others have had positive experiences with prompt responses and knowledgeable engineers.
Pricing: Prisma SD-WAN is less expensive than some solutions like Cisco, but Zscaler is even cheaper. Prisma Access is a more expensive solution, but users say the price is justified by its quality and features.
ROI: Prisma SD-WAN reduces costs and downtime while helping customers meet audit requirements. Prisma Access excels in identifying security concerns, seamlessly integrating with various products, and delivering instant value.
Comparison Results: Prisma SD-WAN offers useful features like in-depth application visibility, centralized control, and flexibility in WAN management. It has room for improvement in terms of routing behavior, documentation, and device reliability. Prisma Access is praised for its strong security features and ease of administration. It faces challenges with its user interface, configuration, and geographic coverage. Prisma SD-WAN is considered more affordable than other solutions, while Prisma Access is seen as higher-priced but justifiable for its quality.
"The most valuable features are the antivirus as a whole, the anti-malware, and all of the protection features that scan our enterprise devices."
"On the outside, the main differentiation is because Lookout ingest. They have ingested basically all of the apps for the last ten years and all the versions of all the apps, and we have that in a corporate database that allows us to do very large-scale machine learning and analysis on that data set. That's not something that any of the competitors really have the capability to do because they don't have access to the data set. A lot of the apps you can no longer get them because that version of the app is five or six years old, and it just doesn't exist anywhere anymore, except within our infrastructure. So, the ability to have that very rich dataset and learn from that dataset is a real differentiator."
"The solution is stable."
"The protection offered by the product is the most valuable feature. It detects vulnerabilities or traps on our users' phones and then prompts them to clean up their devices. Tools we used previously would only discover, which required us to gather information on the backend, so Lookout is a welcome upgrade."
"The most valuable feature is the ability to change the gateway. For example, if there's a problem with a specific region or vendor, we can make modifications. The solution is scalable, and there are different gateways that can be created depending on the demand."
"The users can securely access any cloud data centers or cloud platforms. In terms of the features, it has all the features that Palo Alto Next-Generation Firewall has. It is also very stable and scalable."
"The remediation process is easy compared to other platforms."
"The solution improved the consistency of our security controls and the BCP. There has been a 20 percent reduction in TCO. Prisma Access also enabled us to deliver better applications by centralizing security management."
"The most valuable features of the solution stem from the fact that it offers stability and scalability while being a very secure product."
"The visibility perspective is pretty cool. If I want to know how much data is being used for a specific project, I can look at how much data has been used, from which region, and which users have been connected. That visibility is very good so that I can see how many licenses we have and how many are used."
"Prisma SaaS is very easy to use; it's common sense — it's the best-in-class."
"Being able to use the user ID or Active Directory Group is one of the great features for control and providing more flexibility without worrying about IP addresses."
"Prisma's analytics provide a lot of valuable data. I like the internet health chart that shows latency, dropped packets, MOS for data quality, etc. It also runs a continuous speed test in the background. I've used it multiple times to troubleshoot internet connections when the service provider has attempted to claim nothing is wrong with the circuit. It gives me data to send them showing we're not getting the speed we should, or there is constant packet loss."
"I like the link monitoring and analytics. These are the features that set Prisma apart from other products. Prisma works well with large, complex networks. One of my clients is a top bank in the United States, and Prisma has performed well for that customer."
"It is flexible to use the internet connection via local breakouts without going to data centers."
"The product's initial setup phase is straightforward."
"When it comes to supporting large, complex, network architectures, it's a very simple architecture. The main component is the fabric. It's very easy to troubleshoot if there is an issue happening in the underlying network."
"Prisma SD-WAN is intuitive. We have a better idea of the different tools we can use and jump between the menus quickly."
"I like that the integration with Palo Alto is easy."
"From the main controller, we can administer the customer's devices, QoS, network, and traffic. We can monitor it and we can change and create policies as well as upgrade the software. We can totally control a customer's network from one site, the Prisma SD-WAN portal."
"We just submitted an enhancement request reflecting the main area we want to see improvement in; the APIs. Currently, we're able to build dashboards, but it's somewhat backward because we use our MDM API to create them. Lookout should provide API to customers so we can query our data and use it in our cloud, and this is the only outstanding area for improvement with the product right now."
"Lookout was moving into the SSE space. And so their work on SecureWeb Gateway and SD-WAN is still sort of evolving."
"The stability depends on the service from where you access it. Because sometimes, the place you are in, you have Gateway. You don't have Gateway. The gateway is overutilized. At the end, you need to go through their gateways. And this is the key point here. You have a tracking point. If it's not well orchestrated, and it scales up as you add more to the existing team, you will suffer"
"From the analysis that we've done, they do seem to be maybe a step behind in trying to enter the market with a new solution. But when they do pick up, they do come out with some good products."
"The solution needs to be more compatible with other solutions. This is specifically a problem for us when it comes to healthcare applications. They have proprietary connection types and things of that nature that make compatibility a challenge sometimes."
"We are using the SaaS offering. We use our applications for microservices. We use Twistlock to scan containers, and it displays these results in Prisma, which is a good feature because we can see vulnerabilities with respect to these containers. We can see everything in a very detailed manner. However, when you have different environments for a single application, such as DEV, QA, PROD, and TEST, all these environments run multiple containers, which can lead to a very high number of containers. In such a scenario, it shows you the alerts for all those containers that have vulnerabilities. If you show the results of all the containers that share the same image, it is not going to add any value. Therefore, they should narrow down the alerts based on a container. It should show information for a single container. Otherwise, the person who is looking at the results gets the impression that he has to fix all these issues. This is something that they can improve."
"One thing that would help is if we could get a guide. With Cisco, for example, you can just type the problem regarding your Cisco product and you will easily get your solution. In Palo Alto, however, it's not easy to find the solutions."
"We would like to see improvements in the licensing; currently, Palo Alto provides 500 to 1000 licenses for users, and we want to see 1500 to 2000 licenses for one version."
"It would be nice to manage Prisma Access through the cloud instead of through Panorama. You can use the cloud version to monitor Prisma Access, but it doesn't have all the features yet, and it's not 100% done."
"It wasn't so satisfying to work with it. There is room for improvement in the policy management. It is difficult to cover the entire scenery through Palo Alto products."
"There is some particular traffic that the security team wants to filter out and apply their own policies and they cannot."
"The BGP filtering options on Prisma Access should be improved."
"I'd like to see them move more towards CASB."
"Customer support is our biggest pain point. The quality of support has gone down a little since we initially deployed this product. I don't know if this is due to turnover at Palo Alto or a lack of training. It is now taking one or two days to get an initial response that says, "Hey, we've looked into this, can you pull this data for us?" In the past, we'd immediately get a response."
"There are two parallel things that we want Palo Alto to work on. First, customers want a unified appliance that does the work of all firewalls in addition to SD-WAN. Second, the cloud presence should be completely automated. If I purchase the SASE architecture, I shouldn't worry about deployments in Prisma Access or on Prisma SD-WAN. It should be deployed in one go."
"Event correlation and analysis capabilities do not help minimize the number of alarms from a single event. That is the problem. We are getting a lot of incidents, and there is some issue with the correlation. That is still a drawback."
"I would also like to see improvement in the product training for customers. Palo Alto has not initiated very much training but they have to do so because this is a new product. If you have experience in a legacy environment, and you are moving to Prisma SD-WAN, you don't have a training framework. That is one of the disadvantages."
"The tool needs to work on price and complexity."
"Sometimes, during the product's initial setup phase, bypass pair or couple ports don't come up normally, and it requires an hour and a half to troubleshoot to reset the box from Prisma SD-WAN to factory default."
"We are incorporating their zone-based firewalls. Prisma SD-WAN has limited documentation on how it manipulates traffic, e.g., how it is interacting with TCP and UDP. We recently had some traffic that was black holing. We literally had to do packet captures to see that the new zone-based firewall, which runs on top of Prisma SD-WAN, was causing issues."
More Prisma Access by Palo Alto Networks Pricing and Cost Advice →
Prisma Access by Palo Alto Networks is ranked 1st in Secure Access Service Edge (SASE) with 57 reviews while Prisma SD-WAN is ranked 10th in Secure Access Service Edge (SASE) with 11 reviews. Prisma Access by Palo Alto Networks is rated 8.2, while Prisma SD-WAN is rated 8.6. The top reviewer of Prisma Access by Palo Alto Networks writes "Integration with Palo Alto platforms such as Cortex Data Lake and Autofocus gives us visibility into our attack surface". On the other hand, the top reviewer of Prisma SD-WAN writes "A stable tool that offers a good uptime and ensures a return on investment". Prisma Access by Palo Alto Networks is most compared with Zscaler Zero Trust Exchange, Netskope , Cisco Umbrella, Zscaler Internet Access and Microsoft Defender for Cloud Apps, whereas Prisma SD-WAN is most compared with Cisco SD-WAN, Meraki SD-WAN, Fortinet FortiGate, Aruba EdgeConnect SD-WAN Platform and VMware SD-WAN. See our Prisma Access by Palo Alto Networks vs. Prisma SD-WAN report.
See our list of best Secure Access Service Edge (SASE) vendors.
We monitor all Secure Access Service Edge (SASE) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.