We performed a comparison between Prisma Access by Palo Alto Networks and VMware Workspace ONE based on real PeerSpot user reviews.
Find out what your peers are saying about Palo Alto Networks, Cisco, Zscaler and others in Secure Access Service Edge (SASE)."On the outside, the main differentiation is because Lookout ingest. They have ingested basically all of the apps for the last ten years and all the versions of all the apps, and we have that in a corporate database that allows us to do very large-scale machine learning and analysis on that data set. That's not something that any of the competitors really have the capability to do because they don't have access to the data set. A lot of the apps you can no longer get them because that version of the app is five or six years old, and it just doesn't exist anywhere anymore, except within our infrastructure. So, the ability to have that very rich dataset and learn from that dataset is a real differentiator."
"The most valuable features are the antivirus as a whole, the anti-malware, and all of the protection features that scan our enterprise devices."
"The solution is stable."
"The protection offered by the product is the most valuable feature. It detects vulnerabilities or traps on our users' phones and then prompts them to clean up their devices. Tools we used previously would only discover, which required us to gather information on the backend, so Lookout is a welcome upgrade."
"Prisma Access protects all app traffic, so that users can gain access to all apps and that's very important because we need to be able to access everything. It also allows us to access non-web apps; anything internal that we need access to, we can access."
"Prisma's most valuable feature would be its ability to identify bad or risky configurations."
"The remediation process is easy compared to other platforms."
"The solution is not very complex and is easy to manage for people who may or may not have knowledge about Palo Alto Networks."
"The Autonomous Digital Experience Management (ADEM) offered by Palo Alto is a good reporting tool. It gives insights into how things are going within the network. It takes all the data from the users' endpoints and does an analysis, and it suggests changes as well."
"Being able to use the user ID or Active Directory Group is one of the great features for control and providing more flexibility without worrying about IP addresses."
"Its frontend is user-friendly. It is easy to use for us."
"A feature I've found very helpful is run time security because most of the products on the market will look at security during the build time, and they don't really look at what happens once you're going into production."
"VMware Workspace ONE is a platform that's really good at monitoring and managing mobile endpoints. It can be set up quickly and implemented easily. Technical support for this solution has always been good."
"I would rate the stability as eight out of ten."
"It's a tool that can be managed in various departments."
"We used to have a system before, Mac OS Open Directory server and this open directory became obsolete because Apple decided to stop the enterprise market, so there was no other alternative for us to use. We chose this to replace the open directory and we found that it has many more features than the previous solution. We totally rely on it right now to manage all the devices on campus."
"The solution has very good documentation."
"AirWatch has one of the best User Interfaces and it's quite easy to figure out where particular items are within the menu system."
"The contained browser is a good feature."
"The performance is good, and it is easy to configure."
"The stability depends on the service from where you access it. Because sometimes, the place you are in, you have Gateway. You don't have Gateway. The gateway is overutilized. At the end, you need to go through their gateways. And this is the key point here. You have a tracking point. If it's not well orchestrated, and it scales up as you add more to the existing team, you will suffer"
"Lookout was moving into the SSE space. And so their work on SecureWeb Gateway and SD-WAN is still sort of evolving."
"We just submitted an enhancement request reflecting the main area we want to see improvement in; the APIs. Currently, we're able to build dashboards, but it's somewhat backward because we use our MDM API to create them. Lookout should provide API to customers so we can query our data and use it in our cloud, and this is the only outstanding area for improvement with the product right now."
"From the analysis that we've done, they do seem to be maybe a step behind in trying to enter the market with a new solution. But when they do pick up, they do come out with some good products."
"We've run into some challenges, having hit a lot of bugs over the past year in the deployment of GlobalProtect. We've had our fair share of issues that I haven't been happy with. We're working with the support organization to remediate them and waiting for updated releases. The response on getting the bugs fixed has not been what I would consider adequate for a product like this."
"The price can be reduced to make it more competitive."
"The product's current price is an area of shortcoming where improvements are required."
"There is some particular traffic that the security team wants to filter out and apply their own policies and they cannot."
"If you compare Prisma SaaS against other products, such as Cloud Log, it's a little bit tricky to understand, but it offers different functionality that other products don't have. From a user usability point of view, you need some training for this product, as an admin, you need a couple of demos."
"Palo Alto needs to improve the GlobalProtect agent to work as a secure web gateway agent, not only as a VPN agent because some companies would want only a secure gateway. They wouldn't want a full VPN. So, Palo Alto has to make the VPN agent work as a secure web gateway agent for those customers who want only the secure web gateway solution."
"It is a managed firewall. When you run into issues and have to troubleshoot, there is a fair amount of restriction. You run into a couple of restrictions where you don't have any visibility on what is happening on the Palo Alto managed infrastructure, and you need to get on a call to get technical assistance from Palo Alto's technical support. You have to get them to work with you to fix the problem. I would definitely like them to work on the visibility into what happens inside Palo Alto's infrastructure. It is not about getting our hands onto their infrastructure to do troubleshooting or fixing problems; it is just about getting more visibility. This will help us in guiding technical support folks to the area where they need to work."
"There is room for improvement in the multi-environment visibility, especially around containers."
"There is no Apple zero-day support for updates."
"Pricing is the only challenge right now. The licensing fee should be simplified a little bit. They have kept too many products as add ons. These need to be bundled with the low-cost, standard version. This will help customers in adopting this technology at a faster pace."
"There could be ease of integration within the environment. I didn't have any issues when using it, but the integration part was a bit difficult for the other team."
"The solution needs to adapt to the cloud based reality of the current world model. Some customers may have reluctance to this, but it is the next level for all of the big providers. Azure, AWS and Google are all on the forefront of cloud-based solutions."
"Technical support needs to be more responsive to our requests."
"From an identity perspective, there is a lot of room for improvement when it comes to integration with other solutions. I would say it needs more capabilities in terms of direct integrations, including cloud identity solution integrations."
"This product makes use of SAML across the board, which has seven known security flaws. It would be good if the company created a way to protect against SAML flaws. One way would be to integrate a firewall server or an endpoint out in the cloud with which you could establish trust. If you knew nothing about SAML and you did some Google searches about what SAML is, what are the flaws, and what are the known vulnerabilities, eventually, you'll find that there are seven flaws. There are two methods that you can use to solve those seven problems. They essentially involve putting a firewall or putting rules, such as access controls, so that anybody in the world can't just come in, authenticate, and either be a good guy or be someone trying to knock on my door and get into my house. If I could eliminate that, it would be awesome."
"It's not accurate enough when it comes to sending items to end-users."
More Prisma Access by Palo Alto Networks Pricing and Cost Advice →
Prisma Access by Palo Alto Networks is ranked 1st in Secure Access Service Edge (SASE) with 57 reviews while VMware Workspace ONE is ranked 2nd in Unified Endpoint Management (UEM) with 82 reviews. Prisma Access by Palo Alto Networks is rated 8.2, while VMware Workspace ONE is rated 8.2. The top reviewer of Prisma Access by Palo Alto Networks writes "Integration with Palo Alto platforms such as Cortex Data Lake and Autofocus gives us visibility into our attack surface". On the other hand, the top reviewer of VMware Workspace ONE writes "The solution is stable, scalable, and offers single sign-on". Prisma Access by Palo Alto Networks is most compared with Zscaler Zero Trust Exchange, Netskope , Cisco Umbrella, Zscaler Internet Access and Prisma SD-WAN, whereas VMware Workspace ONE is most compared with Microsoft Intune, VMware Horizon, Jamf Pro, SOTI MobiControl and ManageEngine Endpoint Central.
We monitor all Secure Access Service Edge (SASE) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.