We performed a comparison between Runecast and VMware Aria Automation based on real PeerSpot user reviews.
Find out what your peers are saying about Palo Alto Networks, Wiz, Microsoft and others in Cloud Security Posture Management (CSPM)."The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"The security baseline and vulnerability assessments is the valuable feature."
"With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has VMware knowledge-based articles."
"The most valued feature is the streamlining of the DevOps process, automation and orchestration. It provides the ability for the entire Dev lifecycle to actually be incorporated into a single stream."
"The most valuable feature of VMware Aria Automation is the versatile automation and deployments."
"The IT support for developers is nice as well because they are able to manage the environment themselves."
"It's much more stable than the highest available variant."
"The solution is intuitive and user-friendly. E.g., you have less number of logins."
"VMware Aria Automation is a very scalable solution because it integrates well with a couple of leading products in the industry. For products that are not already integrated, there are plugins or adapters that can be used with customization."
"We provided the ability to request virtual machines to our end users. Before, this was a very manual process, which took engineers to do. Now, it's an automated process."
"Being able to give provisioning of environments over to our developers and the different teams has enabled them to put up environments faster and also freed up time for the IT team. This is really one of our bread and butter solutions for our developers."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"The remediation workflow within the Wiz could be improved."
"The only thing that needs to be improved is the number of scans per day."
"We would like to see improvements to executive-level reporting and data reporting in general, which we understand is being rolled out to the platform."
"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IPs for vulnerabilities and issues."
"My impression of its stability is "middle of the road." We've had some issues where it seems to be a little bit sensitive, where deployments fail and we don't really know a specific reason why. We'll dig through logs and try and figure out what's going on, but it's not always apparent as to why it failed. And you can kick it off again and it'll succeed. So stability could be better."
"I would like to see better integration capabilities. Maybe if they could develop libraries within Aria Automation for simpler integration with other third-party solutions, instead of just basic integration."
"I don't find the solution to be intuitive and user- friendly. The GUI is really complicated. Tracking down logs and errors is very hard. Then, it takes a specialized JavaScript person to build. Also, I'm not sure how the upgrades are going now, but they definitely need to evolve the upgrade process. Finally, the logs are very generalized. Giving more of an indicator of what's actually going wrong, rather than just a generic error code, would help."
"The solution could include more integrations and supportability around the container space."
"The initial setup was complex because we have a high availability cluster. Especially when it comes to upgrades, we have a lot of downtimes and problems. The upgrade experience has been painful."
"vRealize Automation on the back-end is still a little complicated. It has a lot of moving pieces, simplifying that from a pure infrastructure point of view would be a good thing. I would then like to have more out-of-the-box functionality and integrations with VMware components."
"I'm not wanting any particular feature; but there should be cost reductions. VMware comes at a high cost, and that's why we are in the process of transitioning to a more affordable alternative."
"Maintaining the product requires effort and a good understanding of the environment, including how to set up the codes and other configurations. Pricing needs to be improved to improve the customer penetration."
Runecast is ranked 24th in Cloud Security Posture Management (CSPM) with 1 review while VMware Aria Automation is ranked 15th in Cloud Security Posture Management (CSPM) with 133 reviews. Runecast is rated 9.0, while VMware Aria Automation is rated 8.0. The top reviewer of Runecast writes "Helps with risk assessments for containers, assessing security, and ensuring container compliance". On the other hand, the top reviewer of VMware Aria Automation writes "Allows for a lot of orchestration or customization within our environment to suit our customers". Runecast is most compared with VMware Aria Operations, whereas VMware Aria Automation is most compared with Red Hat Ansible Automation Platform, VMware Aria Operations, vCloud Director, Morpheus and vCenter Orchestrator.
See our list of best Cloud Security Posture Management (CSPM) vendors.
We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.