What is most valuable?
Resiliency: At one company I was at, we had development all over the world and often we would have a connection go down to the headquarters where we had the VPNs. This caused the remote site, sometimes with 100s of developers, to come to a halt isolating the office. In order to keep development going, I dropped a VPN and a small VIP relay server in the office. Because VIP is cloud based, as long as the site had an Internet connection, developers could still get in and work.
What needs improvement?
When tracking down an issue, you often have to go to each relay server and read through the logs.
For how long have I used the solution?
We have been using VIP Access Manager for eight years.
What do I think about the stability of the solution?
Overall, VIP is very stable compared to RSA SecureID. The back end is handled by Symantec, while the enterprise handles a simple relay server. At times, the relay server could not contact Symantec; it would fail open and allow access without a passcode. If Symantec came back up, it would stay in fail open and not revert back to normal operations. So, I could create a DOS against the relay server, and then have full access to the site with only user ID and password
What do I think about the scalability of the solution?
We did not encounter any scalability issues.
How are customer service and technical support?
Technical support is better than average.
Which solution did I use previously and why did I switch?
We previously used RSA SecureID.
What about the implementation team?
Setup was very easy. I wrote a two-page procedure to deploy a server.
What's my experience with pricing, setup cost, and licensing?
Pricing was about 25% of the old solution. That saved us about $500,000 over three years for 10,000 users.
Which other solutions did I evaluate?
We evaluated Entrust and SafeWord.
What other advice do I have?
Include a load balancer in front of the relay servers.