Anonymous UserAssociate Consultant at a computer software company
Anonymous UserSecurity Business Consultant at a tech services company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The biggest value of ISE is that it can get so granular with gaming systems, versus IoT and BYOD."
"Using this solution gives us the ability to allow proper access to the network."
"The features that do work, work well, and we use it on a daily basis."
"The feature that I most like is that it can notify me whenever someone plugs in their device, which is not allowed. I get notifications for new laptop devices. I think the user interface looks good compared to previous versions."
"The solution cuts down on the repercussions of getting malware or ransomware."
"The implementation is very simple."
"The user experience of the solution is great. It's a very transparent system."
"The most valuable feature is the integration with StealthWatch and DNA as one fabric."
"The solution's most valuable features are the efficiency and the quality of the recording."
"We use the solution’s “transparent mode” feature for privileged sessions. It is very easy because it is only a simple configuration for our users. We don't have to modify our network. We install it, configure it, and it works. So, it is super easy. The rollout for our users is seamless."
"We are able to log and get reporting on all privileged activity that is being performed. We like the fact that we can leverage the session recording feature, which is especially valuable when we're dealing with third-party vendors that have to remote into our our boxes and servers to do any work on behalf of the bank. Now, we can record everything they are doing to ensure that they're only doing the changes that were needed. In addition, we use it to leverage knowledge transfer with our internal staff."
"It's one of the best products we've seen. When you start looking at the functionality and use cases and usability of the product, it's straightforward. They designed this product with the end-user in mind, and they also had the sysadmin who is supporting the product in mind. They really did a nice job. Overall, it's a nice product to work with."
"There are a lot of features, so it's going to sound funny, but one of the most simplistic features, the Favorites feature, is the one we like the best. You do a full run-through of configuration to check out a server and then you can save that whole configuration as a favorite. So the next time you go in, you click on the favorite that you configured and it automatically takes you to the end so you can check the server out that much faster. It saves a lot of time..."
"All sessions are audited and they are indexed/searchable through the GUI."
"It has greatly helped improve our security posture. Safeguard has an option where it will reset passwords on service accounts, then go out to those servers where that service account is running as a service and update the password on it. That makes password changes very easy. We can regularly change passwords now and are planning on making it an annual activity, where all the people who own service accounts will go in and make sure all their passwords get changed, updated, and reset."
"The solution transparently integrates into the infrastructure and users do not notice it. I would give this feature the highest rating."
"I'd like to see an easier way to upgrade to larger versions, as well as more best practices that are easier to locate on their support page."
"There should be a single button that can be pressed to dismiss all of the alarms at once."
"The interface is not very user-friendly and it is not simple to use."
"The software is a little bit complicated to understand in the beginning, meaning the implementation. It needs proper documentation so that we can understand the options more easily."
"The solution can lag somewhat as we have a large database."
"The web interface needs improvement. The new web interface that they have is not as easy to manage and we find it to be very slow."
"I'm working from China currently and the only real issue is that, within the country, there's some concern around Cisco and its ability to offer the solution for the long term. As the United States has banned the Huawei version in their country, we feel there may be retaliation in ours and Cisco will get banned as a countermeasure from the government. The future of Cisco in China is in question. Our local partners are worried about the situation."
"The ISE software needs to be improved so that it is easier to administer."
"I would like to see an adjustment with more enterprise architecture. You can buy multiple appliances but you can not fully separate different functions, so scaling might be a bit more complicated."
"The interface is better now, but it still could be improved a lot. It needs more organization, menus, automatic refresh of information, and Web 2.0."
"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."
"From a usability perspective, what we are finding out is that our privileged domain admin users, in particular, want functionality for extending a checkout session. So we are working with One Identity support to see if there's an enhancement that can be made to the product."
"There is room for improvement in the launch module. They built in a launch button but they don't have effective instructions for configuring it to allow it to launch an RDP session. They're working on that, but the button is in the live product. If they were going to install something that wasn't useful, they should have just disabled it and not rolled it out with the product."
"Monitoring of the platform should be easier and more functional so that you can have a clear picture of the running service."
"Transparent mode was too cumbersome, so I don't foresee us being able to use it. On paper when we were initially talking about it, it was definitely going to be the preferred method until we realized the burden it would be on our network guys. Then, we had to step back and reevaluate what we wanted to do. That's when we changed our approach to use the RD Gateway feature."
"I would like to see support for RDP over HTTPS so this product can be used in conjunction with the Microsoft terminal."
"The SMARTnet technical support is available at an additional cost."
"For the Avast virus scan, we pay around USD $95 per machine for five years which includes all updates and technical support."
"The price for Cisco ISE is high."
"The price can be lower, especially for subscriptions. It should be a lot cheaper to have a wide range of customers. The price should be comparable to competitive products like Forescout or Fortinet FortiNAC. Forescout is cheaper for customers looking for a cloud solution."
"There are other cheaper options available."
"The price is okay."
"I think licensing costs roughly $2,000 a year. ISE is more expensive than Network Access Control."
"I think the price is okay."
"Our licensing costs are on a yearly basis."
"It was definitely cheaper than the other two products that we evaluated."
"They offer a fair price for a robust solution."
"The full license is expensive but if you plan to use it in a big organization then it is the best option because it is more flexible."
"It is a bit on the pricey side, but you get what you pay for. You don't want to get anything too cheap because then you get cheap stuff and cheap support. That really never helps anybody."
"The pricing is about $80,000 per 100 servers. There are few elective costs."
"We have a yearly license. The cost depends on how much a company wants to invest in technology. In our organization, we believe in modern digitization and automation processes so we found it affordable. One Identity was not that much less than other solutions and it is not a cheap solution. There were number of cheaper solutions. However, it's the most effective, according to our evaluation."
"Safeguard is cheaper than CyberArk."
One Identity Safeguard securely stores, manages, records and analyzes privileged accounts and access. It is an integrated solution that combines a secure hardened password safe and a session management and monitoring solution with threat detection and analytics.
Prevent security breaches and limit damage by putting in place a privileged access management solution. Get a free 45-day trial, or request a demo of One Identity SafeGuard.
Cisco ISE (Identity Services Engine) is ranked 1st in Network Access Control (NAC) with 23 reviews while One Identity Safeguard is ranked 2nd in Privileged Access Management (PAM) with 11 reviews. Cisco ISE (Identity Services Engine) is rated 7.8, while One Identity Safeguard is rated 8.8. The top reviewer of Cisco ISE (Identity Services Engine) writes "Streamlines security policy management and reduces operating costs". On the other hand, the top reviewer of One Identity Safeguard writes "Improved our security posture by making password changes easy and allowing us to make regular password changes to service accounts". Cisco ISE (Identity Services Engine) is most compared with Aruba ClearPass, Forescout Platform, Fortinet FortiNAC, Fortinet FortiAuthenticator and CyberArk Privileged Access Manager, whereas One Identity Safeguard is most compared with CyberArk Privileged Access Manager, WALLIX Bastion, Fudo PAM, Thycotic Secret Server and ObserveIT.
See our list of .
We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.