Cisco Duo Reviews

We use Duo Security for multi-factor authentication.

Duo Security helps with multi-factor authentication. It gives another level of security for authentication and logging devices. It's just more secure.

It does a very good job of securing our infrastructure. It enables us to be more secure and provides another level for our users and admins.

It definitely increases security in our work environment. I've also used it at school for logging into my system there. It's good for both scenarios. It's very user-friendly.

It's very good for user authentication and device verification for helping to prevent identity-based attacks. The only thing would be if you lose your phone or something like that, then it breaks the whole setup, so it has been very successful in that.

Now that it has been implemented, it has freed up our IT staff's time. It has mostly been set up and go. We then forget about it till we have to update it.

It's very good for establishing trust for every access request, no matter where it comes from.

Duo Security considers all resources to be external which is an important aspect because of the way our network is set up. We've remote sites, and everyone at those sites also has the requirement to use Duo Security.

It's another level of the security level mechanism that we have. At this point, the way cybersecurity is going, adding more options that are not very heavy lifting for a user is very important.

The flexibility is the most valuable feature. We use it for the app on the phone. When we're at different locations, the phone is usually there, so we can use that. It has just been a very flexible option.

For upgrades, there should be a better notification of when they're coming out. We always have a testing phase, so we need to be ahead of it. It takes us longer before we can upgrade to the newest version.

I've known Duo Security for four years.

Their support is great. We use them a lot. It depends on what issues we're having, but we always get any service, so I'd rate them a ten out of ten. They're very responsive and very knowledgeable. They're more eager at points to get things figured out than we're ready to, which is good, but we have to step back.

Positive

We didn't use any other solution before. Its integration with the rest of our products probably made us go for it.

Its deployment is easy, but getting users bought in and starting to use it could be a bit difficult. That comes with any big change.

Our organization has definitely got a good return on investment on it.

I haven't seen it in a while, but it's at par with everything else licensing-wise.

Overall, I'd rate Duo Security a ten out of ten.

We use a number of Cisco products specifically, Cisco Umbrella and Duo.

Our primary use case is to enhance our client's security and their digital security model; Secure DNS, malware protection, MFA, and MDM services for their premium devices and their office devices.

Cisco has improved our organization by making the attack vector smaller and improving the security of our customer's networks and by extension, enhancing our reputation.

Using Cisco has saved us time and money. It also saves us from the threat of a loss of money by cyberattacks. It saves us months of technical effort and loss of billable hours.

It has also helped to reduce our operating expenditures.

Multifactor authentication and secure two-factor authentication are the most valuable features. It's been around for a while, but now it's becoming an enforced behavior as opposed to something that you used to do as optional. 

When it comes to securing infrastructure from end to end so that we can detect and remediate it, it's pretty good. It's a little proprietary. A lot of it is based around its own ecosystem and we've started looking at other solutions that are more open-source or a bit open to more collaboration. That's something that we're picking up with Cisco.

I have been using Cisco solutions for two to three years. 

Their support is very good, especially at an executive level and account director level. They'll always find you the right person if they're not the right person to help you do something.

Positive

My own company and our customers have seen ROI from using Cisco. The customer specifically does not lose time anymore in cyberattacks, malware, and devices being affected or hijacked.

I'm not a big fan of relicensing products every year or two years, but that's the model at the moment. I prefer to go back to licensing perpetually or permanent licensing.

We chose Cisco because it's very good, very well understood, has a good reputation, and has a strong support community around it. There is good technical expertise if you need it.

I would rate Cisco an eight out of ten. 

We use Duo, Client, and Umbrella. 

Our primary use case for this is for our clients to be secure.

We are at the beginning of using Umbrella. We use a traditional Cisco proxy. Now, with Umbrella, it's easy to administrate. It helps save us time.

Everything is all in one dashboard, so it makes the administration very easy.

Cisco Secure solutions are great for detecting and remediating threats across our infrastructure from end to end. The integration of Talos in SecureX is great. Everything is clear in one dashboard. You have your dashboard and can have one look in your dashboard and see everything. It's on one pane of glass. 

Smart Licensing needs improvement. It's terrible. We have problems with it every year and we need to involve support to fix it. 

Our appliances are connected to Cisco Smart Center but they don't get the license. That's our pain point. But then when they work, they work. 

I liked the traditional licensing. We get the license key, pass it, and it works.

We have been using Umbrella for one month and we just started using Duo. We have been using classic Cisco for seven years. 

The support is fast and good.

The first level of support asks a lot of questions. We have a partner who does it for us. If we have a problem, we send it to them and they contact Cisco.

For the first level of support, they always say it's the firewall or the network and we need to prove that it isn't. It's too much back and forth. It's a lot of emails. Maybe it's faster when it's on a call. 

Positive

Cisco Duo was really easy to implement. 

Umbrella was a little bit difficult because of the documentation. Not everything was documented. We got help from Cisco and the internet. 

We used a Cisco consultant for the implementation. They were great. They know nearly everything. For Cisco deployment, they need to know our network, how it works, and so it's not so easy for them, but they did great. When I have questions, I get answers.

Cisco isn't cheap but it's good. 

Cisco DNA Center is great, but it's too big for our environment, we don't need it in our company. Before we had classic Cisco infrastructure, now, we are switching to Meraki because it's cheaper and it's not big like DNA Center. DNA Center is great, but it's too big. You need a lot of IT to get it to work. 

We also evaluated Unify. Cisco is the leader and we started with Cisco. It's good, so we stay with it.

I would rate it a seven out of ten. It's not like Cisco Duo. Not everything is on one application. It should be easier to get everything in one application, where you can see everything. I would like to see one pane of glass so that we can plug everything into one application in order to see the performance.

The support should also be improved.

Our primary use case is multifactor authentication for our VPN users. We didn't have multifactor authentication before. After we integrated Duo Security with our systems, everyone has been using it, and it has given us peace of mind when dealing with VPNs.

The most valuable feature of Duo Security is the ability for the user to easily approve access. The application prompts the user, and they can see the location and the IP address. This makes it easy for the user to approve it and go through the process of logging in to the VPN.

Duo Security can be used for any type of authentication apart from that for VPNs. It saves time and prevents problems because it is user-friendly.

Integration between Duo Security and FTDs needs improvement. Integrating Next Generation Firewall safety with Duo Security currently requires a proxy agent between Active Directory and the appliance. It's an additional factor that we need to think about. It would be great to have direct integration with FTD so that we don't have to worry about middleware products. For the rest of the Cisco Secure solutions, the APIs need improvement.

Duo Security needs to improve the delivery of text messages to the users. This has been a big pain point for us over the years. Though we understand that the local telecoms are the ones responsible for the final delivery of the message, there should be a way to improve the process. Some users don't use the application and rely on SMS messages. It is a problem at times because the messages are not delivered.

We've been using Duo Security for almost six years.

We use Cisco Umbrella, ISE, FirePOWER Services, Next Generation Firewalls, FTD, ASA, and Duo Security.

The stability of Duo Security is great. We receive notices for any problems or issues in a very timely manner.

The solution is generally easy to scale. If you have the ability to deploy Duo Security yourself or can leverage third-party integrators, there should not be any issues with scalability.

Cisco support for Duo Security has been great. We haven't had many cases, and most of the ones we have had were related to SMS and text messaging delays.

On a scale from one to ten, I'd rate technical support at eight. They are quick to provide solutions but can improve on working with third-party service suppliers so that end-user experience is better.

Positive

Deploying Duo in our environment was very easy because of the pre-staged configuration. It was very quick, and in one to two days, we had a VPN concentrator using Duo Security.

Duo Security was initially deployed using a consultant, but afterward, we deployed multiple additional VPN concentrators ourselves.

The return on investment has been huge in terms of protection from cyber-attacks. We have been able to protect our employees by having multifactor authentication. This is invaluable for companies in the current threat landscape.

In terms of support, it's always great to have happy users who are able to easily log in to our environment through VPN without having to bother about non-working software agents or any other type of authentication platforms.

My advice to you if you are evaluating Duo Security would be to do your research and compare it to other competitors. If you are a Cisco-oriented company, you will see that there are several benefits to using Duo Security. You will also see that it has the edge over other solutions on the market.

On a scale from one to ten, I would rate Duo Security at eight. The stability and user experience are great, but there's room for improvement in terms of text message and SMS delivery.

We mostly use it for our AnyConnect VPNs and two-factor authentication.

We use Firepower Defense as a firewall, and we have implemented the IPS system on the firewall. Previously, we had ASA, and two-factor authentication was with the code, but now, it's with a push notification. It has somehow made it easier for non-IT employees to easily connect to the VPN, but it, as such, hasn't saved any time. It didn't reduce any tasks. 

It hasn't helped consolidate any tools or applications because we're not using any other security components that can be integrated with it.

The two-factor authentication is valuable because that is the use case for which we are using it.

We first deployed Duo Security for our company with the VPN, and afterward, about a year later, we implemented it for a customer of ours where we offered infrastructure as a service. When I tried to establish a VPN connection through Duo Security, it did not function well on that version, which was the latest one at the time. So, I had to make a copy of the machine and then implement Duo Security with the VPN because it did not function well with the newer version. I didn't know why, but it did not function. I haven't tried to update it since then, but that could be an area of improvement.

I've been using Duo Security for almost four years.

It's stable.

It has good scalability.

They were helpful and fast 90% of the time. They have knowledgeable tech engineers. We didn't have many problems, but any problem that required a case to be opened was resolved quickly. I'd rate their support a nine out of ten.

We didn't use a similar solution previously. We went for this solution because of the consistency of Cisco products and the best cases that it provides. It fulfills our needs as a company.

It was straightforward. I had some issues, but mostly, I followed the complete path from sandboxing to testing and then going live in production.

We have two people, me and my colleague, but it's mostly me.

I am not involved in its pricing, but we haven't yet seen an ROI.

I'd recommend using it. You can read about the product and implement your infrastructure.

I'd rate Duo Security a 10 out of 10.

A lot of our use cases were for customers to get their cyber insurance renewed. It was a requirement and they had to scramble to figure out a way to get multi-factor authentication in place.

It's made things easier for our customers with all the different ways to sign in. It's pretty painless once they get used to it. Once customers understand it, it checks all the boxes for them. It's easy for them to use. It also works with a lot of Cisco's other products.

• The easiest feature is the token or the app on your phone that gives you the code to log in.
• It provides a single pane of glass for management and that helps optimize the user experience.
  
• We get fewer threats to remediate due to the two-factor authentication, which does not allow as many threats through.
• It does a good job of establishing trust for every access request. It checks all the boxes I need and, as a reseller, it makes it easy for me to sell. I'm happy with it.

Sometimes, it's a little harder for customers to adopt.

Also, when it comes to the single pane of glass for management, there are some mixed reviews and opinions that say there could be some other options. But those are very unique cases.

The majority of my customers are really good with just the two-factor authentication and don't really take advantage of a lot of the extra bells and whistles that it has. Getting them to adopt more of those features, versus asking for anything new, would probably be where my first step would be.

I have been using Duo Security for about a year and a half.

The stability is good. I've never had an issue with it crashing or having bugs.

I've never had anything outgrow it. That's for sure. You just add licenses.

Tech support has been great. I've only had to open two cases and they've been very helpful and made it straightforward.

Positive

I've been involved in the deployment of Duo Security a few times and the documentation makes it straightforward.

Overall, the pricing is fair. Customers can wrap it into their Enterprise Agreement, making it easier for them to solve their issues.

We're a Cisco partner, so once the two-factor requirement kicked in and became mandatory for our customers' cyber insurance, we just gravitated right to the Cisco solution.

The proofs of value that we've done are really what sells it. You put it in, get them using it, and then you just buy the license and you don't have to go back.

Employees start off saying, "This is another thing we have to do," but once they get it set up the way they like it, it's very easy. And if anybody gets locked out, we get an email and it's easy to unlock. If the unions were able to adopt it, anybody can.

Overall, it meets all my needs, including price point, and I've been very happy with it.

We use it for two-factor authentication so that we're not just relying on the username and password but also on two-factor authentication, whether it's through SMS or through the application.

People use very weak passwords, so it's very easy for attackers to get in and compromise accounts. This is why we need two-factor authentication and why we are with Duo Security. It helps us to not only rely on the username and password but also implement another layer of protection. Attackers are not going to be able to compromise accounts because of the two-factor authentication.

It has definitely reduced embedding. We found a lot of problems with attackers being able to compromise accounts. Now, when they try to access accounts, they are not able to do so because there is an added layer of protection. Once we know that a username and password are compromised, we just reset the password to protect the company.

I like the two-factor authentication, which gives another layer of protection.

It's very important for our organization that this solution considers all resources to be external. Our company has thousands of people who access from outside, and it's hard for us to know which one is legitimate and which one is illegitimate. Having two-factor authentication with Duo helps us to implement a second layer of authentication so that we know for certain that the people who are accessing accounts are legitimate.

It's a great solution for securing access to the applications and network because we can integrate the solution with all types of applications. The system has the ability to integrate customized applications built in-house and those that were brought in from outside. It integrates with network access as well, such as when you want to access a different node. It has multiple ways to authenticate applications, network access, etc., which helps us a lot to spread the solution across all our assets.

That the solution helps support hybrid work is very important to our organization because people access accounts from everywhere. Duo Security gives us the second layer of protection.

The solution provides a single pane of glass management to help us monitor all of the access.

Duo Security helped us remediate threats more quickly.

It is not easy to maintain network connectivity.

Duo Security should have more customized use cases. For example, if a client needs to have more customization, it would be better to connect directly with Duo's R&D to try to discuss the issues together in order to add customizations.

I've been using this solution for the last two years.

The stability is definitely good.

The scalability is great. The solution is deployed in multiple locations, and we have around 30,000 people.

The technical support is good. They are helping us, and I would give them an eight out of ten.

Positive

We switched to Duo Security because it's easier to implement and can be spread across all the applications.

We have definitely seen an ROI from a protection perspective. It helped us a lot to protect against compromised accounts.

Price-wise, it's not cheap, but it's not expensive at all either. It's in the middle.

I would rate Duo Security at nine on a scale from one to ten.

We use it for MFA to secure our Outlook webmail and some other applications as well. We use Duo for pretty much anything that uses MFA. 

We were looking for increased security. We wanted to make sure that the person who is trying to log in to our services is actually who they claim to be. We wanted to lock down our applications more and provide extra security.

We have some on-prem servers for the gateways and it's in the cloud as well.

It has definitely made our company more secure. It's pretty easy to incorporate into any sort of application you want to. We also use it for single sign-on for certain applications and that has been nice. People hate passwords.

It's really great for remote workers and a hybrid workforce nowadays, for people who are trying to access their VPN or any applications from outside of the company. It helps us make sure it's someone who should be accessing those things. It does a good job.

It's definitely a factor in achieving that Zero Trust.

In a way, it helps us remediate threats more quickly. If someone is trying a brute-force attack, trying all the passwords they can, and they're not getting a response through Duo, you can see certain security threats that are happening and remediate them.

Duo has also had a big impact on employee morale. People like it. They feel that their data is more secure. Resiliency is very key to keeping people doing their jobs. Cyber security resilience has been very important for us. It used to be that security was not to be the main focus, but it's extremely important now. There are a lot of ransomware attacks and people need to be very cognizant of that. It's important to have redundant and resilient systems in place to support that.

It's nice to have that push notification with the app and it's pretty easy to use. Our users are usually pretty open to it, and it's pretty easy to onboard people.

It also seems like it's accurate, and you can add multiple devices to your account.

In addition, typically, if it detects that you're on an internal network, you can bypass the Duo portion of it. That way, people don't have to do MFA when they're on campus.

Another feature is the single pane of glass management. That's important for analytics and also for troubleshooting. It means there's one place that you go to at least start the troubleshooting process. It also helps with the user experience because you can manage all the user accounts from that one spot, including setting up new users, making adjustments, editing their preferences, et cetera.

It could be a little bit more intuitive when it comes to the sign-up process. I know they send out an email, but sometimes our users get a little confused. It could be an end-user problem, but Cisco could work on that a little.

I've been using Duo Security for about two years.

It seems very stable. I don't think there has been any point at which people have tried to use it and it has failed.

The scalability seems fine. As long as you get the licensing to support it, you can add as many users as you'd like.

We have five or six offices locally, and a few more in different states in the US. We also have one in Shanghai, but they're doing their own thing there. But everyone in our US offices uses it, they all get enrolled. Typically, people will install the app on their phones although they don't have to.

I don't think we've had to use technical support too often, which is a good thing about the product itself.

We didn't use an MFA before Duo.

When the solution was rolled out, I wasn't with the company, but we then expanded it in different ways and I have been involved in that. In terms of the initial deployment, from what I can tell, it was relatively straightforward. And from what I've seen since, it hasn't been too hard to expand it to other services.

It's definitely a valuable product to have.

We may have evaluated other options at a surface level, but we didn't really go too deeply into them. We pretty much went with Duo out the gate.

I would tell leaders who want to build more resilience within their organization to do it right now. It's definitely important and there are a lot of resources out there that can help them on that path. Duo helps with that.

It does what it's marketed to do.