Share your experience using Symantec VIP Access Manager

I am an IT system support person, and my use cases with Cisco Duo started out with helping clients at my firm and the firms my contracting agencies had by teaching them how to set up Cisco Duo and understand how to use it. Eventually, some of the systems I have access to on my own, usually the corporate systems and employee portals, were Cisco Duo-protected. It has been a split between using Cisco Duo and Microsoft Authenticator, depending on how the MFA has been set up. I started out as IT support, helping people install Cisco Duo on their Android and Apple devices, and I believe they actually had a computer client. Eventually, I had to use it in my own work to authenticate and gain access to the systems I support. Moreover, I have seen a lot of it used to access employee portals, either by end-user employees or my own employee portals.

My last access to Cisco Duo involved helping people either activate their Cisco Duo accounts on their individual Apple or Android devices, or if they were locked out, unlock their accounts or move them over to a new device.

The features I use in Cisco Duo include Duo Pushes to confirm my identity to the device, and eventually as MFA security was increased, I actually had to use exchange passcodes. Sometimes, I have to go into the site and get into Cisco Duo to retrieve the passcode, and many of them have been two-factor, where the sites send a passcode that I have to enter into Cisco Duo. It has been more of the latter.

I have not seen issues with lagging or crashing on Cisco Duo's end; it was usually on the client end, often because someone set up a bad upgrade or there were connection issues with the Cisco Duo cloud through the administrative site.

As support, I do not find it an issue with Cisco Duo product itself; it is more an issue of organization administration. Often, people do not receive expiration messages, and sometimes, for security reasons, accounts get disabled without notifying the end user, so they mistakenly think something has gone wrong when it really just needs to be re-enabled on the external system. It is primarily an issue on the administrative side of the firm I am working for.

I am familiar with Cisco Duo and have probably been using it since around 2020.

Cisco Duo seems very scalable. In my experience, I started with a small-medium business, and in my last contracting position, it was a large one for a major worldwide airline that had hundreds of thousands of devices that could use Cisco Duo, and it scaled very well. The administrative site was also very easy to navigate for locating people and devices. I also have a background in computer asset management, so I have the skill set to locate device records easily.

In terms of quality and speed of support for Cisco Duo, I find it just as fine as any other Cisco product. It is simpler at the endpoint; there is much less involved in calling technical support to resolve issues compared to other Cisco products. I have also dealt with firewalls and VPNs, and I can say that Cisco Duo administration is much less involved than other Cisco areas. I would rate support for Cisco Duo a 10, as I have never had a negative experience.

Positive

My experience with MFA is primarily Cisco Duo and Microsoft Authenticator, and I have used them both similarly, either as pushes for allow or deny or as stronger MFA requirements such as exchanging passcodes. From my experience, Cisco Duo seems a lot easier to install and operate. In helping add accounts to either my devices or to the devices of the people I am supporting, both systems work well. I can get passcodes or utilize QR codes. One thing I noticed about my current firm is their initial hesitation to consider QR code exchange secure, but eventually, it was re-enabled to reduce support times. As an administrator, I have done both, pushing activation to pre-installed devices already registered to a system or actually sending people a QR code to their email, and both methods worked fine with personal and corporate email.

The setup of Cisco Duo is easy. Most of the time, the setup took me walking the end user through the installation over the phone, but if they understood how to get to their App Store or Play Store, it takes probably under two minutes. Most of it depends on wide area network or internet speed; activating directly on a client device versus sending an activation email makes a difference. If it is all set up and requires only sending an activation code message, it is about a minute. Cisco Duo installs very quickly on Android and Apple devices, provided the Wi-Fi connection is good.

From what I was involved in with Cisco Duo, we actually conducted Cisco Duo pushes through the management systems, enabling that through MDMs, the Bomgar. I found it pretty easy to grab the latest version of the Cisco Duo installer to update the packages on our management systems. I do not remember having any problems; it is one of the easier applets to package or to already find packaged.

I am currently between jobs or contracts, but I believe for the MFA administrator, it would help if they set up the filters for gathering the data. Cisco Duo seems very scalable. In my experience, I started with a small-medium business, and in my last contracting position, it was a large one for a major worldwide airline that had hundreds of thousands of devices that could use Cisco Duo, and it scaled very well. The administrative site was also very easy to navigate for locating people and devices. I also have a background in computer asset management, so I have the skill set to locate device records easily. I have given this review an overall rating of 10.

The primary use cases for Cisco Duo include two-factor authentication from the internet and SSL VPN integration with Cisco Duo.

My experience with Cisco Duo's strong security authentication system has been good; it performs very well when logging in.

I have not used Cisco Duo's conversational AI interface for admin tasks.

My impression of Cisco's Identity Intelligence capability to detect and respond to identity-based risks is that it is good, but the problem is that their reporting is not good compared to Palo Alto and Fortinet; the reporting would be a struggle.

I do not utilize the Advanced Identity Threat Detection and Response feature because we have Cisco IPS, so we are using that instead.

Cisco Duo could be improved by making it available on Microsoft Azure.

I would rate Cisco Duo seven out of ten because of the issues I have already mentioned. The Cisco firewall is a bit slow, and I am uncertain whether they have a mobile pass feature in Cisco Duo.

I think a mobile pass feature should be an alternative option nowadays in case there are any issues in the telecom sector.

I have been working with the product for more than two years.

There are no new features or functionalities in Cisco Duo that my organization has started using recently. We have two-factor authentication with FTD, and as I mentioned, we are moving to the cloud, so we will deploy Cisco Duo on the cloud for our cloud-hosted applications.

I do not think Cisco Duo is the best option on the market thus far.

I used FortiAuthenticator and Microsoft Authenticator before Cisco Duo.

I think the pricing of Cisco Duo is acceptable; we know how to reduce the cost.

The choice depends on how the data centers are moving. If they are completely moved to the cloud, then we will use Microsoft.

I have experience with Cisco Duo. I have been quite satisfied with Cisco Duo. The implementation of Cisco Duo is straightforward. I am a customer of Cisco. I would rate this product seven out of ten overall.