Cisco Duo Reviews

Cisco Duo is for multi-factor authentication for all of our users and securing our assets off-campus.

Cisco Duo has benefited our company overall by giving us the ability to have multi-factor authentication. At the time, we didn't have any other in-house options. While going through the process of identifying a vendor, Cisco Duo was by far the cream of the crop, so we went that direction, and we've been there ever since.

My main use case when using Cisco Duo is MFA into everything: email, making teachers MFA, and mostly email. We are rolling it out to other on-site resources that we have as well.

It has helped us significantly since we have many different applications and things of that nature to protect. Cisco Duo provides protection as we don't have a full cybersecurity team.

We have been using Duo Security for authentication in our in-house sales operations technologies. Therefore, as a Cisco partner, we regularly recommend Cisco Duo Security to our customers to help secure their VPN environments or connectivity to business-critical systems.

For our customers, Duo Security is a significant advantage because it provides them with a straightforward method to implement MFA across their entire environment. Moreover, once we delve into the more advanced features of Duo Security, it enables us as a partner to engage in ongoing discussions regarding security strategies with our customers. Initially, we may only introduce them to MFA during the onboarding process. However, as their security strategy evolves, we can leverage Duo to perform additional tasks such as risk-based assessments and deployments, thereby assisting in the development of their security measures.

Duo Security helps secure our infrastructure. It serves as our gateway layer of protection, allowing us to understand who is logging in and why. We conduct risk-based assessments on each user to determine whether their actions are appropriate or not. Duo Security is not a comprehensive security solution, but it is undoubtedly a crucial component, a critical layer of security. This aspect resonates with our customers consistently.

Their ability to reduce the risk of a breach is of utmost importance. It serves as the primary line of defense. Currently, credential gathering and leaks are widespread in the market. By implementing an MFA solution like Duo Security, we can effectively prevent these issues. When we put a stop to credential harvesting, it becomes much harder for attackers to infiltrate and navigate our network. Therefore, Duo Security acts as an excellent first line of defense.

User authentication and device verification are the methods through which we envision our customers navigating in order to prevent identity-based attacks. Initially, when we employ Duo Security, it is a straightforward implementation of multi-factor authentication. As we progress, we enhance security measures by incorporating device risk assessment and potentially even regional assessment. This includes considerations such as whether the login is being attempted from a specific IP address. These gradual enhancements contribute to the establishment of an additional layer of protection. Thus, it is not necessary to implement a completely disruptive strategy right from the start. Instead, it is possible to gradually adopt and integrate this approach, following a crawl, walk, or run methodology.

The Duo Security self-service portal helps free up our customers' IT staff time, allowing them to focus on other projects. As a Cisco partner, we have received feedback from our customers that the portal is highly interactive, enabling them to easily navigate and resolve issues. After setting up their Duo environment, we rarely receive callbacks for assistance, as the portal is intuitive and empowers users to handle everything they need on their own.

The appealing aspect of Duo Security is its ability to establish trust for every access request, regardless of its origin. It is a cloud-based solution with excellent API integrations. It doesn't matter where or how a user logs in; Duo will be there to protect the user, whether it's through MFA, risk assessment, or similar methods. 

It is extremely beneficial to our customers that Duo Security considers all resources as external. Our customers frequently inquire about a zero-trust model, and this is a key component of it. Unfortunately, I would love to say that there is a simple solution for zero trust where we can just deploy this solution and be done with it. But that's not the case. It requires a layered approach, and that's what we convey to our customers. Duo Security is definitely a part of that.

Duo Security has helped improve our customers' cybersecurity resilience. Internally, it protects our users from accessing sales operations-based environments. Additionally, our customers use it regularly to protect business-critical applications.

My main use case for Cisco Duo is MFA.

You can do online and offline authentication. It benefits my organization by adding an additional layer of security and keeping us more secure, whether the person is corporately connected or out in the field.

The feature that my organization started using more recently in Cisco Duo is offline authentication. It has given us the evolution into offline abilities for when they are out in the field or traveling, and they are not connecting to a known network. 

Our general use cases are for multi-factor authentication for our networking and data center environment devices. We also do some SAML for our network monitoring tools with our different partners in our environment. With SAML, we use it for RADIUS and TACACS authentication.

The solution has definitely made our administrative access and privileged access to our data center architecture more secure by using multi-factor authentication. It's no longer just a password. You need to have Duo Push. It also helps the security team keep track of when people log in a lot easier, and you can just go to Duo Security to do that. The multi-factor aspect for us was the big reason why we chose Duo. We are Cisco, and it's integrated with Duo Security.

We actually partner with Duo Security. We use the API to send a step-up on your phone for granting access to normal doors. You can tap your physical fob card or any other device at the door, and then receive a push notification. Depending on the success or failure of the authentication, we can either grant or reject access at the door. So it provides two-factor authentication. We use Duo for that purpose, as well as for an API and our internal VPN.

However, with our product, we use Duo Security end-to-end. Duo Security has a blind spot when it comes to physical security. It doesn't cover scenarios where someone gains physical access to our network room, which involves different technologies outside of its scope. 

From my perspective, it can't be considered truly end-to-end in that regard. Nonetheless, Duo Security offers significant value for network security and VPN access. If we combine our product with Duo Security, then we can achieve comprehensive end-to-end security.

We work for businesses, B2B. So we work in the data center space. A lot of our work focuses on providing the best authentication at your access points, be it a door or a data center cabinet. 

We can integrate our device without requiring you to replace your card, so we can put our device in. You can keep your card. You don't have to replace it. You can simply tap your card, even if it's in your wallet or for home use. The process remains the same. I tap my card, receive a push notification on my phone, and then press enter to gain access. It's great because it ensures that it's actually me and not someone who found my card.

The product has helped our organization by providing easy-to-set-up security. Additionally, through our partnership, we can offer a use case that adds value to our customers. They don't have to deal with the hassle of replacing their existing systems; instead, they can extend their investment in Duo Security and apply it to their access points. This makes it easier for us to deliver value to our customers.

Having that second-factor validation with Duo, or any multifactor authentication solution, is highly important. There are numerous options available in the market. Whether it's Duo or others, the key is to have that additional layer of security. In our organization, we utilize Duo Security across various use cases, which makes perfect sense.