Microsoft Intune is a comprehensive cloud-based service that allows you to remotely manage mobile devices and mobile applications without worrying about the security of your organization’s data. Device and app management can be used on company-owned devices as well as personal devices.
Consider the Microsoft Enterprise Mobility Suite rather than choosing specific sub-components, e.g. only Microsoft Intune.
Microsoft Intune is a cost effective choice. It is less expensive than other products on the market.
Consider the Microsoft Enterprise Mobility Suite rather than choosing specific sub-components, e.g. only Microsoft Intune.
Microsoft Intune is a cost effective choice. It is less expensive than other products on the market.
Microsoft Entra ID, previously known as Azure AD (Active Directory), is Microsoft's cloud-based identity and access management (IAM) solution. Designed to help organizations of all sizes manage user identities and create an intelligent security perimeter around their cloud and on-premise resources. Microsoft Entra ID or Azure AD is integral to the Microsoft 365 and Azure ecosystems. It provides a robust set of capabilities to manage users and groups and secure access to applications in a centralized, streamlined manner.
Microsoft Entra ID (Azure AD) is a login system, morphing into a sophisticated identity and access management (IAM) solution for the modern, hybrid workplace. Imagine a single vault for all your digital keys – that's the essence of Entra ID's identity management. It acts as a central repository for user identities, encompassing usernames, passwords, and even additional attributes like department or employee role.
These capabilities enabled simplified administration using a unified platform for adding, modifying, and deleting user accounts. Users no longer need to remember login credentials for a plethora of applications. Entra ID streamlines access by using the same identity across various cloud services and on-premises resources (if integrated). Centralized identity management allows for stricter enforcement of security policies and password complexity requirements across the organization.
Authentication sits at the heart of the solution, ensuring only authorized users gain access to sensitive resources. It employs a multi-pronged approach:
For organizations with on-premises infrastructure, Microsoft Entra ID (Azure AD) offers hybrid identity options. This allows for a smooth integration between on-premises Active Directory and Entra ID, providing a consistent identity for users across both environments. It enables organizations to leverage their existing investments in on-premises infrastructure while taking advantage of cloud scalability and flexibility.
In conclusion, Microsoft Entra ID (Azure AD) is a comprehensive IAM solution that addresses the complex challenges of managing and securing identities in a cloud-centric world. Its blend of ease of use, security, and integration capabilities makes it an essential component of modern IT infrastructure, supporting both operational efficiency and strategic business objectives.
The licensing cost is a bit prohibitive.
Licensing is easy.
The licensing cost is a bit prohibitive.
Licensing is easy.
Prisma Access by Palo Alto Networks provides consistent security for all users and applications across your remote networks. Prisma Access grants users safe access to the cloud and data center applications and the internet as well. In addition, the solution combines all of your security and networking capabilities into a single cloud-delivered platform, enabling flexible hybrid workforces.
Actually the solution is very expensive. I don't know the particulars since the purchasing team dealt with it.
The pricing for this solution is on the higher end.
Actually the solution is very expensive. I don't know the particulars since the purchasing team dealt with it.
The pricing for this solution is on the higher end.
VMware Workspace ONE is an intelligence-driven digital workspace platform that delivers any app on any device. It integrates access control, multi-platform endpoint management, and application management. With the VMware Workspace ONE platform, IT teams can deliver a digital workspace that includes the devices and apps of the company’s choice, but with security and control.
You should take out a dedicated license agreement of your MDM fleet and invest heavily in innovating in this space.
I have no opinion about the pricing of the product.
You should take out a dedicated license agreement of your MDM fleet and invest heavily in innovating in this space.
I have no opinion about the pricing of the product.
CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.
Pricing and licensing depend on the environment.
It is not a cheap solution. It is expensive as compared with other solutions. However, it is one of the best solutions in their domain.
Pricing and licensing depend on the environment.
It is not a cheap solution. It is expensive as compared with other solutions. However, it is one of the best solutions in their domain.
SailPoint is the leader in identity security for the cloud enterprise. We’re committed to protecting businesses from the inherent risk that comes with providing technology access across today’s diverse and remote workforce. Our identity security solutions secure and enable thousands of companies worldwide, giving our customers unmatched visibility into the entirety of their digital workforce, and ensuring that each worker has the right access to do their job, no more, no less. With SailPoint at the foundation of their business, our customers can provision access with confidence, protect business assets at scale and ensure compliance with certainty.
SailPoint IIQ is the best of best. That is reflected in the pricing of the solution. The pricing is based on the number of identities.
They are expensive.
SailPoint IIQ is the best of best. That is reflected in the pricing of the solution. The pricing is based on the number of identities.
They are expensive.
Jamf Pro is a mobile device management software designed to help organizations and businesses automate Apple device handling-related workflows and processes. It features zero-touch deployment that enables users to automatically enroll new Apple devices, and also configure and deploy these devices swiftly and efficiently. It comes with inventory management capabilities, Apple mobile device management features, and an enterprise app store. Jamf Pro also allows users to deploy and access their mobile apps licenses in bulk. When it comes to using the app store, end users don’t need to ask for assistance from helpdesk agents in order to download, install, and update applications.
I think it pays for itself to let Jamf host the server.
The setup cost is in the training, which is the most important step of your journey.
I think it pays for itself to let Jamf host the server.
The setup cost is in the training, which is the most important step of your journey.
HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management.
I am using the open-source version of Vault and I would have to buy a license if I want to get support.
It's free, it's open-sourced.
I am using the open-source version of Vault and I would have to buy a license if I want to get support.
It's free, it's open-sourced.
Okta Workforce Identity is a powerful solution that provides single sign-on capabilities and centralized access control for multiple applications. Its most valuable features include workflows, multiple SSO protocols, and Active Directory integrations. It helps organizations by simplifying access management, improving security with multi-factor authentication, and streamlining user provisioning. It is particularly beneficial for large employers, retail chains, and organizations with a significant number of employees. Okta Workforce Identity is easy to use, scalable, and reliable, making it an essential tool for identity and access management.
License is around US$20,000 annually.
It is costly for large companies.
License is around US$20,000 annually.
It is costly for large companies.
ManageEngine Endpoint Central is a unified endpoint management (UEM) solution offered by ManageEngine, a division of Zoho Corporation. It is designed to help organizations efficiently manage and secure their endpoints from a centralized platform. Endpoint Central provides a comprehensive set of features and capabilities to streamline endpoint management and enhance security across diverse devices and operating systems.
The licensing is very easy to understand and pricing is right for what you get.
Per desktop cost is somewhere around $50 or $100.
The licensing is very easy to understand and pricing is right for what you get.
Per desktop cost is somewhere around $50 or $100.
Cloud Identity is an Identity as a Service (IDaaS) and enterprise mobility management (EMM) product. It offers the identity services and endpoint administration that are available in G Suite as a stand-alone product. As an administrator, you can use Cloud Identity to manage your users, apps, and devices from a central location - the Google Admin console.
We probably spend about $50,000 a year on licensing.
Licensing fees are on a yearly basis.
We probably spend about $50,000 a year on licensing.
Licensing fees are on a yearly basis.
Cisco Duo is a cloud-based access management platform that secures access to all applications, for any user and device, from anywhere. It’s designed to be both easy to use and deploy, while providing complete endpoint visibility and control.
During testing we are allowed a certain number of licenses for free.
Its price is reasonable. It is not highly expensive.
During testing we are allowed a certain number of licenses for free.
Its price is reasonable. It is not highly expensive.
SOTI MobiControl, our award-winning mobility management solution provides the ability to securely manage mobile devices and connected peripherals, applications, content, and email. With MobiControl's advanced security and management features, businesses have granular control of how mobile devices are used for business, and how data is accessed to ensure sensitive corporate information is kept in authorized hands only.
The solution that we were using costs less, but it didn't offer as much as Soti. It's comparable if you look at it over the five-year term.
SOTI's pricing seems to be competitive.
The solution that we were using costs less, but it didn't offer as much as Soti. It's comparable if you look at it over the five-year term.
SOTI's pricing seems to be competitive.
IBM MaaS360 is an EMM solution that allows you to configure devices for enterprise access and protect corporate data on smartphones and tablets – all from a single screen. As a robust integrated cloud platform, MaaS360 simplifies mobile device management (MDM) with visibility, rapid deployment, and control that spans across apps, mobile devices, and data. It also secures apps, laptops, smartphones, tablets, wearables, desktops, the Internet of Things (IoT) devices, and data so you can rapidly scale your remote workforce and bring your own device (BYOD) initiatives.
It requires zero investment in infrastructure since it is 100% cloud.
Fees are monthly and it's approximately $8 per user.
It requires zero investment in infrastructure since it is 100% cloud.
Fees are monthly and it's approximately $8 per user.
Cloudflare Access is a powerful identity and access management solution that provides secure and seamless access to internal resources. It eliminates the need for traditional VPNs and allows organizations to enforce granular access controls based on user identity and device posture. With Cloudflare Access, users can authenticate using their existing identity providers, such as Google or Okta, and access resources without exposing them to the public internet. This ensures that only authorized users can access sensitive data and applications.
The prices are slightly expensive.
The pricing is somewhere in the middle. I would rate the pricing a seven out of ten.
The prices are slightly expensive.
The pricing is somewhere in the middle. I would rate the pricing a seven out of ten.
PingFederate is an enterprise federation server that enables user authentication and single sign-on. It serves as a global authentication authority that allows employees, customers and partners to securely access all the applications they need from any device. PingFederate easily integrates with applications across the enterprise, third-party authentication sources, diverse user directories and existing IAM systems, all while supporting current and past versions of identity standards like OAuth, OpenID Connect, SAML and WS-Federation. And it can be deployed on-premises or in the cloud, so you can support today’s needs and future-proof your business for tomorrow’s requirements.
CyberArk Identity is a versatile identity management solution suitable for a wide range of enterprises. CyberArk Identity users have expressed satisfaction with various aspects, highlighting its quality, functionality, and value for money. They appreciate its user-friendly interface and the convenience it offers. Overall, the user reviews indicate a positive experience with the product or service.
We find that the pricing and licensing of this solution is adequate, as compared to the other competitors in the market.
There is an initial license and then there is a subscription needed.
We find that the pricing and licensing of this solution is adequate, as compared to the other competitors in the market.
There is an initial license and then there is a subscription needed.
Twingate is a cloud-based network security platform that offers secure, zero-trust access to corporate applications and resources. Its primary use case is to provide remote access to employees, contractors, and partners, allowing them to work securely from anywhere. Twingate's most valuable functionality is its ability to create secure access policies based on user identity, device, and network context. This enables organizations to enforce granular access controls, reducing the risk of data breaches and insider threats.
OneLogin by One Identity is a cloud-based access management solution for the modern enterprise. It delivers secure access for every user, every app and every device to meet an organization’s Workforce and Customer and Identity and Access Management (CIAM) needs.
Surprisingly expensive given the price of on-premise solutions.
The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.
Surprisingly expensive given the price of on-premise solutions.
The pricing for OneLogin seems to be okay. The pricing and licensing are affordable. If you'd consider OneLogin to be expensive, it's worth it.
Licensing fees are paid on a monthly basis.
Licensing fees are paid on a monthly basis.
AWS Directory Service lets you run Microsoft Active Directory (AD) as a managed service. AWS Directory Service for Microsoft Active Directory, also referred to as AWS Managed Microsoft AD, is powered by Windows Server 2012 R2. When you select and launch this directory type, it is created as a highly available pair of domain controllers connected to your virtual private cloud (VPC). The domain controllers run in different Availability Zones in a region of your choice. Host monitoring and recovery, data replication, snapshots, and software updates are automatically configured and managed for you.
The pricing is reasonable.
AWS' pricing is fair, and costs can be cut if you look carefully at when you're using it.
The pricing is reasonable.
AWS' pricing is fair, and costs can be cut if you look carefully at when you're using it.
Google BeyondCorp Remote Access is a secure solution that enables organizations to provide remote access to their internal resources without the need for a traditional VPN. The primary use case for this product is to allow employees to securely access company resources from anywhere, ensuring productivity and flexibility.
The most valuable functionality of Google BeyondCorp Remote Access is its zero-trust approach. It verifies every user and device attempting to connect, irrespective of their location, ensuring only authorized users gain access to resources. This eliminates the need for complex VPN configurations and reduces the risk of unauthorized access.
By adopting Google BeyondCorp Remote Access, organizations can enhance their security posture and simplify access management. It provides granular control over user access, allowing administrators to set policies based on device health, user context, and other attributes. This reduces the attack surface and minimizes the risk of data breaches or unauthorized access to sensitive information. Furthermore, the product integrates seamlessly with other Google Cloud services, making it easy to manage and scale as per organizational requirements.
Microsoft Entra External ID, part of Microsoft Entra, provides highly secure digital experiences for partners, customers, citizens, patients, or any users outside your organization with customization controls. Combine external identities and user directories in one portal to seamlessly manage access across the organization.
Scalefusion is a leading Mobile Device & Endpoint Management software helping businesses globally to secure and manage their device fleet.
SentinelOne Singularity Ranger AD, a component of the Singularity platform, is an identity configuration assessment solution that identifies misconfigurations, vulnerabilities, and active threats targeting Active Directory (AD) and Azure AD. By delivering prescriptive, actionable insight into exposures in your identity attack surface, Ranger AD helps you reduce the risk of compromise and brings your assets in line with security best practices. Ranger AD guides you towards quick, scripted remediation for any excessive privilege across the organization, tangibly reducing your attack surface. Proactively closing or addressing the gaps identified by Ranger AD can ultimately improve your team's long-term identity security posture.
Simplify endpoint management in your organization with Google Workspace.
Enforce passcodes and wipe specific accounts without installing software on a user's Android and iOS device with agentless endpoint management. This feature is on by default.