Cisco Duo is a two-factor authentication system (2FA), acquired by Cisco in October 2018. It provides single sign-on (SSO) and endpoint visibility, as well as access controls and policy controlled adaptive authentication.
$3
per month per user
IBM Cloud App ID
Score 10.0 out of 10
N/A
IBM Cloud App ID helps
developers who are not security experts to add authentication to their
apps, and protect their APIs and app back-ends running on IBM Cloud. Developers
can add a variety of login-in types: Email or username and password Enterprise Social App ID includes a cloud user repository to on-board new
users, so they can log-in with email/username & passwords, with pre-built
self-service workflows (password reset, email validation etc.)…
I would fully expect a competitor like Okta or any other multifactor mechanic to function pretty similarly, and I hesitate to say duos the best. I think the idea is that it's a simple concept, but it does it well. So I haven't evaluated any myself outside of duo, but I'm also …
Cisco Duo had an integrated method for handling MFA on Endpoints and Servers. This was a huge bonus. Administration and implementation seemed more efficient as well.
There are Okta has that Duo does not have, however since my environment has CISCO solutions implemented and the service that we receive from the vendor and integrator is top quality, DUO was the right choice.
We selected Cisco Secure Access by Duo due to its ability to interoperate with almost any on premise, cloud, or hybrid application or system. Duo also integrates nicely with our other security systems, including XDR. As well, Duo is a market leader and always pushing the sector …
Cisco Secure Access by Duo's ability to integrate with a wide variety of SSO applications and systems, as well as its focus on usability, make it an attractive option.
In my opinion, the IBM Cloud App ID are far from, thus, requires a lot of improvement compare to these matured, has long years of experiences in offering similar application of purpose. The IBM has a lot of room to improve more so that their client would definitely choose their …
The reputation of IBM Cloud App ID across the market and pricing solution for our large organization was the main driving factor. Also, user documentation and customer support were an add on.
IBM Cloud App ID is our first supplier when it comes to app authentication. IBM is a very known provider and we didn't have to research its trustworthiness or hesitate [on] our purchase decision. Even though it can be a bit expensive, efficiency is our top priority.
Both the software have different use cases, like IBM Cloud App ID, which will be more suitable for internal websites and apps or specific event website authentications, Auth0 can be suitable for consumer websites, e-commerce sites, where social media login is preferred more by …
I was building my application’s back end on IBM Cloud Functions, so naturally I had to use App ID. Because of the seamless integration between App ID and Cloud Functions, I can create protected API endpoints for my Single Page Application (SPA) and not have to write middleware …
The features that IBM App ID includes are incredibly beneficial to the developer process in terms of simplicity and security. I have found using this app a prominent staple in app development and plan to use it furthermore.
Cisco Duois is well suited in all kinds of scenarios where you need to ensure proper security measurements, I think. We can't just rely on our passwords only, as they can be easily stolen through phishing or data breaches thus keeping multi factor authentication is quite essential. I always prefer MFA or at least 2FA for any critical system.
Whenever you need to provide Security Provider functionality for a web based application it is well suited. You can also integrate with other directory services (e.g. SAML, Facebook, Google), but not so easily with other Auth0 based services. The customization of the login page is very intuitive, but does not allow much customisation. using the integrated Cloud Directory, you do not need to integrate with existing security providers and you can build up your own user base - including Multi-Factor Authentication settings and password policies.
Documentation is oftentimes missing key information for proper implementation. This is circumvented by reading third-party guides or contacting support for additional details.
They do not push Fail-Closed as much as I think they should. Fail-Open is fairly trivial to bypass and it should be made known to the customer during setup how much this will affect overall security.
More vendor integration is something that is always craved by administrators. There are so many third-parties to integrate with.
There are a lot of competing solutions on the market; however, Duo "just works", and there is little to no learning curve for the new members to be acclimated to it. As long as that continues I see it as the preferred option moving forward
La interfaz es intuitiva y fácil de navegar, lo que permite a los usuarios administrar sus dispositivos y acceder a las políticas sin problemas. La integración con las aplicaciones SSO y SaaS facilita aún más el proceso de acceso, mejorando la experiencia del usuario.
In the last 5+ years we've been using Duo, there may have been 1 outage that impacted us. We do receive periodic notifications of issues but, for the most part, they impact carriers or functionality that we either don't use, or do not care about.
Since it’s a reputable company, I have received technical support when needed and I trust that if anything else happens I can contact them with any issues. I haven’t experienced bad customer service and I totally feel supported while using this authentication method. No complains so far and the high rating!
Implementation was straight forward and you can isolate different scenarios in order to test new application setup or add to an existing setup. Gui interface is pretty easy to understand and follow. I had no experience with Duo and still manage to easily set up new policies and rules.
Ultimately we ended up going with Cisco Duo because we are a Cisco shop. All of our networking infrastructure, our phones, our wireless environment is Cisco based. It made logical sense to stay with a product that we already have a line of support with. With a smaller support / tech group we depend on outside Cisco support. That support is already here for us, so we stayed with a Cisco product.
Both the software have different use cases, like IBM Cloud App ID, which will be more suitable for internal websites and apps or specific event website authentications, Auth0 can be suitable for consumer websites, e-commerce sites, where social media login is preferred more by the users. Both have their own capabilities so can be chosen according to their needs.
It's one of those things that only costs money in the sense of you have to convince a leadership team to spend money to save money, right? Like a compromise is far more expensive than duo paying for duo. So specifically it's really just about trying to prevent problems. And so while it costs money and we don't have a direct return on investment that we can point out immediately, I would still always advocate for it just because it keeps security. Paying for security is cheaper than getting compromised essentially.