Agentless network miracles and magic - Armis is king!
December 27, 2022

Agentless network miracles and magic - Armis is king!

Erik Tank | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with Armis

Tracking rogue devices - analyzing traffic activity - blocking devices from the network with a click of a button - yes, please! Armis is a fantastic tool with more features than I know what to do with - the reporting, easy interface, and robust analytics are all top-notch. They are constantly adding new functionality, integrations, and features to make it more awesome. The bi-weekly support calls for onboarding and health checks are stellar and really help fully utilize the product, not just buy it and forget about it. It's really one of the best products we've adopted, and I can't see us being without it!

Pros

  • Analyzing Traffic
  • Detecting Device Types
  • Finding vulnerabilities by pure magic!
  • Searching through all the data - intuitive and no programming required!
  • Alerts and policies for anything you can imagine
  • Reports and dashboards customizable to any extent you can imagine
  • Integrates with so many systems and ties all your data together in one screen
  • Create automated processes to handle events automatically by event/data/device etc.

Cons

  • I've requested integration with Mosyle Manager for our Apple MDM products - it is on the radar but slow going - Mosyle has an API and a free 30-day trial, so implementation shouldn't be difficult - but honestly, other than that - Armis support has been astonishing, and there are so many integrations already - it's small potatoes.
  • Considering Armis has all the data collected and parsed - it would be nice to see a back-end system for those of us who are true nerds and want to really dig into the Syslog data and analyze packets directly - however, building some quick queries is probably easier if you know what you are looking for anyway - which is probably why this is a backward way of my own thinking and no fault of Armis at all. They make the interface so easy to use it's not necessary, but it hurts my inner geek.
  • Vulnerability scanning
  • Traffic Analysis
  • Integrations to tie device/user information together
  • Policies and alerts for specific behavior and traffic
  • Network scanning and device identification
  • Dashboard management for seeing everything you could possibly want to know about your network at a simple glance - it's really awesome
  • Easy searching and drilling down to find exactly what you need - even without a programming degree and SQL query knowledge
  • Armis helped with multiple projects saving incalculable time since we've gotten it
  • Network analysis is a breeze
  • Device traffic reports and alerts is one click easy peasy
  • Blocking devices or specific traffic is super easy and helpful - if you have the right integrations for those options
Armis is kind of a total conglomeration of a ton of different tools/systems, and depending on how you want to set it up can do almost anything a lot of these other tools can do - and in some cases, even better. It doesn't do software deployment or other things like SCCM I have listed, but the reporting side is so much better than SCCM's interface. As far as data breaches, user/device activity tracking, vulnerability outlook, network scanning, device identification, and agentless miracles of magic - Armis is the king.

Do you think Armis delivers good value for the price?

Yes

Are you happy with Armis's feature set?

Yes

Did Armis live up to sales and marketing promises?

Yes

Did implementation of Armis go as expected?

Yes

Would you buy Armis again?

Yes

We started an entirely new network segregation implementation for security policies. Armis was unparalleled at helping us find rogue static IP-assigned devices in our old network and helped us identify what they were so we could tackle the challenge of moving everything to the new network VLANs. Another use case is finding a specific device or a specific user account to track their activity. The layout is phenomenal, and the data is easy to understand and drill down into for further information. The new AVM (Asset Vulnerability Management) section is awesome to help us find the out-of-date devices or other risks on the network to figure out where we are most vulnerable and at risk. If you're looking for a way to have Armis auto patch vulnerabilities - that's only on the radar from what I've heard - but currently, it is an amazing tool for finding and detailing the CVEs and other risks. You can create policies to block specific risky behaviors, but currently, at the time of writing, there isn't any automated patching or remediation to known CVEs found on a device.

Comments

More Reviews of Armis