A good solution with one fatal flaw.
July 04, 2023

A good solution with one fatal flaw.

Anonymous | TrustRadius Reviewer
Score 2 out of 10
Vetted Review
Reseller

Modules Used

  • WatchGuard AuthPoint

Overall Satisfaction with WatchGuard AuthPoint

We use Authpoint at various sites for adding MFA to applications like remote desktop, PC Login, and Email access. It does a good enough job, and users are generally able to self-enroll and use it without much issue. The one fatal flaw is that it does not support standard OTP generation, so we are unable to add it to our third-party password/login management solution. That means for all the techs that support the site, there is one shared login on one phone. If that person is unavailable, we are unable to access the site.

Pros

  • Ease of use.
  • Lots of options for application support.
  • Integrates well with other Watchguard products.

Cons

  • Lack of OTP support.
  • Flexibility for non-standard AD integration.
  • Better documentation for third-party VPN integration.
  • It has increased security and lowered our Cyber Insurance premiums.
  • It has offset that by requiring licensing for each member of our tech team.
  • It has very little maintenance costs.
We worked with Vision33 Canada. They were great to deal with.
We have not transitioned our firewalls to the cloud-managed console, so we are currently not using the single pane of glass interface. That is something that we do intend to make use of.
The only Watchguard cloud product we are using is Authpoint.
I would slot Authpoint as better than ESET but not Duo. ESET has the same limitations as Watchguard in the OTP support. It also is an on-prem installed console rather than a cloud, which increases cost and maintenance requirements. The duo now supports standard OTP for admin accounts, so it can be managed by a team.

Do you think WatchGuard AuthPoint delivers good value for the price?

Yes

Are you happy with WatchGuard AuthPoint's feature set?

No

Did WatchGuard AuthPoint live up to sales and marketing promises?

No

Did implementation of WatchGuard AuthPoint go as expected?

No

Would you buy WatchGuard AuthPoint again?

No

Authpoint is great for a situation where each individual has their own login but for an outsourced IT department with an MSP, either each technician would need their own account (which raises licensing costs for the client) or the primary tech with the app will always need to be available for other members of their team to login.

Comments

  • Nicolas Chaves | TrustRadius Reviewer
    Nicolas Chaves
    (Vendor Representative) commented a year ago
    Dear user, we are sorry that you see this capability as a disadvantage because it is actually a security feature that we use as a differentiator. Because when the user activates the AuthPoint mobile token, it is tied to the user's mobile phone and is individual and cannot be activated elsewhere, copied or cloned. This way we ensure that the user is the only person who has access to the token, not only for OTP generation but also for receiving the Push notification and generating the QR code for authentication. Even using a shared credential to access some kind of resource, multiple tokens can be assigned to the same user. Say, it's a user called "admin", and each real person who logs in with the "admin" user can use their own token on their cell phones. This is what some of our partners do for this same scenario. In short, using a standard OTP can bring more security risks, as the standard OTP can be copied by anyone who has the activation code or token seed.

More Reviews of WatchGuard AuthPoint

  1. Home
  2. Authentication Systems
  3. WatchGuard AuthPoint Reviews
  4. User Review of WatchGuard AuthPoint