Axonius Reviews

We use it for reporting, noncompliance reporting, and identifying gaps. We use it for API monitoring within our company.

And we also use it as a CMDB. Our security team, people within the SOC team, and people within other IT departments use it as a CMDB. We have integrated Axonius with a few of our solutions, so it has good inventory mapping. It provides information like installed software, running services, file shares, patches, and more. We have integrated it with many different solutions that we use internally.

We refer to Axonius as a CMDB, but the tool was actually onboarded for KPI monitoring and to alert against noncompliances. For example, if a device is running with an out-of-date agent or if a device is missing an agent it is supposed to have, Axonius helps us find unauthorized software installations within corporate devices. We use it for various KPI metrics and send out automated alerts to the relevant IT personnel to address and fix those noncompliances.

Right now, we use it mainly as a CMDB, but the tool was onboarded for KPI monitoring and metrics.

It's the agentless solution. It doesn't rely on specific agents. We integrate Axonius with APIs, which are called adapters or connectors. Essentially, it's API connectivity between different platforms. Getting Axonius up and running only takes a few days. If you have a server or solution, you create firewall rules to integrate with other platforms. This way, Axonius can communicate and collect data from them without needing much infrastructure. It sits on a device and collects data from multiple environments and sources, aggregating everything into a single console.

It also creates multiple dashboards. Axonius provides preconfigured dashboards that can be customized to your needs. What I like is that everything is in one solution, and you don't need agents running on every process to collect information. Other platforms like ServiceNow rely on agents installed on assets, but Axonius doesn’t.

Axonius is agentless and can easily integrate with other platforms. It uses API access accounts with other security solutions. They support a lot of different solutions. When we first started using Axonius, they supported around 400 IT solutions. Now, I think they support more than 600 or 700. I've lost count.

When we started working with them, Axonius was a small company with just a few engineers, but now they’ve grown into a large enterprise. They’ve been great at fixing issues and customizing solutions for clients. They maintain all of that really well.

It is a good solution; it lets you customize the solution based on customer requirements. They can even create custom adapters. For example, if you have a legacy platform or a new solution that doesn’t have official support yet, Axonius can deliver quick fixes by developing custom adapters. I’ve worked with them when we needed to integrate a solution that wasn't in their supported integrations. They gathered the requirements, asked us what data we wanted to pull, and quickly delivered a custom adapter. They also added that adapter to their product timeline, ensuring it would become an official integration in future releases.

In that sense, Axonius has been fantastic at delivering these solutions. We’ve had no issues with them.

In my company, we did a production pilot in my environment where I work to evaluate the tool's capabilities, and our use case was looking for unmanaged endpoints, like workstations that may have fallen out of management by their management server, like McAfee, Tanium, SCCM, or similar things.

The tool's main use case is connecting multiple IT systems using various adapters. It helps identify device registration, uptime, usage, and deviations from expected performance. When deviations are detected, you get alerts and can take necessary actions. A major use case is its integration with ServiceNow, which provides a landscape of your devices and allows you to see them and write policies accordingly.

The most valuable feature of Axonius is its ability to deduplicate records and identify which ones are old and stale versus those more relevant. For example, if you haven't logged in today but a system somewhere else mentions you have, Axonius can detect this through various logs like Active Directory, file logging, or Wi-Fi connections. Traditionally, someone would have to make numerous calls and spend a lot of time to find out if you are on-site or connected to a Wi-Fi network. The tool simplifies this process.

From my experience, onboarding and adding connectors was pretty easy, especially when integrating with the ServiceNow environment. It worked well for my use case, but the ease of use can depend on the customer's specific needs and what they are trying to achieve.

We've got we've got a ton of use cases for the solution. However, a lot of companies will use it primarily on the IT asset management side, which it does a terrific job of. We do use it for specific use cases tied to that. That said, being in the security realm, we really use it as a cyber attack surface and security control gap tool.

For us, on the security side, we connect our EDR solution, like CrowdStrike and Carbon Black or any access control like Azure Active Directory and regular Active Directory, et cetera. It allows you to identify whether or not what you consider the asset source of truth in your environment is actually doing a good job or not. A CMDB, for example, a lot of folks want to rely on that as a source of truth for all assets. 

However, when you connect these disparate sources to Axonius, you're able to see and identify the gaps that you might have in that inventory. If you've got a vulnerability scanner scanning an asset or EDR on a specific tool that you can see but don't see in your CMDB, you've identified a gap. You can use that for a number of cases. You can, for example, see stuff that's in your CMDB that you don't have malware coverage for. That's really where the power of Axonius comes in - to be able to identify those gaps. That's one major use case, and that's a really big one in our space.

For a security outfit, you are constantly trying to do a good job of ensuring you've got your organizational controls in place enterprise-wide. If you don't know what you're protecting, chances are you've got gaps in your protection. That visibility that we now get from Axonius gives us enormous peace of mind that if it's out there in our environment, we know we can see it in some way using this tool. From there, it's just a matter of what appetite we have to address your gaps. The knowledge they provide, from a security professional perspective, is invaluable. 

We use Axonius as an asset monitoring tool. Our adapters and assets are tagged into Axonics using an AD group. We have segregated into region-wise assets, and it's easy to look at the dashboard and see if an investment is down in a particular region.

Within the system life cycle, Axonius does its eCheck. The best feature I found in Axonius is that it shows us the duration of eCheck, and it shows us what device is down and in which part of the system life cycle or the checking part the system is down in. So, investigating makes it a lot easier because we can pinpoint the exact time and location of the asset. And then, when you customize your queries, you can also figure out the reasons. I'm not very familiar with the customization of queries, but I've seen seniors do it, and it's quite brilliant to find or have a tool like that.

I use the system to collect background data, identify cybersecurity issues, and catch exceptions in systems like NetSuite.

I like that the tool has a user-friendly interface. It helps organizations and big companies improve business requirements and control processes.