Cisco ACI vs Cisco Secure Workload comparison

Cisco ACI and Cisco Secure Workload are both solutions in the Cloud and Data Center Security category. Cisco ACI is ranked #4 with an average rating of 8.5, while Cisco Secure Workload is ranked #8 with an average rating of 9.5. Cisco ACI holds a 11.0% mindshare in CDCS, compared to Cisco Secure Workload’s 18.4% mindshare. Additionally, 85% of Cisco ACI users are willing to recommend the solution, compared to 100% of Cisco Secure Workload users who would recommend it.

Cisco ACI

Read 99 Cisco ACI reviews

5,119 Views
1,180 Comparison Views

85% willing to recommend

Cisco Secure Workload

Read 15 Cisco Secure Workload reviews

3,371 Views
2,253 Comparison Views

100% willing to recommend

Cisco ACI

Cisco Secure Workload

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 4, 2024

Cisco ACI and Cisco Secure Workload compete in networking and security. Based on user reports, Secure Workload holds the upper hand in advanced security needs due to its superior security capabilities and flexibility, while ACI is noted for its comprehensive networking features.

Features: Cisco ACI is recognized for its scalable network fabric management, advanced automation capabilities, and seamless integration facilitating policy-driven workflows. Cisco Secure Workload is distinguished by its advanced security features, including micro-segmentation, application whitelisting, and threat prevention capabilities.

Room for Improvement: Cisco ACI needs enhanced integration tools, more intuitive configuration options, and improved analytics. Cisco Secure Workload's areas for improvement include analytics and reporting functions, system flexibility, and user-friendly interfaces.

Ease of Deployment and Customer Service: Cisco ACI offers detailed, yet complex deployment models requiring significant expertise with responsive customer service. Cisco Secure Workload provides a streamlined deployment process with generally positive feedback for ease of use, though customer service sometimes needs additional clarifications.

Pricing and ROI: Cisco ACI involves higher initial setup costs affecting budgeting, but users report a favorable ROI. Cisco Secure Workload tends to have more manageable initial costs, leading to quicker ROI perception, especially prioritized for security enhancements.

To learn more, read our detailed Cisco ACI vs. Cisco Secure Workload Report (Updated: December 2024).

Buyer's Guide

Cisco ACI vs. Cisco Secure Workload

December 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

Cisco ACI

Ranking in Cloud and Data Center Security

4th

Average Rating

8.0

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

Network Virtualization (1st), Software Defined Networking (SDN) (2nd)

Cisco Secure Workload

Ranking in Cloud and Data Center Security

8th

Average Rating

8.6

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

Cloud Workload Protection Platforms (CWPP) (16th), Microsegmentation Software (5th), Cisco Security Portfolio (9th)

Mindshare comparison

As of December 2024, in the Cloud and Data Center Security category, the mindshare of Cisco ACI is 11.0%, down from 11.3% compared to the previous year. The mindshare of Cisco Secure Workload is 18.4%, up from 14.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud and Data Center Security

Featured Reviews

Raj Metkar

Director, Head of Networks at MUFG, EMEA

Provides scalability, ease of migration for future DC moves, multi-tenancy and programmability

Cisco's MSO (Multi-Site Orchestrator) or NDO has room for improvement. Cisco monitors ACI through a product called NDI. I find it very frustrating that Cisco has multiple monitoring platforms. It has DNAC for monitoring Cisco NX-OS, campus switches, and any other routers and switches you would have in the environment. That same thing does not work for Cisco ACI monitoring. MEraki cloudbasd platform for Meraki which will get extended to Campus monitoring, to be honest Cisco never got Monitoring 100% right from days of CiscoWorks to Prime to current platforms. To monitor and manage Cisco ACI, you need to have another platform called NDI and Cisco Dashboard Insights. What frustrates me about Cisco is that it never has a central, single pane of glass platform for all its solutions. It has one thing for Cisco ACI and another thing for campus switches. I would really appreciate it if Cisco came up with something centralized to monitor everything. I haven't thought about anything since the Cisco NDO is quite advanced, and you can deploy your cloud networking through it. I don't know how many people use it. I might explore it as my cloud orchestration tool in the future. We do a lot of cloud automation using our scripts like TerraForm, but I would like to see people using NDO more. We could have more case studies on how many people use NDO for their cloud orchestration. That might be a much easier journey for people when they move from an on-premises data center into a cloud and move from one cloud to another cloud. That is where I personally see an orchestrator being effectively used for multiple deployments.

Read full review

Raj Metkar

Director, Head of Networks at MUFG, EMEA

Discover internal application dependencies and create a dependency map

We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, providing valuable insights into vulnerabilities related to the operating system and various applications installed on our servers. Recently, Cisco announced a new product called HyperShield, an AI-based autonomous micro-segmentation solution. While Cisco has not stated that HyperShield will replace Cisco Secure Workload, it represents a natural evolution for the company. HyperShield features dynamic policy discovery and enforcement; however, once policies are enforced, they do not change until a discovery occurs, requiring a re-enforcement process. This new platform operates autonomously, minimizing the need for user or security engineer intervention. I would have expected Cisco to incorporate more automatic discovery and enforcement features within the existing Cisco Secure Workload product. Instead of enhancing the current product, they have introduced a new solution. Cisco plans to honor existing Tetration licenses, allowing users to transition to HyperShield without additional costs, reflecting the investment enterprises have already made. From Cisco’s perspective, this represents a natural progression in their product line. While the product name changes, it seems more of a rebranding effort. The enhancements are greater autonomy, improved discovery, and automatic enforcement, which are now being introduced in HyperShield. Cisco Secure Workload offers automatic policy enforcement but cannot adjust policies dynamically as the application needs to change. Having used the platform for the past five years, the recent announcement has been reassuring. Cisco has confirmed that our investment in the platform will not go to waste. They will honor our existing licenses, providing a natural migration path to the new solution without any disruption

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I have found the SDN features to be the most valuable."

"The flexibility of adding new components with minimal impact on existing services running in the data center is a key benefit of this ACI-based solution."

"Once we have it running, it should be easier for us to program our IT rather than going case-by-case, by switches and different elements, or program it by hand."

"ACI's most valuable feature is its SDN capabilities. Everything is on your software design controller. Everything is blocked by default until you allow it."

"We can support policy based on our intent, then that gets rendered into the policy that we will be using for Fabric."

"All the features provided by Cisco ACI including orchestration to layer seven, service training, load enhancements and firewalls."

"I like using WebEx Board."

"The most valuable features include microsegmentation, L3 Out features, and the common tenant and tenancy model."

More Cisco ACI pros

"Generally speaking, Cisco support is considered one of the best in the networking products and stack."

"The most valuable feature of the solution is that we don't have to do packet captures on the network."

"Scalability is its most valuable feature."

"The solution offers 100% telemetry coverage. The telemetry you collect is not sampled, it's not intermittent. It's complete. You see everything in it, including full visibility of all activities on your endpoints and in your network."

"A complete and powerful micro-segmentation solution."

"It's stable."

"The product provides multiple-device integration."

"By using Tetration insight, we are able to get the latency on our level accounts and we can determine whatever the issue is with the application latency itself."

More Cisco Secure Workload pros

Cons

"I would like for ACI to manage all of the devices."

"The interface is sometimes slow. I receive a lot of weird errors when I try to install apps, such as contract apps, which should give me a nice visualization of all the contracts. However, it just doesn't load, etc."

"I would like for there to be more information about it available. While using the ACI in the graphical interface, I would like if there was something that explained every step that you can click and it will tell you what you are doing in more detail."

"The way the objects are oriented on it are not as straightforward as they should be."

"The GUI is not easy to use."

"It needs more integration with public clouds, like Azure and AWS."

"The firewall has room for improvement because there is no central inspection yet on Cisco ACI."

"The ability for us to figure out the traffic flows, to enable some of the more segmentation parts of it, is really tough with what is built into ACI."

More Cisco ACI cons

"There's room for improvement when it comes to Cisco Secure Workload. A couple of internal areas could be refined a little bit. They are trying to solve it, depending on where you suppose the agent is. Suppose you have the agent on both the server and the client, which could be the front-end server or web server connecting to the. In that case, if those two are communicating on RPC, the server can look into its configuration. It could go down and find the configuration file on the FTP server and then set the policies to it. But there are a lot of different FTP servers out there. It's also a complex case for the tool to support all FTP servers."

"The multi-tenancy, redundancy, backup and restore functionalities, as well as the monitoring aspects of the solution, need improvement. The solution offers virtually no enterprise-grade possibility for monitoring."

"They should scale down the hardware a bit. The initial hardware investment is two million dollars so it's a price point problem. The issue with the price comes from the fact that you have to have it with enormous storage and enormous computes."

"The product must be integrated with the cloud."

"I'd like to see better documentation for advanced features. The documentation is fairly basic. I would also like to see better integration with other applications."

"The interface is really helpful for technical people, but it is not user-friendly."

"There was a controversy when Cisco reduced the amount of data they kept, and the solution became quite cost-intensive, which made its adoption challenging….Although they have modified it now, I preferred the previous version, and I wish all the functionality were back under the same product."

"The emailed notifications are either hard to find or they are not available. Search capabilities can be improved."

More Cisco Secure Workload cons

Pricing and Cost Advice

"The pricing is pretty good for new technology."

"Pricing for Cisco ACI could be expensive if you're not a gold partner. If you're a gold partner, you'll get reasonable pricing, but to become a gold partner, you must cross several layers. For example, at least twenty engineers within your organization have to be certified, with each certification priced at £2,000 minimum, so this would make some companies think twice about the product. If you're going for Aruba and Juniper products, on the other hand, you can quickly get the partner status, and you can start selling the product. As a gold partner, you can get up to seventy percent discount on Cisco ACI, for example, while an ordinary partner gets ten percent off. Cisco ACI is expensive for both customers and partners, but I'm rating pricing for the product as four out of five because even if the price is costly, you get a lot of benefits from the product. Cisco ACI isn't the best, price-wise, but it's still a good solution. If you're in a small organization, you may be unable to afford it. Cisco ACI is best for enterprises but not SMBs because Cisco ACI and its required resources are expensive."

"This is an expensive solution."

"It is quite expensive. It is not at all on the cheap or medium side."

"The pricing, including both hardware and licenses, is reasonable."

"The product is not cheap."

"I don't believe there is any licensing required."

"We have saved time on the provisioning and configuration."

More Cisco ACI pricing and cost advice

"The pricing is a bit higher than we anticipated."

"The price is based on how many computers you're going to install it on."

"It is not cheap and pricing may limit scalability."

"Pricing depends on the scope of the application and the features. Larger installations save more."

"Regarding price, Cisco Secure Workload can be expensive if you don't have a budget. If you're not doing micro-segmentation, every extra security measure or enforcement you're putting on top of your existing environment will be an extra cost. It's not a cheap solution at all. But from my point of view, if you need to do micro-segmentation, this is one of the best tools I've seen for it. I can't compare that to Microsoft's solution because I haven't looked into it. I've looked into VMware and Cisco. Those are the only two that I know of. I didn't know that Microsoft could do micro-segmentation at all. Maybe they can, but I haven't heard anything about it."

"The cost for the hardware is around 300k."

"The price is outrageous. If you have money to throw at the product, then do it."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

23%

Financial Services Firm

12%

Government

Manufacturing Company

Computer Software Company

28%

Financial Services Firm

12%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What are the biggest differences between Cisco ACI and VMware NSX?

There are some very major differences between both the Products and to name a few. -Cisco ACI have physical network gear (9K Switches) where the Code runs in ACI Policy Mode & the UCS server wh...

See all answers

What are the biggest differences between Cisco ACI and VMware NSX?

Once you know your way around the Cisco ecosystem, using Cisco ACI is not so difficult. It is a global product, so when you change one interface, changes are automatically reflected on every switch...

See all answers

What do you like most about Cisco ACI?

The flexibility of adding new components with minimal impact on existing services running in the data center is a key benefit of this ACI-based solution.

See all answers

What do you like most about Cisco Secure Workload?

The product provides multiple-device integration.

See all answers

What is your experience regarding pricing and costs for Cisco Secure Workload?

CloudStrike offers antivirus capabilities and firewall features for servers and VDI but lacks automatic policy discovery. This raises questions about the resources required to discover and write po...

See all answers

What needs improvement with Cisco Secure Workload?

See all answers

Comparisons

VMware NSX vs Cisco ACI

Compared 21% of the time

Akamai Guardicore Segmentation vs Cisco ACI

Compared 16% of the time

HPE SDN vs Cisco ACI

Compared 8% of the time

Illumio vs Cisco ACI

Compared 7% of the time

Juniper Contrail Networking vs Cisco ACI

Compared 6% of the time

More Cisco ACI Competitors

Akamai Guardicore Segmentation vs Cisco Secure Workload

Compared 20% of the time

Illumio vs Cisco Secure Workload

Compared 19% of the time

VMware NSX vs Cisco Secure Workload

Compared 11% of the time

Cisco Hypershield vs Cisco Secure Workload

Compared 11% of the time

Prisma Cloud by Palo Alto Networks vs Cisco Secure Workload

Compared 9% of the time

More Cisco Secure Workload Competitors

Product Reports

Buyer's Guide

Cisco ACI

December 2024

Download Cisco ACI product report

Buyer's Guide

Cisco Secure Workload

December 2024

Download Cisco Secure Workload product report

Also Known As

No data available

Cisco Tetration

Learn More

Cisco

Overview

Cisco ACI automates data center networking, centralizing management and configuration of diverse network environments. It's used for micro-segmentation, replacing legacy networks, and deploying software-defined networking.

Cisco ACI enables seamless integration with cloud platforms and multi-site connectivity. It ensures high availability and redundancy, supports network-centric applications, enhances security, and facilitates agile service implementations across different regions and data centers. The platform offers high throughput, ease of configuration, centralized management, and programmability. Users find value in its single management interface, policy-based routing, Service Graphs, and simplified deployment. Cisco ACI also excels in scalability, automation, low latency, and supports data center expansion efficiently.

What are the key features of Cisco ACI?

High Throughput: Ensures fast data transmission and network efficiency.
Ease of Configuration: Simplifies setup and changes to network configurations.
Centralized Management: Provides a single interface for managing the entire network.
Micro-Segmentation: Enhances security by isolating network segments.
Integration with VMware: Seamlessly integrates with VMware environments.
Scalability: Easily expands to accommodate growing organizational needs.
Automation Capabilities: Reduces manual tasks through advanced automation.
Policy-Based Routing: Optimizes network traffic based on set policies.

What benefits should users look for when evaluating Cisco ACI?

Seamless integration with cloud platforms and multi-site connectivity.
High availability and redundancy ensuring consistent service uptime.
Enhanced security with micro-segmentation and policy-based control.
Agility in service implementations across regions and data centers.
Efficiency in network management with centralized control.

Organizations in industries such as finance, healthcare, and technology implement Cisco ACI to modernize data centers, improve security, and streamline network operations. Its capabilities support expanding infrastructure, integrating with cloud services, and managing complex network architectures with minimal effort.

Cisco Secure Workload is a cloud and data security solution that offers a zero-trust policy of keeping an organization’s application workloads safe and secure throughout the entire on-premise and cloud data center ecosystems.

Cisco Secure Workload will consistently provide protection by discovering workload process anomalies, stopping threats immediately, minimizing the risk threat surface, and aborting any lateral movement.

Today’s ecosystems are very elastic, and in the application-focused dynamic of today’s aggressive marketplace, Cisco Secure Workload delivers a robust security solution that works effectively with today’s most popular applications. The solution uniquely surrounds each and every workload to ensure organizations are able to keep their data, network, and applications safe and secure at all times. Cisco Secure Workload ensures that enterprise organizations can maintain secure applications by consistently building firewalls around every workload level throughout the entire ecosystem. The solution can manage applications that are deployed on containers, virtual machines, or bare-metal servers.

Cisco Secure workload is able to meet an organization's busy needs and offers flexible options such as Software-as-a-Service (SaaS) and on-premises options. Using the Secure Workload SaaS options, users receive all the benefits of Cisco Secure Workload protection without the hassle of having to deploy and maintain the platform on premises. Users are responsible for acquiring the necessary software licensing and deploying software agents. Using SaaS, Secure Workload runs in the cloud and is operated and maintained by Cisco. This option offers the ability to scale easily and is a popular choice for SaaS-first and SaaS-only clients. Many organizations find they get the best TCO and achieve the best productivity and profitability using the SaaS options.

When choosing on-premises options, organizations choose between hardware-based appliance models (large or small form factors). Platform selection is dependent on scalability goals, the desired fidelity level of flow telemetry, and the actual number of workloads. When a user chooses to configure Cisco Secure Workload for a conversation-only flow telemetry for all workloads, each platform has the capability to scale up vertically twice the default platform scale. Additionally, with Secure Workload, it is possible for the platform to be scaled horizontally in order to satisfy the demands of extra large widely distributed enterprise environments using federation capabilities.

Cisco Secure Workload also provides a robust disaster recovery (DR) tool, which helps to make it a complete, comprehensive solution. The DR allows for continuous restore and backup capabilities that enable users to quickly remediate operations and data to a standby cluster in the event of a drastic failure or disaster.

Reviews from Real Users

“The solution offers 100% telemetry coverage. The telemetry you collect is not sampled, it's not intermittent. It's complete. You see everything in it, including full visibility of all activities on your endpoints and in your network. Other valuable features include vast support for annotations, flexible user applications, machine learning, automatic classification, and hierarchical policies.” - CTO at a tech vendor

Sample Customers

Bowling Green State University, du, Qatar University

ADP, University of North Carolina Charlotte (UNCC)

Buyer's Guide

Cisco ACI vs. Cisco Secure Workload

December 2024

Free Report: Cisco ACI vs. Cisco Secure Workload

Find out what your peers are saying about Cisco ACI vs. Cisco Secure Workload and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our Cisco ACI vs. Cisco Secure Workload report.

See our list of best Cloud and Data Center Security vendors.

We monitor all Cloud and Data Center Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.