Portnox Reviews

Our aim is to ensure compliance, so we use this solution for network access control, where we define the threshold for endpoint compliance. This extends to the Wireless LAN, which ensures that whatever compliance structure has been defined is maintained. We have many users working remotely, so we use Portnox to provide a high level of assurance. I'm an information security officer and we are customers of Portnox. 

Our company is big on BYOD policies where we allow users to bring their own system back onto the network. Portnox enables us to ensure that all the systems on our network are actually managed systems. It provides us with a high level of assurance. 

I think the reporting feature is valuable because it provides a good level of insight. Even before clicking on the mouse, we can see what the contents are with the endpoint. CLEAR is one of the best of its kind on the market with respect to compatibility. It works perfectly well with most network devices and endpoints. The security controls are easy to configure, and I like the new interface for CLEAR which is cool. Portnox has been around for a while and I think they've learned a lot that has enabled significant improvement.

Although I like the reporting, we're getting a degree of false positives which is possibly connected to the implementation. We have a local partner and we depend on their skills and knowledge and those of our in-house staff to be able to support the tool. From a resource perspective, I think the OEM can do better in terms of resource utilization. We have a large environment that extends to remote workers, and we've had instances where we've had to reboot services. 

Portnox has done a lot around the cloud, and I'm hoping that the next level of improvement will be to provide the capability for network access control for mobile devices, or device management as the case may be.

I've been using this solution for four years. 

The solution is stable. 

The solution is scalable, we have over 1,000 users and a couple of people who help out with maintenance and support as part of their work. We'll be expanding use in the future. 

The support could be improved with better local services. Even though we have access to the Portnox support portal, it's the local partner that we have to work with. It's been okay but there is room for improvement, perhaps the company could make contact with their end users instead of depending on the local partner; we would appreciate that.

The only other solution we have used is Portnox CORE, the on-premise version, which was the first network access control tool that we adopted. We still maintain some licenses with CORE, but we've now procured additional licenses for CLEAR because of the increased need for remote work.

The initial setup was not as straightforward as we'd have liked but with the right skills and support, we were able to get it sorted. Unfortunately, the support we had could have been better but we are now enjoying the tool. We did some prep beforehand and the deployment was carried out over a weekend. 

We pay an annual license fee. In addition, we pay for professional services and local support.

We looked at Check Point initially for remote VPN connectivity, and also for firewalls and then for network access control, but I think we went with Portnox because of our previous experience with them. 

I think while Portnox provides wonderful technology, the support and maintenance agreements are problematic. In particular, when they're dealing with a local partner. Partners really need to be skilled and knowledgeable.

I rate this solution eight out of 10. 

Hybrid Cloud

For our use case we can check on syndication issues while using it for NAC (Network Access Control). It helps us to allow users access to the network according to the policy that the organization provides.

The product has helped improve our organization in a number of different ways. The most important of all is that we are aware of situations the minute anyone on the network has issues. We can see what is happening right away. It has a very good graphical interface and we see exactly where the issue is, what ports the issue is occurring at and that makes it a lot easier for us to troubleshoot network issues. That ability helps with uptime and productivity.

The most valuable feature of the product in our case is the network visibility. The product gives us a very good view of what's happening on the network and we can take action proactively. It also provides security. Our network isn't open to everyone in the organization. It's open only to people who have a real need to work on the network. The product helps us control that access.

It also helps that the product is self-sufficient. We don't need to allocate employee resources to the maintenance and monitoring unless something goes wrong. It is all automated. We get alerts and we react according to the alerts we receive without a dedicated team that monitors the solution. We're a team and we work together on other things while the product monitors the system. When we get alerts, that's when we deal with it.

In our case, the product does what it's meant to do. I don't see any real need for improvement here, at least not for our needs. The interface is very convenient and provides very good security for exactly what we need the product for. It's a simple solution and we haven't had any problems with it for the past six or seven years. I don't know that we really have any pain points with the product or I'd be aware of them.

There are a certain number of false positives on occasion where we get an alert and really nothing is wrong, but generally, those issues have to do with computer configuration. It isn't really the fault of the product. I don't have anything bad to say about the product. We are very happy with it.

I guess one of the problems with the tool is our own fault. We could use a lot more of its features than we do now. But we have been using the parts of the product that we need for years now. If we had problems with it and it didn't do what we needed it to anymore, we wouldn't continue buying the support for it and we'd look for another solution.

I guess the only thing that might really make a difference is a change in the pricing structure. They charge us by the number of ports that we have on our switches. The more ports we have on the switch, the more we have to pay — even if we're not using all of the ports. From the point of view of licensing, there could be some kind of improvement. I think it would be better if we were paying for actual usage.

If there were additional features to add, I might suggest better options for integration with the firewall. I know that the product has this feature already, but it's something we haven't explored more deeply because it isn't the reason we use the solution. If there were better integration with our firewall, we might be able to do additional things like creating policies that would block ports that are under attack or other things like that which could be beneficial.

Portnox has the integration capability, but as far as I know, it's not something that's really built into the solution. It involves some scripting. I think that if they made that easier to deploy, we would definitely use it.

We have been using the product for more than six years.

This solution is stable and it just works. We don't ever have any problems with it.

We don't have any issues with scalability. Whenever we grow, the only question about scalability is determining how many licenses to add and then just adding the licenses. As the company grows and we expand, the usage grows as well.

Right now, we're licensed for about 800 ports. That means that up to 800 devices can be connected. It's easy to add the licenses. It just gets more expensive when you do.

Our experience with customer support is pretty limited. We haven't contacted them for a long time. But, generally, when we do have to contact them — for whatever reason — we get good support from them.

It has been a while since the initial setup, but I recall that it was pretty simple. It might have only taken a day to deploy. Then it might have taken a couple of days running checks on the system. In all, it only took a couple of days.

When we did the deployment we used an integrator that we use regularly from time-to-time for implementing our security products. Our experience with the integrator is always good and everything works fine. We are very pleased with the integrator's services.

One return on the investment is that we don't need to dedicate employee time to monitoring the system. We just pay for the product.

As far as pricing, we only pay for support on a yearly basis. There are no other costs after you initially pay for the licenses. The only exception to that is if you need to add devices to the system. If you add to the system you need to license more ports. You need to pay for the additional licensing. Other than that it essentially works by itself so it is like having another employee for the cost of support.

I don't know the exact prices but I know the product is not cheap.

Before we decided on Portnox CORE as a solution, we did try other solutions to compare. I'm talking around six years back, so remembering the reasons for everything isn't that easy. In the end, we decided this was the solution we needed. Today there may be other solutions in the market that do the same thing — maybe in a better way, I don't know — but this solution satisfied us at the time, and since then we're happy with it. There's no reason to explore other options until the solution isn't providing what we need. Even then, it may be an opportunity to explore more of the existing product's capabilities.

One of the products we did evaluate was SportScout. It was more complicated and we found it was more complex to implement at the time. I don't know how it is today. It may be better and improved by simplifying some of the processes involved in the deployment. At the time it was obvious that it would be more complex and take a lot more time to integrate it into the company. It had a false-positive issue.

We really like the solution and it does what we need it to, so in rating it let's say we give it a nine out of ten. It's just hard for me to give anything a ten because that means it is perfect. But truly, I have nothing bad to say about the product. It's a good product and it helped us tremendously in the years in locating all kinds of issues that we had on the network. It does that very quickly and reliably and I recommend it.

The product is something we use on a daily basis. It's something that's always working away in the background. We get reports, we get alerts, we assess what the alerts are telling us and then we take action as necessary. If that's what an organization needs, then this is a very good solution.

The primary use of Portnox was for Network Access Control (NAC) and management. It was used to control and manage access to the network in my client's network. Unauthorised devices were locked out until approved and granted by the NAC manager. It showed information including the IP address, MAC address, hostname of device, username, switch location, and port number of where a device is connected to. It covers both wired and wireless. 

Portnox CORE helped in securing my client's threat landscape from attackers and hackers.

For the information security team, the security level was improved because it helped to manage and prevent rogue devices from connecting to the corporate network. The reporting was granular, and reports we scheduled for delivery on Portnox were useful during investigations and audits, especially in cases where the IP address changed.

For network support, it helped in troubleshooting the type of connection challenge that a device or user experienced. Network engineers could identify the location of the device on a switch to verify if the user's challenge was network or device related.

NAS view page gave a virtual graphical view of the switches, similar to the physical view, and just like how you see the ports on them. 

There is an add-on feature for application control to kill unwanted applications when launched on a user's device.

It has a feature to check the compliance state of computers. An example is for an antivirus. It checks if it was installed, installed but not running, or not installed, then it defines policy action based on compliance status, which it applies.

It supports a good number of known antivirus products.

It has scheduling reports for backward review of incidents.

Its knowledge base refers you to similar tickets or solutions.

Areas that Portnox CORE can improve include: 

1. Support for unmanaged switches (or hubs) and other brands of network devices. These kinds of devices are still in use in organisations, especially SMEs who cannot afford to buy a managed switch.
2. The licensing module. This should be reviewed to count the number of devices instead of port numbers of total switches. There is a case for this where not all ports for a switch are used by devices. Unused ports are calculated in the license, then the customer pays for license for those unused ports.  
   

Over three years.

It is stable.

There has been progress from research and development when requests are made or something unusual is discovered during support.

Portnox customer service has been good and quick to respond.

No.

Deployment is straightforward.

Vendor implementation.

The vendor price is fair. licensing was per total number of switch ports.

None.

On-premises

It's being used in a bank of over 4,000 devices, and so far it has been good. No complaints.

Previous to the deployment we didn't have complete visibility of all the endpoints, all the devices that are connected to the network. But with the deployment of portnox, we could see all the devices and where they're connecting. We can equally segregate and apply different rules, policies to each location that we didn't monitor specifically.

It's agentless, and it's scalable.

For now, they just released the new version which has a completely different design interface, and there are some other improvements that were added onto it. So we need to look at it and understand how these features impact the performance and all that before we can make a recommendation.

One thing they can look at is increasing the number of support staff so that there will be more people supporting the solution than they currently have.

It's very, very, stable. 

Of course, it's a scalable solution. One server can support up to 10,000 endpoints and cannot equally be deployed in clusters, where you need more than 10,000.

Tech support is good.

It was easy. It was straightforward. Once you follow the guides it's not complicated.

When selecting a product, if I want to bring in a new solution, I will look up the competing solution: What features do they have that are better than what I'm bringing, which will put me in a better position to make an informed decision and advise the customer accordingly.

If I'm to advise a customer that wants to buy a similar solution, I would first of all find out what their needs are, what their priorities are. Would they want agent or agentless? Would they want software or hardware? Those are the questions I would have to ask before I can say, "Go for this," or, "Go for that." Honestly, all NAC solutions are the same, they do the basic work. So it all depends on the environment, what is obtainable. Some companies don't want agents in their environment, so they go for agentless. Some don't want hardware, so they go for software. So my position is to advise.

I rate this solution a seven out of 10 because it meets my needs of ensuring that my network is protected. But then, I believe there's room for improvement.

I work with a distributor. We Portnox, and NAC solutions.

The most valuable features of this solution are the agent features. 

I like the fact that you can take your device anywhere and still have that visibility from anywhere because it's agent-based.

I believe there is a lot of room for improvement in terms of integration. For example, integration with specific devices such as Huawei and CORE. The integration with third-party vendors could improve.

The scalability could be improved.

I was introduced to Portnox Clear in 2020, two years ago.

I believe that it is stable. That would be based on the customer's experience. We provide solutions to our customers, we are not using them. Stability is also dependent on the configuration, and how it is configured.

In terms of scalability, there is room for improvement.

Scalability issues have emerged with other vendors, as well as with multiple branches.

Technical support is great. I don't have any issues with the technical support of Portnox Clear.

I would rate the technical support a five out of five.

We also work with Portnox CORE.

The initial setup is pretty straightforward. I would rate the installation a four or five out of five.

Compared with other solutions, the pricing is a major pro.

I would rate their pricing a five out of five.

Pricing is quite reasonable.

If you want scalability and have many different vendors in your environment, you must first ensure that they are compatible with those devices. However, if you're looking for pricing, they're quite reasonable when compared to other vendors. In addition, installation is less complicated when compared to other vendors.

I would rate Portnox Clear a seven out of ten.

We primarily use the solution for network access control, on the wireless and the wired LAN. This includes managing; network access control, profiling of endpoints and, also managing guests and consultants on the network. 

Great visibility on who and what is connected or joined the network at any one time. This also allows for security posture attainment because of the profiling features of Portnox Core that allow for a particular endpoint update baseline to join the network or be quarantine until the baseline is met

Profiling to me is the solution's most valuable aspect. It gives you an extra edge, and you've got visibility on the status of the endpoints that are connected to your network. It becomes very easy for you to quickly update, and be able to see the level of availability that you have in the environment. It becomes very easy for you to manage your goals before they can even cause any issues.

For a network access control solution, Portnox is a very good solution. It offers great integration in heterogeneous environments that have a number of different vendor equipment. It is not limited, say, to one vendor. For a network access control solution, it's a very good solution.

Their dashboards are great and very easy to navigate.

It's so easy to set up, you may not need outside assistance.

I don't have any negative feedback in regard to the product as a whole. It's worked well for us and has very good features.

If the solution stayed as is, I'd be very happy with it.

However, if there was a change to the solution, it would be interesting if the Portnox team could include aspects of End-user behavior analytics (EUBA), with an aspect of AI to the already great profiling. But I already think quite highly of it.

I've been dealing with the solution for two years at this point.

The solution is quite stable. We don't have issues with it crashing or going offline. It's very reliable.

The licensing model is based on the number of users. Wireless is based on the number of access points. If I want to scale up, it's very easy. You just buy a new license and additional licenses for the users that you have. 

From a scalability point of view, it becomes flexible, in that you can actually buy licenses for exactly the number of users you have, or a range of a number of users that you hope to have. Scalability is fine and doesn't cause any issues.

Unfortunately, I've never contacted technical support. It's very easy for any IT person to deploy the solution due to the fact that it's extremely straightforward. Everything is visible. The dashboard is clear. Therefore, I've never actually gotten a chance to talk to technical support as there's never been a need. 

Maybe later, when they have a wider deployment, looking at having a number of sites on one CORE, I'll need their assistance. For now, I've not yet spoken to support. I only hope that their support is good when I do finally need to reach out. 

It's straightforward. They have a variety of ways you can deploy it. You can deploy it even using an OVA if you're deploying in a virtual environment. The best thing about it is it's mostly agentless, which makes everything very easy. It's not tedious for a system admin to deploy. The product is very good in that regard. Other solutions need you to deploy agents all over the network, to endpoints that are connecting. This is sometimes administratively impossible. With Portnox, you don't need to worry about this, which is great. 

It's fairly priced. From the features that are on offer, I would say that it gives you great value for money. Licensing model is great and is scalable 

I'd advise other organizations considering the solution to switch when you can. If you compare it to other solutions, other solutions are kind of tied to vendor-specific equipment. They have APIs to connect to other vendors. For Portnox, it's the usual communication interfaces that are already actually implemented within most hardware and most solutions.

It is very easy to work with the solution if you have an environment that has a number of different products, which is most of the IT Department across the world. Even if you have the same brand in the environment, it's very good. However, it is impossible to have one solution for doing everything. 

It is a very, very nice product. I would recommend it to any customer. Even to deploy, it's quite easy, and the price is very good.

Overall, I'd rate the solution ten out of ten. I have never had any issue switch it.

On-premises

We use the solution for NAC which gives us the ability to control networks. 

I am impressed with the solution's voucher capability and authentication. The tool is integrated with Active Direct storage. 

The product should consider more integration with vendors like Huawei. It should also improve visibility. The solution should offer a partner portal that can provide customers training on the in and out of the solution. 

I have been working with the product for more than six months. 

I would rate the solution's stability an eight out of ten. 

I would rate the tool's scalability a seven out of ten since for large environments it needs more intervention. 

The tool's setup is not complex. You need to have some knowledge about it. 

The tool is more expensive than Fortinet. 

The solution is suited for enterprises. I would rate it an eight out of ten. 

The ability of the product to search the entire network and know what you have hidden on your network.

For tech support, most of the time they do not need to ask the IP address of the client since they see it in portnox.

The GUI and the knoxer remote site functions.

2 years

Yes, it didn't block rogue devices in 90 seconds, it took 6 minutes, but they fixed it. Besides that, there were a few security issues they fixed.

It can't work fully redundant.

Customer Service: High level and good customer service.Technical Support: They have good tech support, but have room for improvement.

Before you choose portnox, make sure that it supports all of your needs.

It's a good product but needs improvement.