External reviews are not included in the AWS star rating for the product.
I have been using Cisco Duo for around two to three years, mainly in my work related to networking and security operations.
My main use case for Cisco Duo is multi-factor authentication and secure access management. Day-to-day, I use it to securely log into company VPNs, internal dashboards, and cloud applications. For example, when accessing network devices or remote systems, it sends a push notification to my phone for verification before granting access.
The best features of Cisco Duo are multi-factor authentication, single sign-in, passwordless authentication, device trust, and risk-based authentication. It adds extra checks based on the risk of location.
Risk-based authentication and device trust help us reduce security risk without slowing users down. Risk-based authentication flags unusual logins and adds extra verification only when needed. It ensures only compliant and secure devices can access internal systems. Overall, it improves security while keeping normal logins fast and seamless.
Cisco Duo has improved our security posture significantly by reducing unauthorized access attempts. We have also seen faster and more consistent security logins, fewer password-related issues, and less dependency on IT for access problems. Overall, it made remote access more secure and efficient.
Cisco Duo has helped mainly in IT support efficiency and authentication overhead. We have seen fewer password reset requests and account lockout issues, which reduces help desk workload. It also saves time in security operations because access decisions are automated through MFA and policy rules instead of manual checks.
A few areas of improvement for Cisco Duo are device re-enrollment could be simpler when users change phones, faster troubleshooting tools for login issues, and push notifications could be more reliable in low network situations.
I have been working in my current field for almost three years.
Cisco Duo's scalability is pretty good. There is a clear positive ROI, mainly in productivity and support cost savings. We saw fewer password reset tickets with a reduced IT workload.
Customer support is generally good but can be inconsistent depending on the issue and support tier, with slow responses for complex and escalated cases. The experience is variable depending on the support engineer. Overall, support is generally reliable and helpful for setup and day-to-day issues.
Previously, we mainly relied on password-only authentication, basic Active Directory logins, and some simple OTP-based tools.
If Cisco Duo were removed, the biggest impact would be a significant drop in security and an increase in login risk.
I am not directly involved with that, but setup was fairly smooth with minimal upfront cost, and licensing scaled based on user count, so it must be cost-effective.
There is a clear ROI, mostly in time savings and reduced support effort, even if it is not always tracked as a single dollar figure. We have seen fewer help desk tickets, faster login rates, and reduced security incidents.
We evaluated a few MFA solutions before choosing Cisco Duo, including Microsoft Authenticator, Entra ID MFA, and Okta Verify.
The biggest impact has been a stronger security posture with simpler user access. We have reduced unauthorized risk through MFA and device checks while keeping logins fast and consistent for users. It also improved operational efficiency by cutting down password-related support tickets and reducing manual access issues for IT.
We have strengthened phishing resistance mainly through MFA enforcement, conditional access policies, and user awareness training. Cisco Duo helps us by requiring multi-factor authentication for every login. So even if credentials are stolen, access is blocked without the second factor. We also use its device verification and risk-based prompts to stop suspicious login attempts early.
It has improved noticeably. With Cisco Duo, we can detect suspicious logins faster through risk-based alerts. Compromised credentials are less effective because MFA blocks access even if passwords are stolen. It has also improved response time since admins can quickly deny access or review login activity in real-time.
I would rate this review a 9 out of 10.
My use cases for Cisco Duo include it being a more robust, easier to manage MFA solution than most.
What I like the most about Cisco Duo is the ease of use; the visual design with checkmarks and green checkmarks paired with red X marks is the best feature ever.
What I dislike about Cisco Duo is that anything that Cisco Duo lacks, we can do through Microsoft, which is a workaround because we're integrated with Microsoft, and that was the first thing I did. If anything ever has a problem connecting to Cisco Duo, I just connect to Microsoft, which then connects to Cisco Duo, so that resolved most of my issues.
The other problem I had is now fixed. Cisco Duo did not integrate with Cisco Meraki products, but now you do. I was not updated about that integration, and it would have been nice to receive an email about it. However, I sometimes receive a high volume of emails from various sources, so being informed of that update was not very clear to me. I'm not sure when that happened; I just noticed it on my own. It was a very welcome change and it would have been nice to receive clear communication about the new feature. If updates happen all the time, it becomes difficult to pay attention to them. There are some vendors that send too many updates. I cannot go through all of them, and honestly, I cannot remember off the top of my head if Cisco Duo is one of those vendors or not because it is a very common issue.
I have been using Cisco Duo in my career overall for three to four years or more.
The initial deployment for Cisco Duo was not a problem at all. Most of the work involves having a good antivirus or spam filter; you just have to fine-tune the settings to where you want them to be, and that just takes time and knowledge on what preferences you prefer. It was actually really nice and easy.
We had an issue where our people were getting locked out of their accounts because somebody was trying to log in as them. We used Microsoft's MFA, and it stopped them from getting in but still locked the account, which was inadequate. Cisco Duo stopped that from happening, and that was awesome.
I think the pricing of Cisco Duo is great; it's good enough that I do not think about it, and I do not look at other options. We tested out Microsoft's MFA before we tried Cisco Duo, and it failed on day one; it would not work and did not work for what our use case was at all, while Cisco Duo worked on day one, which was the best thing ever. I never had issues with Cisco Duo.
It was a bit of a pain when Cisco Duo had the proxy service that you had to have, and then you got rid of that, so you fixed that issue right away. Cisco Duo just works; that is the best feature. I would rate this solution highly based on my overall positive experience with the product and its performance.
My experience with Cisco Duo's strong security authentication system has been good; it performs very well when logging in.
I have not used Cisco Duo's conversational AI interface for admin tasks.
My impression of Cisco's Identity Intelligence capability to detect and respond to identity-based risks is that it is good, but the problem is that their reporting is not good compared to Palo Alto and Fortinet; the reporting would be a struggle.
I do not utilize the Advanced Identity Threat Detection and Response feature because we have Cisco IPS, so we are using that instead.
Cisco Duo could be improved by making it available on Microsoft Azure.
I would rate Cisco Duo seven out of ten because of the issues I have already mentioned. The Cisco firewall is a bit slow, and I am uncertain whether they have a mobile pass feature in Cisco Duo.
I think a mobile pass feature should be an alternative option nowadays in case there are any issues in the telecom sector.
I have been working with the product for more than two years.
There are no new features or functionalities in Cisco Duo that my organization has started using recently. We have two-factor authentication with FTD, and as I mentioned, we are moving to the cloud, so we will deploy Cisco Duo on the cloud for our cloud-hosted applications.
I do not think Cisco Duo is the best option on the market thus far.
I used FortiAuthenticator and Microsoft Authenticator before Cisco Duo.
I think the pricing of Cisco Duo is acceptable; we know how to reduce the cost.
The choice depends on how the data centers are moving. If they are completely moved to the cloud, then we will use Microsoft.
I have experience with Cisco Duo. I have been quite satisfied with Cisco Duo. The implementation of Cisco Duo is straightforward. I am a customer of Cisco. I would rate this product seven out of ten overall.