# Agilicus vs Dispel # Complete Zero Trust Platform vs. Platform Driven Virtual Machines Dispel® Provides Zero Trust Access to a Virtual Machine, Agilicus Anyx Zero Trust Access Eliminates the Need for One Discover Why Identity-Aware Zero Trust Access Beats a Platform Driven Virtual Machine [TRY NOW](/l/no-cost-trial/) [BOOK A MEETING](https://www.agilicus.com/book-calendar-meeting/) ## The Fundamental Difference The choice between Agilicus and Dispel is a choice between a complete Zero Trust Platform and a platform connecting users to virtual machines to access shared resources. A choice between utilizing existing identity providers for all remote users and vendors using unified Single Sign-on and requiring a new account on the connecting platform. ![icon-authentication](https://www.agilicus.com/www/d82985c0-authentication.svg) ### Agilicus Agilicus AnyX is a Zero Trust platform connecting users to shared resources through a proxy. Users connect to the resource utilizing their existing identity provider for single sign on for all users, including contractors, vendors, and external support teams ![icon-server](https://www.agilicus.com/www/fc8d0a94-icon-server.svg.svg) ### Dispel Dispel utilizes Zero Trust principles to authenticate a user at the client level, connecting users to a shared resource through a virtual machine. Users are assigned a new account in the Dispel platform which is used to connect a user to a resource. #### Identity Model Comparison **Agilicus** Unified Single Sign on with Proxy Connection → Use Your Existing Identity Provider for On-Demand Direct Connection **Dispel** Dispel platform account with Virtual Machine → New Platform Account Needed for Connection to Virtual Machine Enabling users to utilize their credentials (username and password) from their existing identity provider to authenticate their identity enables instant provisioning and decommissioning of user accounts. Utilizing Single Sign-on eliminates the risk of shared passwords, vendor accounts, and passwords being stored in unsafe ways (spreadsheets, post-it notes, sheets of paper). Utilizing Single Sign-on to authenticate a user allows for granular authorization for resources, allowing that specific user to only access specific resources, at the access levels they need, at the permission levels they require to complete their task. Agilicus AnyX is a complete Zero Trust Network Access platform, comprising authentication, authorization, audit, access. One of AnyX’ core features is the ability to remotely use a remote graphical environment, via both Remote Desktop Protocol, and VNC. These are available via a browser, or via a native client, and incorporate Agilicus’ trademark simple, seamless, single-sign-on via your existing identity providers, for your staff, your partners, with optional multi-factor authentication. ## Why Modern Teams Choose Agilicus Compare capabilities side-by-side. Feature **Agilicus AnyX** **Dispel** #### **Client Requirement** **None (Browser Only)** No Clients to Manage or Configure. Self Updating Dispel VPN Client or browser based connection available via Azure Bastion #### **Precise Authorization** Yes Precise authorization per resource, per user. Define access levels per user Define permission levels per user No All users accessing the virtual machine share the same authorization level. #### **Granular Audit Logs** Granular Audit Logs Granular audit logs for each user and resource. Know who accessed what, when, and what they did while they were there. Network Layer Audit Users connect to a virtual machine, Audit trails will be at the connecting layer, with application layer not available through the platform. #### **On-Premise Hardware Required** Not Required Agilicus connector can be installed on existing footprint within the facility with no additional hardware required Required Requires a Virtual Machine on-premise to run the Dispel Wicket ISO with minimum system requirements including dual network interface and dual vCPU #### **Operating Layer** Layer 7 Operates at layer 7 - Application layer Layer 3 Operates at layer 3 - Network layer #### **Support Unified Single Sign-on with Existing Identity Provider** Yes All users (internal, third party, contractors, vendors, etc.) can sign on using credentials from their existing identity provider No A new Dispel user account is created for all users accessing the platform. #### **Firewall Visibility** Is the traffic inspectable by Next-Gen Firewalls Yes TLS / HTTPS Inspectable No 1197/1198 UDP not inspectable ![icon-world](https://www.agilicus.com/www/9b679333-icon-world.svg.svg) #### **Clientless Universal Access** Access all resources from any device with a web browser. - Equal security across all devices accessing resources - Enable BYOD while maintaining security - Easy Access to all authorized resources in one tile-based web launcher ![icon-padlock](https://www.agilicus.com/www/c1324345-icon-padlock.svg.svg) #### ****Granular Authorization**** Granular authorization and permission levels on a per resource level. - Enforce read vs write permission levels per user - Enable specific users to perform specific tasks on a resource - Native resource request workflow for task based permissions ![icon-global-network](https://www.agilicus.com/www/965b276e-icon-global-network.svg.svg) #### ****Per-Resource Authentication**** User authentication at a per resource level to enable granular authorization. - Enables granular audit logs for what user on what device - Eliminate shared passwords and team level access - Provision / Decommission resources on a per user basis ## **Ready to move beyond legacy remote desktop?** Experience the security of a complete Zero Trust platform. No Clients to manage, no shared passwords to fear. [CONTACT US](/contact-us/) [BOOK A MEETING](https://www.agilicus.com/book-calendar-meeting/)