Complete Zero Trust Platform vs. Platform Driven Virtual Machines
Dispel® Provides Zero Trust Access to a Virtual Machine, Agilicus Anyx Zero Trust Access Eliminates the Need for One
Discover Why Identity-Aware Zero Trust Access Beats a Platform Driven Virtual Machine
The Fundamental Difference
The choice between Agilicus and Dispel is a choice between a complete Zero Trust Platform and a platform connecting users to virtual machines to access shared resources. A choice between utilizing existing identity providers for all remote users and vendors using unified Single Sign-on and requiring a new account on the connecting platform.
Agilicus
Agilicus AnyX is a Zero Trust platform connecting users to shared resources through a proxy. Users connect to the resource utilizing their existing identity provider for single sign on for all users, including contractors, vendors, and external support teams
Dispel
Dispel utilizes Zero Trust principles to authenticate a user at the client level, connecting users to a shared resource through a virtual machine. Users are assigned a new account in the Dispel platform which is used to connect a user to a resource.
Identity Model Comparison
Agilicus
Unified Single Sign on with Proxy Connection
→
Use Your Existing Identity Provider for On-Demand Direct Connection
Dispel
Dispel platform account with Virtual Machine
→
New Platform Account Needed for Connection to Virtual Machine
Enabling users to utilize their credentials (username and password) from their existing identity provider to authenticate their identity enables instant provisioning and decommissioning of user accounts. Utilizing Single Sign-on eliminates the risk of shared passwords, vendor accounts, and passwords being stored in unsafe ways (spreadsheets, post-it notes, sheets of paper). Utilizing Single Sign-on to authenticate a user allows for granular authorization for resources, allowing that specific user to only access specific resources, at the access levels they need, at the permission levels they require to complete their task.
Agilicus AnyX is a complete Zero Trust Network Access platform, comprising authentication, authorization, audit, access. One of AnyX’ core features is the ability to remotely use a remote graphical environment, via both Remote Desktop Protocol, and VNC. These are available via a browser, or via a native client, and incorporate Agilicus’ trademark simple, seamless, single-sign-on via your existing identity providers, for your staff, your partners, with optional multi-factor authentication.
Why Modern Teams Choose Agilicus
Compare capabilities side-by-side.
Feature
Agilicus AnyX
Dispel
Client Requirement
None (Browser Only)
No Clients to Manage or Configure. Self Updating
Dispel VPN Client or browser based connection available via Azure Bastion
Precise Authorization
Yes
Precise authorization per resource, per user.
Define access levels per user
Define permission levels per user
No
All users accessing the virtual machine share the same authorization level.
Granular Audit Logs
Granular Audit Logs
Granular audit logs for each user and resource.
Know who accessed what, when, and what they did while they were there.
Network Layer Audit
Users connect to a virtual machine, Audit trails will be at the connecting layer, with application layer not available through the platform.
On-Premise Hardware Required
Not Required
Agilicus connector can be installed on existing footprint within the facility with no additional hardware required
Required
Requires a Virtual Machine on-premise to run the Dispel Wicket ISO with minimum system requirements including dual network interface and dual vCPU
Operating Layer
Layer 7
Operates at layer 7 – Application layer
Layer 3
Operates at layer 3 – Network layer
Support Unified Single Sign-on with Existing Identity Provider
Yes
All users (internal, third party, contractors, vendors, etc.) can sign on using credentials from their existing identity provider
No
A new Dispel user account is created for all users accessing the platform.
Firewall Visibility
Is the traffic inspectable by Next-Gen Firewalls
Yes
TLS / HTTPS Inspectable
No
1197/1198 UDP not inspectable
Clientless Universal Access
Access all resources from any device with a web browser.
- Equal security across all devices accessing resources
- Enable BYOD while maintaining security
- Easy Access to all authorized resources in one tile-based web launcher
Granular Authorization
Granular authorization and permission levels on a per resource level.
- Enforce read vs write permission levels per user
- Enable specific users to perform specific tasks on a resource
- Native resource request workflow for task based permissions
Per-Resource Authentication
User authentication at a per resource level to enable granular authorization.
- Enables granular audit logs for what user on what device
- Eliminate shared passwords and team level access
- Provision / Decommission resources on a per user basis
Ready to move beyond legacy remote desktop?
Experience the security of a complete Zero Trust platform. No Clients to manage, no shared passwords to fear.