Positive

I use the system to collect background data, identify cybersecurity issues, and catch exceptions in systems like NetSuite.

I like that the tool has a user-friendly interface. It helps organizations and big companies improve business requirements and control processes.

Adding more detailed descriptions or YouTube videos about specific features would help improve the application.

I have been using the product for two years. 

I don't recall any exceptional stability issues, but I assume they've improved with new versions.

I rate the product an eight out of ten. 

We use it for reporting, noncompliance reporting, and identifying gaps. We use it for API monitoring within our company.

And we also use it as a CMDB. Our security team, people within the SOC team, and people within other IT departments use it as a CMDB. We have integrated Axonius with a few of our solutions, so it has good inventory mapping. It provides information like installed software, running services, file shares, patches, and more. We have integrated it with many different solutions that we use internally.

We refer to Axonius as a CMDB, but the tool was actually onboarded for KPI monitoring and to alert against noncompliances. For example, if a device is running with an out-of-date agent or if a device is missing an agent it is supposed to have, Axonius helps us find unauthorized software installations within corporate devices. We use it for various KPI metrics and send out automated alerts to the relevant IT personnel to address and fix those noncompliances.

Right now, we use it mainly as a CMDB, but the tool was onboarded for KPI monitoring and metrics.

It's the agentless solution. It doesn't rely on specific agents. We integrate Axonius with APIs, which are called adapters or connectors. Essentially, it's API connectivity between different platforms. Getting Axonius up and running only takes a few days. If you have a server or solution, you create firewall rules to integrate with other platforms. This way, Axonius can communicate and collect data from them without needing much infrastructure. It sits on a device and collects data from multiple environments and sources, aggregating everything into a single console.

It also creates multiple dashboards. Axonius provides preconfigured dashboards that can be customized to your needs. What I like is that everything is in one solution, and you don't need agents running on every process to collect information. Other platforms like ServiceNow rely on agents installed on assets, but Axonius doesn’t.

Axonius is agentless and can easily integrate with other platforms. It uses API access accounts with other security solutions. They support a lot of different solutions. When we first started using Axonius, they supported around 400 IT solutions. Now, I think they support more than 600 or 700. I've lost count.

When we started working with them, Axonius was a small company with just a few engineers, but now they’ve grown into a large enterprise. They’ve been great at fixing issues and customizing solutions for clients. They maintain all of that really well.

It is a good solution; it lets you customize the solution based on customer requirements. They can even create custom adapters. For example, if you have a legacy platform or a new solution that doesn’t have official support yet, Axonius can deliver quick fixes by developing custom adapters. I’ve worked with them when we needed to integrate a solution that wasn't in their supported integrations. They gathered the requirements, asked us what data we wanted to pull, and quickly delivered a custom adapter. They also added that adapter to their product timeline, ensuring it would become an official integration in future releases.

In that sense, Axonius has been fantastic at delivering these solutions. We’ve had no issues with them.

Axonius can improve on delivering compliance-related features, like PCI DSS, and different dashboards that work with various compliances. For example, if a company follows ISO, they can create a dashboard that shows the gaps within that compliance framework. They have started delivering some of these features, but the tool still needs to mature for companies that heavily rely on certain standards, like payment compliances or cloud security guidelines.

In those cases, the tool might need further development. However, I haven’t had specific issues because they are really good at fixing things. Whenever we report or escalate something, they are quick in providing solutions.

I think they are very flexible in terms of working with them. But at the same time, they are customizing the solution too much based on client requirements. This might cause issues in the future because if they keep customizing the solution for every single client’s requirement, they might face difficulties in future releases. Integrating every customer’s options within the platform might be challenging to handle.

That might be a risk they are taking. But we have had good communication with them, and overall, it’s been positive.

I have been using it since 2021, so it has been three years. It’s been cruising through so far fine. We didn’t have any issues with the platform. 

During that time, they didn’t have the SaaS options. Now they have started offering SaaS models. We used on-premise deployment, which is hosted within our company data center. But, it’s been going good.

I would rate the overall stability a ten out of ten. But Axonius has a few things they need to integrate. They need to move forward to get more mature in the current IT world. So I’d like to give it an eight out of ten. In terms of working with them and the company’s flexibility, I’ll give ten out of ten for getting things done, customizing solutions, or providing quick fixes for issues we face. For all of that, I’ll give ten out of ten.

All IT people who work on maintaining assets, ordering new assets, and compliance managers will be looking into it. IT directors and anyone who works with IT, but not the end users. End users don’t have access to the platform, but anyone who works in IT and manages the platforms and infrastructure, as well as compliance people who want to monitor KPI metrics and view reports, use it. So, there are 500 to 700 users within my organization.

They’re really great people to work with. Every customer has a dedicated technical account manager. We usually have weekly calls with them to check on everything. When we onboarded the platform, we had regular calls, and they were always available. That was a great experience working with them.

Since it’s an OVA package, it’s a virtualization package that you can just deploy on your VMware, ESXi, or whatever virtualization solution that your company internally uses. It’s just, like, import it, and then they’ll provide you with a license key. If you do a POC, they’ll provide you with a license key for a month so you can try it out and see how the product is going. Once you’re happy, they can provide you with a proper license for however many years you are going to sign the contract with them.

But, the initial setup is pretty straightforward. It’s not like you need to change a lot of things in your environment. It runs in a standalone installation. They also provide a cluster-based solution. If your IT presence is across the globe and you have huge latency that you want to reduce, you can have multiple instances in your different data centers and then aggregate that information in a centralized cluster and show it in a single dashboard. They started offering this around the same time we began working with them.

In terms of onboarding, it only takes a couple of days. It's mostly dependent on your organization's RFCs, change requests, and approval processes. There aren't a lot of configurations needed. You just need to open a few firewall ports for product updates.

The product runs on a Debian-based operating system, and you can scale it based on your requirements. If you're trying to pull 50,000 assets, the requirements will be a bit different. You'll need something like 8 cores, 16 or 32 gigs of RAM, and probably 5 terabytes of storage to store the data.

One of the good features of the product is snapshots. You can go back to specific dates and check the inventory status at that time. Axonius has an option to take daily snapshots within the product.

Axonius collects data from other platforms, and you can configure it to take snapshots at specific times. It keeps the snapshots for as long as you want, impacting your storage. You can keep the snapshots for ten years and still go back to a specific date to check how many assets you had, how many were identified for a specific noncompliance, and when it was fixed. You can check all of those details going back to a specific point in time and still get that information.

Lots of other products, like CMDB products or cyber asset management products, don’t have that functionality. Other platforms give you live data but don’t provide an option to go back and check how it was ten months or a year ago. Axonius gives you historical information and keeps it as long as you want. You can configure it to store the data for one year or ten years based on your storage capacity.

That’s one of the good features we heavily rely on internally.

Axonius is quite a bit cheaper compared to other solutions. And the amount of value they provide is really huge compared to other vendors. So, it’s based on the actual requirement and how you want to use the product within your IT department. 

You can get insights within the platform and see how you can integrate Axonius with your current setup. You can make a decision to go with the POC or something like testing. But I don’t think they provide a free download option. You need to request access to a test engine and then get the software.

Probably, if you have other solutions like ServiceNow, because a lot of companies already have ServiceNow, you might not find much value in moving to Axonius. Whatever Axonius provides, ServiceNow also provides it. So, you need to assess what you’re planning to use it for and check the features that Axonius provides. 

See whether you want to move platforms. They have a few unique features within the platform. But if a company already has a proper CMDB or an asset management solution, you should review your current internal solutions and see the benefit of moving toward Axonius. It might be a financial decision or just a couple of features that Axonius provides additionally on top of the CMDB.

At this stage, I would rate it an eight out of ten. The product needs to mature a little bit more in terms of following up on compliances.

Axonius is a US-based company. We had a few difficulties in getting the legal documents signed when we started working with them. If they had an EU presence, our legal department might have directly worked with them, and it would have been much easier. But since they are completely US-based, we had to sign a lot of data processing agreements and deal with transferring data between the EU and US. The legal department had a few hiccups, and it took some time to go through all those processes.

In the future, if they have a regional headquarters in the EU or where there is no data transfer from the EU region to other regions, it would be much easier for companies to start working with them quickly. In the initial days, we had to sign a lot of contracts because when we started working with them, we had to provide some sample data, and they had to sign a lot of DPA (Data Processing Agreements) between both companies and the legal team. It was a back-and-forth conversation, editing that legal agreement, and putting it in place between both companies.

We had a few issues in getting the single agreement signed in the initial days. But apart from that, no issues.

It’s pretty much company-focused decision to choose a solution. If you don’t have any solution for CMDB, I think it’s good to go with Axonius because they have good integration. They support a lot of different tools. Within their platform, you have a separate section per adapter where they’ve mentioned probably 600 to 700 IT solutions that they can integrate and work with. You can also check within the description what kind of use cases you can get from that integration. For example, if you have some kind of vulnerability management solution or MECM or a BitLocker administration tool, Axonius will give you information on what kind of data it will pull from the individual sources. You can create reports, check BitLocker statuses, and see what kind of encryption has been applied and how it is maintained.

It will give you those use cases as well, showing what you can get out of that particular integration between Axonius and whatever solution you are looking for. You can list down all the solutions you use internally within your company and then check the Axonius portal or website to see what use cases you can integrate with the platform. You can at least get an idea before you even try to speak with the Axonius team and start working with them yourself to see the benefits of utilizing the platform.

We don't use it to the fullest. We just use it for a few pieces because we have other solutions for that. But they have a lot of different features within the platform. We are not actually replacing everything. We just use a few bits and pieces, like enforcement center actions, CMDB, and a few other features within the platform.

We've got we've got a ton of use cases for the solution. However, a lot of companies will use it primarily on the IT asset management side, which it does a terrific job of. We do use it for specific use cases tied to that. That said, being in the security realm, we really use it as a cyber attack surface and security control gap tool.

For us, on the security side, we connect our EDR solution, like CrowdStrike and Carbon Black or any access control like Azure Active Directory and regular Active Directory, et cetera. It allows you to identify whether or not what you consider the asset source of truth in your environment is actually doing a good job or not. A CMDB, for example, a lot of folks want to rely on that as a source of truth for all assets. 

However, when you connect these disparate sources to Axonius, you're able to see and identify the gaps that you might have in that inventory. If you've got a vulnerability scanner scanning an asset or EDR on a specific tool that you can see but don't see in your CMDB, you've identified a gap. You can use that for a number of cases. You can, for example, see stuff that's in your CMDB that you don't have malware coverage for. That's really where the power of Axonius comes in - to be able to identify those gaps. That's one major use case, and that's a really big one in our space.

For a security outfit, you are constantly trying to do a good job of ensuring you've got your organizational controls in place enterprise-wide. If you don't know what you're protecting, chances are you've got gaps in your protection. That visibility that we now get from Axonius gives us enormous peace of mind that if it's out there in our environment, we know we can see it in some way using this tool. From there, it's just a matter of what appetite we have to address your gaps. The knowledge they provide, from a security professional perspective, is invaluable. 

Axonius has been the most effective in enhancing our security posture. When it comes to something like Axonius, the tool is only as effective as the source connections that you provide. Essentially, what Axonius does is it connects to a number of disparate sources in your environment, whether on-prem or SaaS applications, via API connections. Right now, Axonius has upwards of 900 or so of those out of the box. It comes down to what sources you want to connect to it to identify gaps in your ecosystem. 

The automation capabilities in Axonius have streamlined our security operations. You're bringing all this data in, and Axonius does a great job of taking all this data, normalizing it, and correlating it together. It does all the deduplication and stuff for you. Then, you can build queries in the tool to see what you want to see. 

For example, if I want to see everything that's not being scanned by a vulnerability scanner that's part of my Linux server population, I can do that. On top of that, Axonius has what's called an enforcement action feature. You can take action on the data you build in these queries. A good example of how to use this might be if you've got geolocation data coming in. You can build enforcement to say, "If I see someone logging in from anywhere outside of the continental US, I want CrowdStrike to go out there, and network isolate that machine, and cut it off from the network." You can orchestrate all of that from Axonius.

There are some machine-learning pieces at the back end of the tool. There is a feature that we're not currently using right now for query building. When you construct queries in Axonius, you don't need to learn any sort of query language or anything like that. It's got a logic builder that you can use. However, to make things even simpler, you can integrate it with OpenAI and ChatGPT, and you can use Axonius' company license for that, or you can use your own enterprise license. That allows you to really just text the questions, and it gives you it gives you the answers. It's as simple as it gets.

They move so fast that there's a new release almost every week. Probably the biggest benefit that I've seen in terms of support from Axonius is that they don't charge you to improve their application. 

You can easily request new features. For example, if there's data that I'm not seeing or if I want a new feature in the tool, it really is just as simple as putting a request in and speaking to your technical account manager. Depending on the complexity, it can be in there in a matter of weeks. 

It's hard to say what is lacking as it continues to grow and allow you to put in new requests. If you need something, they don't charge you for it, and they can make the change in a hurry. It's all a part of their support contract. 

I've been using the solution for two years now.

We sometimes have issues with the UI. We can have fetch cycle issues. That's probably been our biggest headache with Axonius, and they've continued to work on it for us. There's a balance between how much computing power they give you for your instance versus all the sources that you're trying to connect to. If you're trying to fetch all of this data every single day, it requires a lot of juice to go out there and do it. Your instance can be slow sometimes if that drags into the next day.

The scalability potential is huge. It's virtually limitless. They are working to become a one-stop-shop type of application, which is almost unheard of these days. 

We have a few hundred users on the product. 

I have never dealt with a better technical support team ever.

The deployment was straightforward for us. There are a number of deployment methods. There's a strictly on-prem one. There's a hybrid deployment. We went with vendor-managed deployment. As far as deploying the instance, it took them a matter of minutes to turn it on. 

In terms of deploying it with connecting sources to it, that's largely dependent upon your organization's speed. That said, they make the adapter connections really easy to connect. It's pretty simple.

If you have experience with APIs, the setup is pretty easy.

The pricing is a bit subjective. Compared to other major enterprise tools, what is on offer is very reasonable. It's cheaper than other IT asset management tools on the market, like ServiceNow. 

I'm a customer. 

I'd rate the solution eight out of ten. I'd recommend the solution to others. 

People need to keep in mind that the data that Axonius provides is only as good as the data you give it. So, if you've got a messy environment, be prepared to come up with inventive ways to look at the right scope of resources or assets in the tool to facilitate cleaning up your environment. That can be challenging at the outset.

The tool's main use case is connecting multiple IT systems using various adapters. It helps identify device registration, uptime, usage, and deviations from expected performance. When deviations are detected, you get alerts and can take necessary actions. A major use case is its integration with ServiceNow, which provides a landscape of your devices and allows you to see them and write policies accordingly.

The most valuable feature of Axonius is its ability to deduplicate records and identify which ones are old and stale versus those more relevant. For example, if you haven't logged in today but a system somewhere else mentions you have, Axonius can detect this through various logs like Active Directory, file logging, or Wi-Fi connections. Traditionally, someone would have to make numerous calls and spend a lot of time to find out if you are on-site or connected to a Wi-Fi network. The tool simplifies this process.

From my experience, onboarding and adding connectors was pretty easy, especially when integrating with the ServiceNow environment. It worked well for my use case, but the ease of use can depend on the customer's specific needs and what they are trying to achieve.

For Axonius, I would suggest supporting more ticketing platforms and enhancing API integration directly into the platform rather than just the connector. This would allow for better integration from different systems, possibly into workflows, which I think is currently lacking.

I have been using the product for three months. 

The tool is stable, and I haven't encountered any bugs. 

The solution is a scalable product. You can install and provision it on the largest available cloud instance. It scales based on demand and licensing and is monitored by the vendor's platform, so it definitely scales based on your use case.

The tool's support is responsive. 

I use the tool's SaaS version. As an IT operations professional, you should know what you're doing before using this tool. It's not an end-user tool; it's meant for IT engineering, operations management, or developers. It depends on what you're trying to accomplish. So, I would advise understanding your goals clearly before integrating this tool into your operations.

Ensure you label and use tags appropriately. Tagging can get out of hand, so everyone must agree on the tagging system. This approach will help you scope your reports and policies effectively. 

I rate the overall product an eight out of ten. 

We use Axonius as an asset monitoring tool. Our adapters and assets are tagged into Axonics using an AD group. We have segregated into region-wise assets, and it's easy to look at the dashboard and see if an investment is down in a particular region.

Within the system life cycle, Axonius does its eCheck. The best feature I found in Axonius is that it shows us the duration of eCheck, and it shows us what device is down and in which part of the system life cycle or the checking part the system is down in. So, investigating makes it a lot easier because we can pinpoint the exact time and location of the asset. And then, when you customize your queries, you can also figure out the reasons. I'm not very familiar with the customization of queries, but I've seen seniors do it, and it's quite brilliant to find or have a tool like that.

Regarding the improvement of Axonius, it goes halfway for both the tool and the user. If we set it up quickly from our end, and if the AD groups and all other groups assigned to tag the assets have been tagged correctly, Axonius could not show an error. But we are still sorting out our segregation for assets as well. However, Axonius can't pull out the exact reports, but there is a way around this, where we can use the built-in queries. For example, we have CentOS systems, and within CentOS, we have tagged assets with vulnerabilities, but these assets do not appear in Axonius. As an alternative, what we do for this is write a query to find the vulnerability of assets that are tagged within CentOS systems. I would say both the tool and the user must work together to get good results. 

I have been using Axonius for the past year.

Stability-wise, Axonius has failed once, but it was an error on our part and not the solution. I would rate the stability of Axonius a ten out of ten. 

The Axonius customer support team is excellent, and they resolved our queries within minutes. 

Positive

I was not involved in the initial setup process. But as per the deployment team, it is a relatively straightforward tool, especially if you're good at writing queries. Axonius has all the information so neatly documented that if a non-technical person looks at the dashboard, they can set it up. The solution was deployed on-premises, but now we are migrating to the cloud. 

We are on a subscription model.

I would advise the new users that Axonius is an asset management tool. If you have a lot of assets that are not registered or have not been assigned, then Axonius is one of the tools you could use to tag your assets individually. Axonius makes your entire life easier when you want to know where each asset is. 

We have a policy in place regarding the usage of AI. We have yet to figure out the security measures for how our data will be fed into Axonius and how it will be used to train the model; hence, we will not be using AI for now. Another piece of advice is that the reporting feature is brilliant. You'll have one of the best reports if you know how to get what you want from the query tools.

Overall, I would rate the solution a nine out of ten.