Coming October 25: PeerSpot Awards will be announced! Learn more
  • Home
  • Check Point Harmony Endpoint vs. Fortinet FortiClient

Check Point Harmony Endpoint vs Fortinet FortiClient comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Check Point Harmony Endpoint vs. Fortinet FortiClient
September 2022
Executive Summary

We performed a comparison between Check Point Harmony Endpoint and Fortinet FortiClient based on real PeerSpot user reviews.

Find out in this report how the two EPP (Endpoint Protection for Business) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Check Point Harmony Endpoint vs. Fortinet FortiClient report (Updated: September 2022).
Download the complete report
634,325 professionals have used our research since 2012.
Featured Review
Mark Broughton
Tighter integration with Umbrella and Firepower gave us eye-opening information
The ability to respond rapidly, whether it was doing isolation or threat hunting, helped improve our security. Even when there were a few false... Read more →
Anonymous User
Granular with an easy disk encryption and works very well
This "Harmony Endpoint" tool is a modern solution from the Check Point Harmony family and has helped us improve the company's security with... Read more →
Rui Ribeiro
Great integrated VPN, real-time signature scans, and central intelligence
We moved through these key phases: * Study application signatures identification capabilities. * Get to know the fabric connection to Fortigate/EMS... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is its threat protection and data privacy, including its cyber attack and data protection, as we need to cover and protect data on user devices.""Device Trajectory is one of the most valuable features. We're able to dig in and really understand how things came to be and where to focus our efforts.""appreciate the File Trajectory feature, as it's excellent for an analyst or mobile analyst. I can track everything that happens on our server from my PC or device. Integration with SecureX is a welcome feature because it connects Cisco's integrated security portfolio with our complete infrastructure. Sandboxing is helpful, and integration with the Cisco environment is excellent as we use many of their products, and that's very valuable for us.""Among the most valuable features are the exclusions. And on the scalability side, we can integrate well with the SIEM orchestration engine and a number of applications that are proprietary or open source.""The entirety of our network infrastructure is Cisco and the most valuable feature is the integration.""The integration with other Cisco products seemed to be really effective. We had Umbrella in place and we were using AnyConnect as well as Firepower. Once a threat was detected, being able to do the threat lookups and the live tracking was really useful.""It is extensive in terms of providing visibility and insights into threats. It allows for research into a threat, and you can chart your progress on how you're resolving it.""The biggest lesson that I have learned from using this product is that there is a lot more malware slipping through my email filters than I expected."

More Cisco Secure Endpoint Pros →

"The solution has all the standard features you would expect for endpoint protection.""A unique feature with this product is that it will detect if the user is entering their password on a website, and then block it.""We love that we don't have to upgrade it anymore. They take care of that.""Harmony Endpoint is able to detect, monitor, block, and mitigate attacks on the endpoint and it builds and maintains relevant logs for later inspection.""Check Point Endpoint Security really helped the business stop various malware attacks throughout the time we used it, including a ransomware attack, which was stopped in minutes.""The technical support is good.""The product is stable.""We are able to manage all our endpoints from a single cloud console."

More Check Point Harmony Endpoint Pros →

"The most valuable features are malware detection, integrates well with other solutions, and ease of use for all users.""The most valuable feature is the single pane of glass, single point of management.""The solution offers great stability.""Having a centralized console is a valuable feature. The Fortinet fabric is also very valuable where all different pieces talk together to secure our network and track the North, South, East, and West movement of files and data through our network.""The VPN connection is the feature that I like the most.""FortiClient's most valuable features are that it's fast and safe.""This solution makes it easier to work from home.""It’s easy to use."

More Fortinet FortiClient Pros →

Cons
"We had a lot of noise at the beginning, and we had to turn it down based on exclusions, application whitelisting, and excluding unknown benign applications. Cisco should understand the need for continuous updates on the custom Cisco exclusions and the custom applications that come out-of-the-box with the AMP for Endpoints.""This product has issues with the number of false positives that it reports.""We don't have issues. We think that Cisco covers all of the security aspects on the market. They continue to innovate in the right way.""An easier way to do deduplication of machines, or be alerted to the fact that there's more than one instance of a machine, would be useful... That way you could get a more accurate device count, so you're not having an inflated number.""In terms of the user experience, if the UX design could be much simpler [that would improve things]... if they could make it more intuitive for someone who is not an engineer so that they still can read what's going on in their webpage and understand, that would be something.""The GUI needs improvement, it's not good.""It could be improved in connection with artificial intelligence and IoT.""They could improve the main dashboard to more clearly show me the things that I want to see. When I open the dashboard right now, I see a million things and they are not always the things that I need."

More Cisco Secure Endpoint Cons →

"The web filter service could be improved.""Unfortunately, the web (cloud) management system and log search performance are quite bad.""We did have some early compatibility issues, which I hope Check Point has since resolved.""There are still functionalities that I have not been able to fully test and I would like to spend more time using the tool before offering an opinion to the IT Central community on this point.""Endpoint vulnerability management is one of the modules I believe is missing and it is something that is required.""Check Point Harmony is definitely pricier compared to other endpoints.""It would be useful if you could also mark blocks as safe from a client. Now users always have to ask an admin to make exclusions.""The solution needs more alerts to warn of attacks."

More Check Point Harmony Endpoint Cons →

"While we like patch management, it would be nice if it could handle patch management for other solutions, like Microsoft.""The reports could be easier to set up.""We've had some problems with having to remove the current version and either reinstalling an old version or updating to the new one.""FortiClient is not great in Linux.""With the lower-end licenses, it tends to kick you out after eight hours. There is a function where it automatically kicks you out after eight hours. They could improve that and not kick you out after eight hours. Other than that, it is already pretty good.""We'd like to see a deployment wizard to help implementation become streamlined.""Fortinet needs to cover more areas where threats can come from.""I don't think FortiClient is bad, but it's very buggy. We ran into some issues with the EMS, which amounted to more than 10 cases last year."

More Fortinet FortiClient Cons →

Pricing and Cost Advice
  • "Licensing fees are on a yearly basis and I am happy with the pricing."
  • "We have a license for 3,000 users and if we get up to 3,100 users, it doesn't stop working, but on the next renewal date you're supposed to go in there and add that extra 100 licenses. It's really good that they let you grow and expand and then pay for it. Sometimes, with other products, you overuse a license and they just don't work."
  • "Cisco Secure Endpoint is not too expensive and it's not cheap. It's quite fair."
  • "The price is very fair to the customer."
  • "...the licensing needs to be improved. All the product features we need are there. It's just a matter of the complexity and the different offerings and trying to figure things out."
  • "The pricing and licensing fees are okay."
  • "Because we do see the value of what it's bringing, I think they have priced it well."
  • "The solution is highly affordable; I believe we pay $2 or $3 per endpoint. It's significantly cheaper than the competitors on the market."

    • More Cisco Secure Endpoint Pricing and Cost Advice →

  • "Licensing comes free in that first year or is included in the base package. From a commercial point of view, it really just is the renewal cost, rather than a one-time fixed cost or buy-in."
  • "The cost is huge compared to other products that are available on market."
  • "Initial monies replacing all AVs with a single product is about £10k."
  • "There are three different licensing models including basic, advanced, and complete, and it needs to be selected according to the endpoint."
  • "Check Point Harmony Endpoint is cost effective."
  • "The price is good."
  • "We implement this solution with a yearly subscription and there are no extra costs."
  • "The price of Check Point Harmony Endpoint is comparable to SonicWall. The price could be a bit lower."

    • More Check Point Harmony Endpoint Pricing and Cost Advice →

  • "Generally, Fortinet is not cheap. The features that are available for free are only for FortiClient VPN clients, not other solutions. It includes web security, antivirus, and one more feature."
  • "Pricing is an area that I would like to see improved, as it could be lower."
  • "The price is reasonable compared to competitors, it is very good."
  • "Its pricing is good. One thing that has always attracted us to the Fortinet range of products is that their pricing is very competitive. Our particular licensing is on a yearly basis. However, as part of this project, we did pre-purchase three years of maintenance and support at a fairly significant discount."
  • "It is a yearly subscription license. I don't see a problem with the pricing. Resellers add their markup and then give it to us, but I don't see that as a major challenge. It is fine."
  • "I don't have the licensing schema for the VPN solution because we just purchased the VPN gateway."
  • "If we pay for the yearly package that includes the FortiGate firewall, then the FortiClient VPN license is included with it."
  • "The price of the solution depends on the type of firewall you have from FortiGate. I am satisfied with the price of the solution."

    • More Fortinet FortiClient Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which EPP (Endpoint Protection for Business) solutions are best for your needs.
    See Recommendations
    634,325 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Cisco AMP for Endpoints?
    Top Answer:The most valuable feature is signature-based malware detection.
    Read all 19 answers   →
    What is your experience regarding pricing and costs for Cisco AMP for End...
    Top Answer:Licensing fees are on a yearly basis and I am happy with the pricing.
    Read all 12 answers   →
    What needs improvement with Cisco AMP for Endpoints?
    Top Answer:The GUI needs improvement, it's not good. There are false positives in emails. At times, the emails are blocked and… more »
    Read all 20 answers   →
    What do you like most about Check Point Harmony Endpoint?
    Top Answer:We are able to manage all our endpoints from a single cloud console.
    Read all 42 answers   →
    What is your experience regarding pricing and costs for Check Point Harmo...
    Top Answer:The costs depend on the company size. In my case, I was able to have all the features, including email protection… more »
    Read all 31 answers   →
    What needs improvement with Check Point Harmony Endpoint?
    Top Answer:It would also be great to include DLP capabilities for the endpoint so that we do not have to deploy additional agents… more »
    Read all 43 answers   →
    How does Fortinet FortiClient compare with Open VPN Access Server?
    Top Answer:Fortinet FortiClient is a feature-rich solution that is easy to use and deploy without sacrificing safety and security… more »
    What's the difference between Fortinet's FortiEDR and FortiClient?
    Top Answer:I suggest Fortinet’s FortiEDR over FortiClient for several reasons. For starters, FortiEDR guarantees solid protection… more »
    What do you like most about Fortinet FortiClient?
    Top Answer:The setup for FortiClient is really straightforward.
    Read all 48 answers   →
    Comparisons
    Also Known As
    Cisco AMP for Endpoints
    Check Point Endpoint Security, Endpoint Security, Check Point SandBlast Agent
    FortiClient
    Learn More
    Cisco
    Check Point
    Fortinet
    Overview

    Cisco Secure Endpoint is a cloud-managed endpoint security solution that provides advanced protection against viruses, malware, and other cyber threats by detecting, preventing, and responding to threats. Cisco Secure Endpoint is managed online via a web-based management console and can be deployed on a variety of platforms. It protects endpoints, networks, emails, and web traffic.

    In a world of evolving threats, it’s necessary to put security above everything. Cisco Secure Endpoint provides you with the scope, scale, and capabilities to attain effective security with its integrated portfolio and industry-leading threat intelligence. Cisco Secure Endpoint continuously tracks and analyzes files and file activities across your systems - both remote and on premises - and compares these events to other events that occurred before or during past attacks. If a file exhibits malicious behavior, the tool sends an alert which enables you to stop a potential threat from succeeding.

    Key Capabilities of Cisco Secure Endpoint

    • Multi-layered protection: Cisco Secure Endpoint combines behavioral analytics, machine learning, and signature-based techniques to prevent threats from compromising your endpoints.

    • Powerful EDR capabilities: Reduce attack surface using advanced endpoint and extended detection and response, threat hunting, and endpoint isolation.

    • Dynamic malware analysis: Identify and block attacks in real time.

    • Simplified investigations: Advanced search capabilities help you get the information you need about your endpoints fast.

    Reviews from Real Users

    Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.

    Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."

    Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."

    Check Point Harmony Endpoint is a robust security solution that enables users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software. It prevents impending threats from doing harm while at the same time enabling users to identify and deal with any harm that results from breaches. 

    Check Point Harmony Endpoint provides users with an excellent total cost of ownership. It combines six security solutions into a single powerful solution. Instead of being unwieldy, it is, in fact, a highly flexible solution. Users can easily manage and deploy it on site in their offices or via the cloud according to their needs. It upgrades effortlessly without ever causing disruptions to the work users are doing. The end result is a high return on a user’s investment.

    Benefits of Check Point Harmony Endpoint

    Some of the benefits of using Check Point Harmony Endpoint include: 

    • The ability to completely protect endpoints from all manner of immediate digital threats. Check Point Harmony Endpoint stops both malware and phishing sites from harming your networks. All files you receive or download are either run through Check Point Harmony Endpoint’s Threat Emulation sandbox, which scans it for malware, or sterilized by a Threat Extraction process. These prevent malware from ever entering your system. It also prevents phishing sites from stealing credentials. The software scans the sites and, if they are found to be malicious, they are locked out of the system. All of this occurs in real time. 
    • The ability to quickly recover from any attack which manages to do damage to your system. Check Point Harmony Endpoint’s automation responds to a threat once it is detected. Any device that is infected is automatically quarantined from the rest of the network and disinfected. This prevents further infection and allows administrators to render the machine safe for use. It also automatically creates reports which break down the nature of the attack and all other relevant details. These reports give users the information that they need to conduct triage and repair the damage done by an attack.

    Check Point Harmony Endpoint offers users a piece of security software which is completely cutting-edge. It stands out among its competitors for a number of reasons. Two major ones are the raw power of the solution and the usefulness of Check Point Harmony Endpoint’s built-in automation. Check Point Harmony Endpoint has a high ceiling when it comes to dealing with threats. Users are given the ability to decide how aggressively they want to employ it, which creates a great deal of flexibility. Check Point Harmony Endpoint’s automation is constantly running in the background of the program. It creates reports that empower users to take appropriate steps to protect their systems.

    Reviews from Real Users

    Sumit B., a consultant at Cognizant, notes the usefulness of Check Point Harmony Endpoint’s built-in automation. He writes, “SandBlast Agent is always working in the background collecting sensitive data, forensics, and notifying users whenever there is a chance of a brute-force attack into our systems. Otherwise, it has been protecting our data at various geographies along with the endpoints that we set up on the cloud. They have been able to filter out or thwart any attacks from the very word, "Go," and make our work very safe and smooth.”

    A PeerSpot user who serves as a Network Technical Specialist at a manufacturing company adds that “It's pretty complete for preventing threats to endpoints. Its capabilities are great.”

    FortiClient is a fabric agent that delivers endpoint protection, endpoint compliance, and secure access in a single, lightweight, lightweight client, providing visibility, information, and control to your endpoints. In addition, it enables secure, remote connectivity to the security fabric. It also integrates network and endpoint with segmentation and automation. FortiClient enables unified endpoint awareness by sharing endpoint telemetry with the security fabric. It is compatible with third-party EDR (endpoint detection and response and anti-malware solutions.

    The FortiClient fabric agent can:

    • Report on the status of a device, including firmware version and applications running.
    • Send all suspicious files to a fabric sandbox.
    • Enforce USB control, application control, URL filtering, and firmware upgrade policies.
    • Provide application firewall service and malware protection.
    • Enable devices to connect securely to the security fabric over either ZTNA tunnels or VPN (IPsec or SSL), both encrypted. The connection to the security fabric can be either a SASE service or a FortiGate next-generation firewall.

    You can purchase FortiClient with one of three levels of capability:

    Zero Trust security - The ZTNA edition enables both VPN and ZTNA encrypted tunnels, as well as USB device control and URL filtering.
    Endpoint security - The EPP/APT edition adds AI-based NGAV (next-generation antivirus), application firewall, endpoint quarantine, and support for cloud sandbox.
    Cloud-based endpoint security

    Benefits and Features

    • Fabric agent leverages integrations and provides telemetry information to the rest of the Fortinet security fabric.
    • SAAS control and web/content filtering
    • Dynamic access control helps with automation and simplifies compliance.
    • Software inventory management enables visibility as well as management of licenses.
    • Automated response detects and isolates any endpoints that may be compromised.
    • ZTNA delivers better remote access and consistent application access policies
    • Managed endpoint security services remotely assist with setup, configuration, deployment, vulnerability monitoring, and overall monitoring of endpoint security.

    Reviews from Real Users:

    IT Central Station users like that FortiClient is easy to use and integrates well with other solutions. They also appreciate the richness of its features and find it to be inexpensive in comparison to other products that require separate purchases for separate features.

    Offer
    Learn more about Cisco Secure Endpoint
    Learn More
    Learn more about Check Point Harmony Endpoint
    Learn More
    Learn more about Fortinet FortiClient
    Learn More
    Sample Customers
    Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank
    Boston Properties, Independence Care System, Melbourne Convention and Exhibition Centre (MCEC), Courtagen Life Sciences, Carmel Partners
    Black Gold Regional Schools, Amadeus Hospitality, Jefferson County, Chunghwa Telecom, City of Boroondara, Dimension Data
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Healthcare Company11%
    Manufacturing Company11%
    Government11%
    VISITORS READING REVIEWS
    Computer Software Company20%
    Comms Service Provider16%
    Government8%
    Financial Services Firm6%
    REVIEWERS
    Financial Services Firm22%
    Computer Software Company20%
    Healthcare Company12%
    Comms Service Provider12%
    VISITORS READING REVIEWS
    Comms Service Provider25%
    Computer Software Company21%
    Government6%
    Financial Services Firm5%
    REVIEWERS
    Financial Services Firm22%
    Computer Software Company16%
    Comms Service Provider16%
    Consumer Goods Company8%
    VISITORS READING REVIEWS
    Comms Service Provider26%
    Computer Software Company19%
    Government7%
    Educational Organization5%
    Company Size
    REVIEWERS
    Small Business34%
    Midsize Enterprise23%
    Large Enterprise43%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise19%
    Large Enterprise56%
    REVIEWERS
    Small Business41%
    Midsize Enterprise14%
    Large Enterprise45%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise24%
    Large Enterprise52%
    REVIEWERS
    Small Business53%
    Midsize Enterprise24%
    Large Enterprise24%
    VISITORS READING REVIEWS
    Small Business30%
    Midsize Enterprise22%
    Large Enterprise49%
    Buyer's Guide
    Check Point Harmony Endpoint vs. Fortinet FortiClient
    September 2022
    Free Report: Check Point Harmony Endpoint vs. Fortinet FortiClient
    Find out what your peers are saying about Check Point Harmony Endpoint vs. Fortinet FortiClient and other solutions. Updated: September 2022.
    DOWNLOAD NOW
    634,325 professionals have used our research since 2012.

    Check Point Harmony Endpoint is ranked 8th in EPP (Endpoint Protection for Business) with 50 reviews while Fortinet FortiClient is ranked 7th in EPP (Endpoint Protection for Business) with 49 reviews. Check Point Harmony Endpoint is rated 8.8, while Fortinet FortiClient is rated 8.2. The top reviewer of Check Point Harmony Endpoint writes "Resilient by design, provides redundancy, and offers ongoing constant improvements". On the other hand, the top reviewer of Fortinet FortiClient writes "Can be used to deploy security to endpoints and also control the endpoints". Check Point Harmony Endpoint is most compared with Microsoft Defender for Endpoint, Cortex XDR by Palo Alto Networks, SentinelOne, CrowdStrike Falcon and Carbon Black CB Defense, whereas Fortinet FortiClient is most compared with OpenVPN Access Server, Fortinet FortiEDR, Microsoft Defender for Endpoint, Microsoft Azure VPN Gateway and Kaspersky Endpoint Security for Business. See our Check Point Harmony Endpoint vs. Fortinet FortiClient report.

    See our list of best EPP (Endpoint Protection for Business) vendors.

    We monitor all EPP (Endpoint Protection for Business) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.