We compared Fortinet FortiAnalyzer and USM Anywhere based on our users' reviews in five categories. We reviewed all of the data and you can find the conclusion below.
Features: Fortinet FortiAnalyzer features exceptional log collection capabilities and customizable reporting. FortiAnalyzer enables users to centrally manage and analyze logs in real time. USM Anywhere is highly regarded for its extensive reporting capabilities, thorough vulnerability assessment, seamless file integration, and user-friendly management features. Fortinet FortiAnalyzer could simplify its reporting module and cloud storage capabilities. USM Anywhere users have suggested improvements in self-service plugin management, database optimization, and third-party threat intelligence integration.
Service and Support: Some Fortinet customers were dissatisfied with support, but others said it was helpful and responsive. Some users say that USM Anywhere's customer service is knowledgeable and responsive, while others have faced delays and incomplete answers.
Ease of Deployment: FortiAnalyzer's initial setup is uncomplicated and manageable, typically taking approximately 30 minutes to a few hours. Some IT knowledge may be required. The initial setup for USM Anywhere is generally considered to be straightforward if the user has technical knowledge. Vendor assistance is also available during the deployment phase.
Pricing: While FortiAnalyzer isn't the most expensive option, users say the pricing could be more competitive. FortiAnalyzer's cost depends on the storage requirements, and many customers consider it reasonable. USM Anywhere is seen as more cost-effective than premium solutions like IBM QRadar and Splunk, with pricing considered reasonable and relatively low.
ROI: FortiAnalyzer helps customers by providing insight into network traffic and speeding up issue resolution. USM Anywhere has garnered favorable feedback regarding its ROI.
"The features that our customers have found most valuable are their different type of reports including the drill down report, as well as the flexibility to connect to any number of appliances which can be connected to it centrally."
"The most valuable features are customizing reports, and the ability to drill down to display critical information in real-time."
"The most valuable features of Fortinet FortiAnalyzer are the GUI and there is automation that can be done with playbooks and mini-books."
"It is very stable and reliable."
"The most important feature is to be able to get reports or information about the state of all firewalls."
"The solution is easy to use and easy to integrate."
"The solution allows for a lot of customization."
"The most valuable is its robust and comprehensive reporting functionality, providing a thorough overview of various metrics."
"I can easily check (in one place) all the logs and data in relation to attacks. It also gives me an overview if a server is not configured properly."
"As we have to service several servers, we can manage them in a economical way, which is beneficial to our team and business."
"Using the communication within the security device, it is easier to create plugins."
"AlienVault provides a checklist answer when using SIEM."
"Asset discovery and vulnerability scanner are good features. The integration between this solution and OTX, which is an AlienVault platform for Open Threat Exchange, is also a valuable feature. It is also quick and easy to deploy, so you can quickly engage with a customer's environment."
"There are multiple tools for information security. The solution includes all the latest advances on the network and host intrusion detection systems."
"What I find the most valuable about USM Anywhere is its compliance. It shows a list of all the administrators logged on and does it quite well. There are no whistles and bells, it's reliable and simple to use."
"It provides a single pane of glass view, coupled with a whole security ecosystem. The ability to manage everything from a central point, including vulnerability assessments, asset management - including the services provided by the various hosts, NIDS, HIDS, etc. - provides a very efficient way of dealing with things."
"The solution could improve by allowing the ability to search logs in integrated solutions."
"It will be better if behavior or indicators of compromise were on the same licensing schema. Currently, it is an advanced feature that you have to purchase as an add-on. This is the reason we're trying to do the ELK so that we can integrate them and create those rules by using open-source software. It will also be better if it has some more integration with IT service management tools so that we can do endpoint protection and response based on those indicators of compromise or those behavior analysis rules that create events that can automatically flow. We can inject that data into a service incident ticket on our IT service management tool, and that way we can assign the ticket to the proper teams and respond right away. Currently, we only have integration with ServiceNow."
"The technical support takes at least two days to reply on any ticket post raised on their website."
"The solution lacks business intelligence features. It's much too basic."
"There are a lot of solutions on the market and Fortinet FortiAnalyzer is limited. It cannot be used across multiple vendors. They can improve by advancing their technology."
"Fortinet FortiAnalyzer needs to have more out-of-the-box connectors for integration with other solutions."
"It doesn't easily integrate with other solutions."
"The solution can improve the incident response function to provide more detailed information on where the incident is originating."
"I'd like to see a dashboard that's a little more descriptive."
"Pay attention to false-positive event automatic correlations."
"Reporting is convoluted and difficult at times, although they claim to have hundreds of pre-built reports, very few of them are actually useful for anything but what the USM is doing."
"The one thing I continue to dislike about the USM is the limitation on reports."
"There could be some type of integration with our existing portal. We have our own customer portals, and it would be good if there was an integration so that our portal can provide reports. There could be some type of API into the AlienVault system with the USM system so that it is easy to show the customers high-level reports of the system through our portal."
"We've had some stability problems, not a lot, but a few. Updates seem to be the worst. That seems to be when the stability problems come up."
"The GUI needs to improve because it's not user-friendly."
"The solution is a bit complicated. It could be simplified quite a bit."
Fortinet FortiAnalyzer is ranked 8th in Log Management with 81 reviews while USM Anywhere is ranked 15th in Log Management with 113 reviews. Fortinet FortiAnalyzer is rated 8.0, while USM Anywhere is rated 8.4. The top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". On the other hand, the top reviewer of USM Anywhere writes "Easy to use and affordable". Fortinet FortiAnalyzer is most compared with Wazuh, Splunk Enterprise Security, Graylog, Grafana Loki and LogRhythm SIEM, whereas USM Anywhere is most compared with Wazuh, AlienVault OSSIM, IBM Security QRadar, Splunk Enterprise Security and Microsoft Sentinel. See our Fortinet FortiAnalyzer vs. USM Anywhere report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
