We performed a comparison between Fortinet FortiSIEM and Nagios XI based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We didn't have anything similar. So, it really provides value from the incidents and automation point of view. The overview of the security fabric is most valuable."
"Microsoft Sentinel provides the capability to integrate different log sources. On top of having several data connectors in place, you can also do integration with a threat intelligence platform to enhance and enrich the data that's available. You can collect as many logs and build all the use cases."
"The data connectors that Microsoft Sentinel provides are easy to integrate when we work with a Microsoft agent."
"One of the most valuable features of Microsoft Sentinel is that it's cloud-based."
"We have no complaints about the features or functionality."
"There are some very powerful features to Sentinel, such as the integration of various connectors. We have a lot of departments that use both IaaS and SaaS services, including M365 as well as Azure services. The ability to leverage connectors into these environments allows for large-scale data injection."
"You can fine-tune the SOAR and you'll be charged only when your playbooks are triggered. That is the beauty of the solution because the SOAR is the costliest component in the market today... but with Sentinel it is upside-down: the SOAR is the lowest-hanging fruit. It's the least costly and it delivers more value to the customer."
"It's easy to use. It's a very good product. It can easily ingest data from anywhere. It has an easily understandable language to perform actions."
"We like the integration of all of these Fortinet platforms together. Everything is integrated well, and we are able to sell that as a service to our customers."
"The CMDB and the device discovery features are most valuable."
"I like the various options, including the option for CMDB and the easier access to create rules, playbooks, or use cases. It's also easier to use for creating dashboards and reports."
"Its automated response feature has benefited our customer communication. Analysts feel more confident in providing timely responses."
"It's a very nice solution to work with."
"It works well with medium to large-scale enterprises."
"The most valuable feature of Fortinet FortiSIEM is the user and entity behave as analytics(UEBA). This feature mixes your data and provides useful information based on the behavior of the targeted."
"It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth."
"I can monitor a software made in-house to software of bigger companies."
"The installation is no problem. I've installed Nagios several times."
"It is an open-source platform with valuable features for performance and stability."
"The solution has a lot of plugins and scripts integrated with it."
"BPI: It allows defining peripherals to map business criticality for efficient monitoring, as required."
"The features I've found the most useful are the plug-ins, the fact that you can connect almost everything to it. That's very useful."
"I can monitor a phone on a desk to very big servers of any company."
"It's great for monitoring IT services infrastructure."
"It has been a challenge with Azure Sentinel to onboard the Syslog server from FortiGate. Azure Sentinel can work better on that shift between the Syslog server and a firewall."
"I think the number one area of improvement for Sentinel would be the cost."
"Given that I am in the small business space, I wish they would make it easier to operate Sentinel without being a Sentinel expert. Examples of things that could be easier are creating alerts and automations from scratch and designing workbooks."
"Sentinel should be improved with more connectors. At the moment, it only covers a few vendors. If I remember correctly, only 100 products are supported natively in Sentinel, although you can connect them with syslog. But Microsoft should increase the number of native connectors to get logs into Sentinel."
"The AI capabilities must be improved."
"Not all information shows up in Sentinel. Sometimes there are items provided in 365 and if you looked in Sentinel you would not see them and therefore think they do not exist. There can be discrepancies between Microsoft tools."
"The learning curve could be improved. I am still learning it. We were able to implement the basic features to get them up and running, but there are still so many things that I don't know about all its features. They have a lot of features that we have not been able to use or apply. If they could work on reducing the solution's learning curve, that would be good. While there is a training course held by Microsoft to learn more about this solution, there is a cost associated with it."
"The solution could be more user-friendly; some query languages are required to operate it."
"We expect the latest patch from Fortinet FortiSIEM to give the ability to work with signature files."
"An improvement would be if FortiSIEM's licensing was based on the number of nodes rather than the EPS."
"Its training can be improved. Its price also needs to be improved."
"The performance can be improved. Sometimes it takes a long time to fetch data."
"The backup and recovery process for this solution needs improvement."
"It's difficult to integrate unsupported devices with FortiSIEM compared to QRadar. It's easier to integrate and develop processes in QRadar. It's harder to develop a custom process in FortiSIEM."
"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."
"When compared with some competitors, in terms of performance, the CPU and RAM requirements and the capability of coordination with development all need some improvement."
"The product's stability could be even better."
"Nagios XI can improve network and hardware monitoring, these parameters should be simplified to allow usage for monitoring. Additionally, if there was automatic reporting it would be helpful."
"The technical support is variable - sometimes I get answers, but most of my tickets go unanswered."
"Technical support is an area that needs improvement. It is not available 24/7."
"I would like a much easier GUI so that I can delete events and logs, which will free up a lot of space."
"The scalability of Nagios XI is scalable. However, it is not easy to do."
"The product could be optimized to improve the administrative user experience via the Nagios Core Configuration (NCC) GUI module."
"I would like to see support for notification via SMS."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while Nagios XI is ranked 8th in IT Infrastructure Monitoring with 54 reviews. Fortinet FortiSIEM is rated 7.6, while Nagios XI is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Nagios XI writes "Great for monitoring IT services infrastructure with nice tools and helpful notifications". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas Nagios XI is most compared with Zabbix, Nagios Core, PRTG Network Monitor, Wireshark and Icinga. See our Fortinet FortiSIEM vs. Nagios XI report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
