We performed a comparison between Fortinet FortiSIEM and Pandora FMS based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Microsoft Sentinel enables you to ingest data from the entire ecosystem and that connection of data helps you to monitor critical resources and to know what's happening in the environment."
"The main benefit is the ease of integration."
"Sentinel enables us to ingest data from our entire ecosystem. In addition to integrating our Cisco ASA Firewall logs, we get our Palo Alto proxy logs and some on-premises data coming from our hardware devices... That is very important and is one way Sentinel is playing a wider role in our environment."
"We have no complaints about the features or functionality."
"The UI-based analytics are excellent."
"It is able to connect to an ever-growing number of platforms and systems within the Microsoft ecosystem, such as Azure Active Directory and Microsoft 365 or Office 365, as well as to external services and systems that can be brought in and managed. We can manage on-premises infrastructure. We can manage not just the things that are running in Azure in the public cloud, but through Azure Arc and the hybrid capabilities, we can monitor on-premises servers and endpoints. We can monitor VMware infrastructure, for instance, running as part of a hybrid environment."
"Having your logs put all in one place with machine learning working on those logs is a good feature. I don't need to start thinking, "Where are my logs?" My logs are in a centralized repository, like Log Analytics, which is why you can't use Sentinel without Log Analytics. Having all those logs in one place is an advantage."
"It is always correlating to IOCs for normal attacks, using Azure-related resources. For example, if any illegitimate IP starts unusual activity on our Azure firewall, then it automatically generates an alarm for us."
"There are things like dashboards and reports (pre-configured and custom) that let me know that things are operating the way they should be, and when they are not."
"The product is quite well-organized. The GUI makes it easy to navigate."
"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."
"FortiSIEM's best features are the dashboards and customization."
"The ability to write my own parsers for the devices that are not supported by Fortinet is the most valuable feature."
"Easy alert setup which enables different alerts in different categories."
"The Threat Hunting feature provides complete traffic analysis."
"I like the various options, including the option for CMDB and the easier access to create rules, playbooks, or use cases. It's also easier to use for creating dashboards and reports."
"We are able to control our business with this all-in-one monitoring tool."
"Pandora FMS provides us with a general report (graphical) about all of the connected devices, which helps with planning new stations and tracking them."
"It is easy to create your own custom modules if you just know a little bit of scripting. If you have unique requirements, you can just make your own modules. You can even grab checks from other vendors. There are open-source checks for various things such as SMTP, etc. There is a long list of different ones from Nagios. You can just use them, and within seconds, you get yourself a check that is monitoring whatever you need. It is really flexible. I guess that's why they call it Pandora Flexible Monitoring System (FMS). It is reliable. It does the job, and it alerts. It is also surprisingly feature-rich. Our network guy just recently asked about a particular protocol to monitor the bandwidth on the network, which is not a common protocol. When I looked it up, and I found that they cover it. It is very mature for a not-so-known product."
"Pandora's architecture is interesting. It's open so you can easily extend and enhance it. It's simpler to customize Pandora compared to other solutions. It's also scalable enough to support large environments."
"What I value most about Pandora FMS is the simplicity of working with it."
"Thanks to its flexibility, I have been able to adapt the tool to our servers and find out quickly how their console works."
"The network monitoring and configuration within this solution is very good."
"The administration of the console is very easy. I like that Pandora FMS is interactive and easy to manage."
"Its implementation could be simpler. It is not really simple or straightforward. It is in the middle. Sometimes, connectors are a little bit complex."
"The KQL query does not function effectively with Windows 11 machines, and in the majority of machine-based investigations, KQL queries are essential for organizing the data during investigations."
"Add more out-of-the-box connectors with other SaaS platforms/applications."
"Sentinel's reporting is complex and can be more user-friendly."
"The on-prem log sources still require a lot of development."
"There is some relatively advanced knowledge that you have to have to properly leverage Sentinel's full capabilities. I'm thinking about things like the creation of workbooks, how you do threat-hunting, and the kinds of notifications you're getting... It takes time for people to ramp up on that and develop a familiarity or expertise with it."
"The learning curve could be improved. I am still learning it. We were able to implement the basic features to get them up and running, but there are still so many things that I don't know about all its features. They have a lot of features that we have not been able to use or apply. If they could work on reducing the solution's learning curve, that would be good. While there is a training course held by Microsoft to learn more about this solution, there is a cost associated with it."
"We are invoiced according to the amount of data generated within each log."
"I would like to see easier implementation in the future."
"It lacks a "wizard" that shows a particular user's activity or particular circumstance. I think the interface is intimidating because there's so much information there."
"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."
"FortiSIEM could be better integrated with other vendors."
"When our team tried configuring logs for Microsoft SQL, it did not work."
"There is no proper guide for integration or configuration."
"The nodes on our network did not comply with the SIEM solution. They use a different format parking log."
"Their technical support is horrible. By horrible, I mean a train wreck of a disaster that has fallen off a bridge and caught fire."
"We would like to see improvement in the mainframe integration that this solution is capable of."
"I would like for the solution to be faster and have a better tolerance between parallel servers for Pandora and Pest Control."
"When it comes to the definition of local Software Agents for the first time in the open-source version, it can become very tedious."
"The price for Pandora FMS is expensive."
"Improvements are needed for server and network discovery, including service-based discovery."
"In the future, we may have double the number of devices, and we do not want to have any issues with performance in the data display."
"I find that this software is resource heavy, and demands a lot of processing capacity."
"It would be helpful to include the generation of reports for times that the network was out of service."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while Pandora FMS is ranked 29th in Network Monitoring Software with 22 reviews. Fortinet FortiSIEM is rated 7.6, while Pandora FMS is rated 9.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Pandora FMS writes "The open architecture is easy to extend and enhance". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas Pandora FMS is most compared with Zabbix, PRTG Network Monitor, Wazuh, Nagios XI and Icinga. See our Fortinet FortiSIEM vs. Pandora FMS report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.