We changed our name from IT Central Station: Here's why
Get our free report covering Microsoft, Fortinet, Fortinet, and other competitors of Duo Security. Updated: January 2022.
563,148 professionals have used our research since 2012.

Read reviews of Duo Security alternatives and competitors

Manager at a financial services firm with 501-1,000 employees
Real User
Top 10
On-premises deployment and excellent log details make this product valuable
Pros and Cons
  • "The logs have great detail that make it easier to evaluate and control the security environment."
  • "It can not use SQL to query FortiAnalyzer directly."

What is our primary use case?

Our primary use case for Fortinet FortiAuthenticator is, first of all, as a two-factor VPN for enhanced access security. We use this product to provide secure access for all of our employees. 

Our other use cases have to do with using FortiAuthenticator for other security projects which includes things like access to some important web applications. 

What is most valuable?

One of the things I find most valuable in FortiAuthenticator is the detail in the logs. The log features are very good and the detail makes it easier to control what happens in the environment. 

Another valuable feature is that it is an on-premise solution. Because of some regulations, we can not use this particular type of product for security on cloud. We chose FortiAuthenticator because it is an on-premise solution. 

What needs improvement?

There is nothing that really stands out as something that needs desperately to be added or improved. We are using Fortinet all the time, we know their GUIs, so we can manage well with FortiAuthenticator also. 

The main problem now is not exactly with the product itself. We are using FortiAnalyzers. But when we use that product with FortiAuthenicators, we can not use SQL language to access data from the FortiAnalyzers database. When we use it with FortiGate, we can query the FortiAnalyzers database, but it is not possible to do it directly with the FortiAuthenicators. This integration should be better. 

What do I think about the stability of the solution?

We have not really faced any problems with stability up until this point. The product has not given us any reason to question the stability. 

How are customer service and technical support?

We have not needed to use the Fortinet technical support up until now. I do not know about it firsthand. The product is very easy-to-use and someone can easily manage working with it, so we do not need any support. We do have the support contract, but we have not used it at all. 

How was the initial setup?

The initial setup was not complex at all. It is actually very easy. 

What's my experience with pricing, setup cost, and licensing?

I think FortiAuthenticator is more expensive than other products like Cisco Duo. It could be more competitively priced. 

We want to use high-availability in our products, so we need to get a higher grade and more expensive license for that purpose. 

What other advice do I have?

On a scale from one to ten where one is the worst and ten is the best, I would rate Authenticator as about a seven-point-five. If it has to be seven or eight, I would choose eight. 

I have not used many products in that category with our site, but we can do what we want and need to do with that product. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Rajesh Gottimukkala
Managing Director at Invesdom
Real User
Top 5Leaderboard
Scalable and secure, but could be more compliant-based
Pros and Cons
  • "I think it is really good when it comes to the hard token side of things."
  • "There are different compliances across the globe; RSA SecurID Access could be more complaint-based."

What is our primary use case?

We mainly use this solution for multifactor authentication. 

What is most valuable?

All of its features work well with the cloud authentication manager and the tokens — the authentication manager is good. The tokens can be integrated with Okta, which is nice. I think it is really good when it comes to the hard token side of things.

What needs improvement?

There are different compliances across the globe; RSA SecurID Access could be more complaint-based. For example, it would be nice if the authentication manager was compliant with IRAP in Australia. 

For how long have I used the solution?

I have been using this solution for roughly one year. 

What do I think about the stability of the solution?

Stability-wise, on a scale from one to five, I would give this solution a rating of three and a half. 

What do I think about the scalability of the solution?

In terms of scalability, I am not sure if it's necessarily scalable on its own, but when integrated with other cloud solutions and improved on a regular basis, it's quite scalable. The cloud side is definitely scalable. It's difficult to say exactly how scalable it is. Scalability-wise, I would say it's slightly above average; just be sure to integrate it with other cloud-based solutions if you need to scale out further. 

How are customer service and technical support?

I personally haven't had any contact with technical support; I handle the business side of things.

How was the initial setup?

Although I haven't set up this solution personally, our development team has informed me that the initial setup is quite straightforward.

What's my experience with pricing, setup cost, and licensing?

I think the price of this solution is reasonable compared to YubiKey and Duo given that it offers the same similar features. For a large company, if there is an agreement and a discount agreed upon, then you can get this solution for a reasonable price. The price really comes down to the size of your company and the type of discount you agree upon.

They should provide non-production environments that are in development with cheaper non-resalable licenses or even free licenses along with the production — that would be good. 

Which other solutions did I evaluate?

We also evaluated Duo and YubiKey.

What other advice do I have?

Overall, on a scale from one to ten, I would give this solution a rating of seven.

If you're a large business in need of a large agreement, try and get a discount. Also, be sure to ask for a complimentary non-production license when you're buying production licenses; they're available for a cheaper rate compared to non-production licenses.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Electronics Engineering Lab Technician(R&D) at a engineering company with 11-50 employees
Real User
The integrated Fortinet security with the app for easy two-factor authentication is valuable, but instead of typing the code, there should be a push
Pros and Cons
  • "The integrated Fortinet security with the app that allows you to easily do the two-factor authentication is most valuable."
  • "The app could be improved so that you don't have to actually type in the code. It would be great if you can just do a prompt or push similar to the way Duo does."

What is our primary use case?

We are using this solution for administrator access to firewalls. We have its latest version.

How has it helped my organization?

FortiToken is just there to do the administration of the firewalls. For two-factor authentication, we like Duo more.

What is most valuable?

The integrated Fortinet security with the app that allows you to easily do the two-factor authentication is most valuable.

What needs improvement?

The app could be improved so that you don't have to actually type in the code. It would be great if you can just do a prompt or push similar to the way Duo does.

For how long have I used the solution?

We have been using it for three years in our organization.

What do I think about the stability of the solution?

It is stable.

What do I think about the scalability of the solution?

It is good. We have a very small use case for it. If I want to roll it out for a larger use case, I don't think it would have any issues. We currently have got only got four firewall administrators who use this solution.

How are customer service and technical support?

I have not interacted with them for FortiToken.

How was the initial setup?

It was straightforward.

What about the implementation team?

I just did it myself.

What was our ROI?

Overall, it has provided an ROI. It is included as part of our firewall license.

What's my experience with pricing, setup cost, and licensing?

It is included as part of our firewall license. 

What other advice do I have?

I would advise others to make sure that they have cellular phones that are company-owned or they have employees who are willing to use their own in order to use it.

I would rate Fortinet FortiToken a six out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Get our free report covering Microsoft, Fortinet, Fortinet, and other competitors of Duo Security. Updated: January 2022.
563,148 professionals have used our research since 2012.