Fortinet FortiAnalyzer Reviews

We are using Fortinet FortiAnalyzer mainly for reporting and troubleshooting purposes, specifically for log analyzing and threat voting.

The reporting and organizing part of Fortinet FortiAnalyzer is very interactive, smooth, and easy to use. The log management is useful as we have connected around two hundred eighty-five walls and around fifteen to twenty plus firewalls with Fortinet FortiAnalyzer, making it highly beneficial compared to logging into each individual firewall.

In the reporting area, some tasks have to be done manually for advanced-level reports, which require customization. Despite this, I appreciate the advanced features available and do not currently see other areas for improvement.

I have used Fortinet FortiAnalyzer for over eight years.

The deployment of Fortinet FortiAnalyzer was easy and smooth.

Fortinet FortiAnalyzer is stable, and I would rate its stability as nine out of ten.

Fortinet FortiAnalyzer is scalable. We are planning to increase the number of firewalls and platforms.

I am satisfied with Fortinet's technical support. They are effective, and I have no complaints about their service.

I did not use any other product of a similar kind before Fortinet FortiAnalyzer.

The initial setup of Fortinet FortiAnalyzer was straightforward. The installation and initial configuration took about one hour.

Only I was involved in the deployment process.

For smaller SMB-level firewalls, Fortinet FortiAnalyzer might not be the best idea for cost-effective implementation. It is better to use FortiAnalyzer FortiCloud's basic features. For firewalls above the ninety-one hundred series, Fortinet FortiAnalyzer is recommended.

In the future updates, more graphical views could be beneficial, although the current graphical interface is satisfactory. Overall, I would rate Fortinet FortiAnalyzer an eight out of ten.

On-premises

I saw some projects where clients use Fortinet now. They have Fortinet in their LAN, so they need to continue to have this solution. It is very difficult to change. We know that IT managers do not want to change anything. They just make it better with what they have now, not to change. For Fortinet, the solution that I used most recently is Fortinet FortiAnalyzer and FortiManager.

For us in Latin America, the best features of Fortinet FortiAnalyzer are the solutions that combine SD-WAN and security in the same box. I think that is what differentiates Fortinet from the others. Almost every manufacturer has a similar structure for monitoring and collecting logs. To have all the information about clients, networks, or security information, you typically need two platforms.

We use the information from Fortinet FortiAnalyzer to show our clients and provide consultancy for them. We advise them, 'You need to make an action plan for this problem,' or help them understand the vulnerabilities of the security and create an action plan for better security practices.

Fortinet FortiAnalyzer is good for that, but we need to have a team that knows about the information that is collected. You need to know the platform.

When I had contact with FortiManager and Fortinet FortiAnalyzer, it was not so easy, but with some reading or training on the platform, it becomes easy to use.

I would rate Fortinet's customer service a nine, on a scale of 1 to 10.

Positive

The initial setup for Fortinet FortiAnalyzer is easy. It is not so difficult. You need to have some training, but it is okay.

In the past, I did research to know different SIEM solutions because it is very common; each company has its own SIEM. Cisco has its own SIEM, so they work very well with their Cisco ecosystem. But we have clients with heterogeneous solutions, and we try to look for a SIEM solution that is universal. You can use Cisco, Huawei, or Aruba, and the SIEM solution can integrate and work with any kind of solution. I also saw something about IBM.

Fortinet FortiAnalyzer integrates with SIEM, but I do not know about the integration with other kinds of solutions.

I am a user of HPE and not a partner yet. We are a partner with Huawei.

I was in presales, so I know Zabbix and Grafana. We know how it works, but we do not have the responsibility to set up the solution. I communicate to our clients that we have the solutions of Zabbix and Grafana, and it is possible for them to see the information of the LAN, the WLAN, and the link.

Here where I am working now, we use the solution of XDR and NDR from Trend Micro. Our security business unit has a lot of experience selling Trend Micro XDR or NDR solutions in Brazil. The Trend Micro solution I am mentioning is Trend Vision One. They sell solutions to a big energy company in Brazil.

We show the reports to clients to let them know about their problems and compliance with their security policies.

Fortinet is very common for security, and everybody knows them. We have different kinds of companies. Those that lead for technology do not worry a lot about using it, as they have money for investment in technology. The other ones that do not have a lot of money almost do not know about the technology. So we have to show them that something this exists and try to make the projects according to their budget. That is our challenge here.

I rate Fortinet FortiAnalyzer an eight out of ten.

On-premises

Amazon Web Services (AWS)

I use Fortinet FortiAnalyzer for log storage, log analytics, and generating reports. It also acts as a syslog server as well as a SIEM and SOAR solution. It is integrated with Fortinet solutions like FortiGate, FortiClient, FortiMail, and FortiWeb.

The most valuable features of Fortinet FortiAnalyzer include its capability to act as a syslog server, its SIEM and SOAR capabilities with limited playbooks, and its integration with Fortinet solutions ensures ease of use for users with a Fortinet infrastructure. The device's pricing model also offers good value for money.

The log view for syslog in Fortinet FortiAnalyzer could be improved. A more comprehensive dashboard for syslog would enhance its value.

I have been working with Fortinet FortiAnalyzer for about five years.

I would rate the stability of Fortinet FortiAnalyzer as eight or nine out of ten. It provides a reliable solution for managing network-wide data.

The scalability of Fortinet FortiAnalyzer is excellent at a rating of ten out of ten. As a virtual machine or cloud-based solution, it scales efficiently to meet organizational needs.

The customer service and support from Fortinet are rated as eight out of ten. The support quality sometimes varies due to regional support issues, leading to longer response times.

Positive

Before using Fortinet FortiAnalyzer, I was using QRadar. I switched because QRadar was expensive.

The initial setup of Fortinet FortiAnalyzer is straightforward. It can be deployed on hardware or as a virtual machine, making it simple to execute.

I have seen a return on investment with Fortinet FortiAnalyzer due to its competitive pricing and straightforward licensing model based on the amount of log data processed per day.

Fortinet FortiAnalyzer offers competitive pricing. Its licensing model is based on the amount of log data processed per day, making it more cost-effective compared to QRadar, which is EPS and device-based.

I recommend Fortinet FortiAnalyzer to those who have other Fortinet solutions. It integrates well with Fortinet systems. However, for an organization with no Fortinet solutions, a dedicated SIEM might be better. Overall, I would rate Fortinet FortiAnalyzer eight out of ten.

On-premises

Other

I use Fortinet FortiAnalyzer for data analysis and security purposes. It is also used for analyzing logs and services.

The dashboard of Fortinet FortiAnalyzer is outstanding with very detailed information. Its services are highly efficient when analyzing logs and services. Users provide feedback that they are highly satisfied with the log analysis and high security for their network. Fortinet FortiAnalyzer also has impressive threat detection capabilities.

I do not have recommendations for Fortinet FortiAnalyzer itself, but the support services need improvement. The support engineers are very slow and incompetent. They are undisciplined when we try to contact them, which is disappointing for us and our clients.

I have been working with Fortinet FortiAnalyzer for around six months.

I give Fortinet FortiAnalyzer a stability rating of ten out of ten as I use it extensively.

Fortinet FortiAnalyzer is a scalable product, and I rate it a nine out of ten for scalability.

The support service is very slow and incompetent. The support engineers lack discipline, and both we and our clients experience disappointment with their service.

Negative

The configuration process for Fortinet FortiAnalyzer took around two and a half days. It is a complex procedure and could be made easier.

Two people, including myself and a colleague, took part in the installation.

Clients achieve cost efficiencies when using Fortinet FortiAnalyzer compared to third-party log analyzers, which are significantly more expensive.

For the overall rating, I would give Fortinet FortiAnalyzer a seven out of ten. The reasons for not rating it higher include issues with support and some concerns with FortiGate.

Public Cloud

I am using Fortinet and Red Hat myself as a consultant. I am dealing with Fortinet products and can provide information about them. I am working with Fortinet products, including firewalls and other Fortinet products. I am working with Fortinet products such as Fortinet FortiAnalyzer and FortiManager. I use Fortinet FortiAnalyzer.

I find it easy to deploy Fortinet products, including the firewall, Fortinet FortiAnalyzer, and many other Fortinet products.

The interface of Fortinet FortiAnalyzer is intuitive enough. Fortinet provides training through many training documents and videos.

It is very important to integrate Fortinet products for my customers because it provides many network information for them.

I don't know what the main room for improvement is for Fortinet FortiAnalyzer, but perhaps I don't have much experience, so I cannot answer this question comprehensively.

I have been working with Fortinet FortiAnalyzer for two years.

Fortinet FortiAnalyzer is very stable.

I do not recommend Fortinet FortiAnalyzer for bigger companies because it is not scalable enough.

I always ask Fortinet support about their technical support, and I think they are good.

I rate their technical support as seven out of ten. Sometimes they can answer the question immediately, but they could be more quick.

Positive

Palo Alto also provides log management and has this product, but I have never used Palo Alto.

I find it easy to deploy Fortinet products, including the firewall, Fortinet FortiAnalyzer, and many other Fortinet products.

I usually help my customers with the implementation of Fortinet products, and they always use Fortinet products.

I think Fortinet FortiAnalyzer has fifty percent market share in my region.

The pricing of Fortinet FortiAnalyzer is okay. For smaller companies, the pricing is acceptable.

Palo Alto also provides log management and has this product, but I have never used Palo Alto.

I recommend Fortinet FortiAnalyzer for big companies. I rate this review an eight overall.

The primary use case for Fortinet FortiAnalyzer is for analyzing and reviewing logs for every device related to Fortinet.

The most valuable feature of Fortinet FortiAnalyzer is its ability to report for several management tasks in a very short time. This allows for quick analysis and report generation for executives, saving time. Additionally, its incident response is considered decent, and its ease of setup and integration with Fortinet devices centralizes logs in one place.

In the next version, automation analysis should be enhanced.

I have used Fortinet FortiAnalyzer for two and a half years.

The deployment of Fortinet FortiAnalyzer depends on the environment. If it is a small environment, it takes one day with full implementation and integration with every device. A larger environment might take two or three days.

I rate the stability of the solution at nine out of ten.

I rate the scalability of the solution as eight out of ten.

I rate the technical support from Fortinet as eight out of ten.

Positive

I did not use a different solution prior to Fortinet FortiAnalyzer.

The initial setup of Fortinet FortiAnalyzer is very easy.

The price of the solution is fair, although I do not remember the exact price.

Based on my experience, I would recommend Fortinet FortiAnalyzer to small companies as it is easy to use and centralizes logs in one place, saving time. There are also options related to IOC and automation, as well as SOAR, which help small environments. Overall, I rate the solution as eight out of ten.

On-premises

I use FortiAnalyzer to report on these other devices because they have two firewalls, so it's an accessible place to find out what is happening across your Fortinet setup.

I mainly use it for reporting. It also integrates other security solutions around. It can report onto anything that has a syslog on the network. It doesn't have to be a Fortinet product. It integrates within FortiGate and you can find the reports there. It's a very flexible and rich tool, providing custom reports along with default reports.

The only issue is the cost of the licenses. When licensing, each device is licensed separately, such as the firewall, which can become expensive. It sometimes becomes difficult to explain to management why the cost is so high. Other than that, I haven't faced any challenges.

All these products were bought in at the same time, about four years.

It is a very stable solution.

Understanding how it works so far, I think it shouldn't be difficult to scale.

Customer support would be rated an eight out of ten.

Positive

I haven't evaluated log management tools like Splunk on this platform, I've just explored just the open-source tools.

Setting up FortiAnalyzer was not complicated. It took a day or a few hours.

Being not a commercial entity, my focus is on keeping the environment safe and informed. I can't really specify a value or ROI.

I can't calculate costs per user. We buy it as one solution as part of a package with the firewall and the analyzer, which makes it difficult to calculate individually.

I have not evaluated other branded log management tools. Perhaps only open-source tools, not brands like Splunk.

There's a lot of material available for FortiAnalyzer to help you understand how it works, which is well documented and makes life easier if you don't know anything. This makes it easy to configure and use. I would recommend it to anyone.

On-premises

I deployed FortiAnalyzer in three projects. I configured it to manage approximately 50 Fortinet devices.

My job was to add new FortiGates and to analyze data on FortiAnalyzer. The system provides valuable insights through information, graphics, and reports. FortiAnalyzer allows easy configuration of routing status protocols, IP interfaces, and DNS settings. Its operation system makes it easier than using Cisco's iOS.

Sometimes, there is a problem with CPU consumption, where one process consumes 100%, and I need to restart FortiAnalyzer to fix this. I am not familiar with the processes of scalability.

I have used Fortinet Solutions for about three to five years.

The version I used was 7.4.2. We faced some CPU consumption issues, which caused the machine to slow down and required a restart of FortiAnalyzer. However, this issue was addressed in later versions.

Sometimes, I need to consult FortinetDocs to understand integration. It is not very easy.

Positive

The initial setup is straightforward and more straightforward than Cisco. It is easy when equipped with the necessary information like device name, IP address, and SNMP configurations.

The impact of the tool is low when the functionalities are inaccessible due to resource consumption. When operations run smoothly, FortiAnalyzer delivers efficiency yet does not significantly impact costs.

I am a technical engineer, so I am not privy to pricing details.

I recommend FortiAnalyzer to companies that have two or more FortiGates for easier report generation and to execute actions through Playbooks.

I'd rate the solution nine out of ten.