Fortinet FortiAnalyzer Reviews

We use Splunk over SOC, the security operations center because it is more user-friendly for our team. Our team uses the solution extensively for traffic analysis and threat hunting.

The event handling solution in the platform is very good and useful. We can automate event-based handling solutions for example, if we have some events or issues on top of traffic, it triggers that function, and it can even get API for our firewall to ban that IP, or we can add a playbook for our attack, into the solution, and just manage the whole network based on that playbook.

The solution has very heavy features. Similar to when we get an app, usually, it's less than what we want. When we send all our logs over to the analyzer, it almost crashed on the first try. We must first get our logs tuned up and then set up the Fortinet FortiAnalyzer or it will crash. This is very complicated and heavy work for such a simple task, and it's a big issue for that app. 

The setup of the solution can be improved because it is currently complex.

The cost of the solution is high and can be improved.

I have been using the solution for seven years.

The solution is very stable.

The solution is not really scalable. The solution is the largest. The solution is not in the security world and they don't have to have a threat on them to be secure. When we have a threat, we can't get distributed because our chain of logs is broken, and we don't get very regular events. We can't depend on this in the event of an accident or if they have to be reported because the chain is broken.

Previously I used the ManageEngine Eventlog Analyzer. The solution is very lazy, it's heavy, and it has some bugs with reports. ManageEngine Eventlog Analyzer is a very bad solution.

The initial setup is complex.

Setting up and launching a network, depending on the size can take anywhere from one or two days up to a week or more. However, in order for the network to run smoothly and be effective, it is important to continually tune and optimize that network. This is not a solution that can be set and forgotten; we need to be constantly adjusting Fortinet FortiAnalyzer to meet the needs of our network and the services we are providing.

The solution has a very high return on investment because when we encounter any problems, even functional problems, not technical problems, it is very easy and very fast to fix them and detect them using Fortinet FortiAnalyzer. With the heavy traffic, we have a lot of difficulty in the network, we can't get through. But when we have visibility on the network, and we force it, the solution is for us on the firewall. We know that the firewall is very complex because nothing is easy to configure, from the interface to the IP addresses and connectivity. We also have one filtering layer over that, even in new-generation firewalls with layer seven features we may not know what happened to our traffic if it's blocked at layer three or layer four. We need visibility, and the solution can give it to us.

Fortinet FortiAnalyzer is very expensive. Solutions from companies like Fortinet, F5, and Juniper are very expensive, due in part to the high license fees and technical support they charge.

I give the solution a nine out of ten.

Currently, we have five people using the solution, and we have plans to increase the solution's usage. As business owners, we need to grow our business structures and grow our staff to manage those structures.

I highly recommend the solution for a business with high and heavy traffic.

Fortinet FortiAnalyzer is used for vulnerabilities with cyber attacks.

The clients are in different industries, including private sectors such as retail, industry, healthcare, financial, banks, and others. There are no government clients.

For clients in banking, financial, and retail sectors, Fortinet FortiAnalyzer prepares them for attacks and helps prevent security incidents.

The predictive analytics of Fortinet FortiAnalyzer is very valuable for clients because this solution has a complete architecture for cybersecurity.

The ability to create custom reports and dashboards has helped improve understanding and provided clients with better cybersecurity solutions through the analyzer.

The integration of Fortinet FortiAnalyzer with SIEM solutions and other security solutions is very important because client solutions are not heterogeneous. Clients typically have multiple solution providers, making communication between all systems crucial.

Fortinet FortiAnalyzer can become even better with integration with other product providers and solution providers.

I have five years of experience with Fortinet FortiAnalyzer.

The solution is stable.

The solution is scalable.

The customer service and technical support with Fortinet is very good. I have experience with two different client service models: on-premise solutions and MSP services on a monthly basis. On a scale from 1 to 10, I would rate it as nine.

Some clients did move to Fortinet from other solutions before, and they have had good experiences with the solution.

The initial setup is not complex; it is straightforward.

The return on investment is very good, and the price-performance ratio is excellent. On a scale of 1 to 10, I would rate their return on investment as eight.

I have experience with pricing, licensing, and setup costs as I prepare quotes for clients. While Fortinet FortiAnalyzer might be more expensive than some other solutions, it remains very competitive in the market.

I do not know the main differences between Fortinet and Cisco or Fortinet and Palo Alto.

I have experience with Fortinet solutions and am familiar with FortiReporter, FortiManager, and Fortinet FortiAnalyzer.

I sell FortiGate but work only in commercial roles. My clients do not use Fortinet FortiAnalyzer with AWS, though I work with various cloud providers including AWS, Google, Azure, Huawei, and IBM for cloud solutions, both private and public.

The solution is very important for clients to complete their architecture in cybersecurity. Clients need the cyber analyzer and reporting analyzer to complete their security posture.

Overall rating: 9 out of 10.

The primary use case of Fortinet FortiAnalyzer in our organization is to gain more visibility into traffic, such as creating reports on highest bandwidth users over time. It also serves as a central log repository, aiding in threat detection by showing indicators of compromise and emerging threats.

Fortinet FortiAnalyzer comes with a lot of prebuilt reports out of the box, making it easy for our team to generate necessary reports without much struggle. It provides better visibility, allowing us to have a clearer view of threats. The advanced analytics capabilities aid in threat detection by providing visibility into indicators of compromise.

One area for improvement could be better support for third-party products, as it doesn't have as much visibility with these compared to Fortinet's own products.

I have been working with Fortinet FortiAnalyzer for five years.

There have been no significant performance or stability issues with Fortinet FortiAnalyzer. Sizing is always done well beforehand.

Fortinet FortiAnalyzer is scalable, especially for the VM versions, as additional space can be provisioned from the servers as needed.

Customer service and support for Fortinet FortiAnalyzer are quite helpful and responsive. I have interacted with them multiple times without any complaints.

Positive

I do not have experience working with any other log management solutions.

The initial setup process was straightforward. It involved running the OVA on a virtual environment, setting up IPs, DNS, and static cloud, followed by accessing the web interface for integration with other products.

I do not interact with the pricing or licensing component of the business, so I do not know about it.

I recommend Fortinet FortiAnalyzer. It provides valuable tools for the organization by presenting better reports that help in management decision-making. It is a valuable solution that can be improved by enhancing its third-party product support. 

Overall, I would rate Fortinet FortiAnalyzer nine out of ten.

I find it to be a valuable tool for utilizing traffic logs. The product's continuous improvements and Fortinet's commitment to enhancing its capabilities contribute to its effectiveness.

The reporting features, which offer customization, real-time insights, and compliance support, are particularly noteworthy aspects.

It would be beneficial to enhance the streamlining of the generation of automated reports related to compliance, such as PCI DSS or HIPAA, based on the logs collected. Automated reports focusing on compliance issues would provide a clearer understanding of potential gaps and the need for remediation. This feature would significantly simplify the process of identifying and addressing areas that require attention.

I have been working with it for ten years.

I would rate its stability capabilities eight out of ten.

We have approximately three thousand users within our company. I would rate its scalability seven out of ten, as it should be improved.

Technical support is responsive. I would rate it eight out of ten.

Positive

The majority of our network infrastructure is based on Fortinet, with a single device each on Palo Alto and Cisco.

The initial setup was fairly easy. When approaching it for the first time, there might be some minor complexities. However, as you gain experience, the process becomes quite straightforward to manage.

The setup typically takes a maximum of three to four hours, depending on the scenario. If it's hardware, there usually aren't any issues. For software installations, you need to consider server specifications, and the process involves loading the license, which may take about three to four hours for activation. For maintenance, we have a team of five members responsible for overseeing the entire network, which includes managing the Fortinet licenses.

The pricing model is subscription-based. It involves payment for both the license and ongoing support. I would rate it seven out of ten.

It serves as an excellent tool, especially for addressing compliance requirements. Analyzing traffic logs and monitoring network impressions, both inbound and outbound traffic, are essential needs that this tool effectively fulfills. Implementing it has proven to be highly beneficial. Overall, I would rate it seven out of ten.

Fortinet FortiAnalyzer is utilized to gather logs from all Fortinet products and generate reports.

The most valuable feature is the capability to gather logs and generate reports. Without this solution, the firewalls exhibit limited proficiency in displaying logs.

The integration with other vendors for log collection could be enhanced.

The licensing cost has room for improvement.

I have been using Fortinet FortiAnalyzer for over three years.

I rate FortiAnalyzer's stability a nine out of ten. We have had instances of data loss or source loss.

For our needs, FortiAnalyzer is scalable because we are not dealing with thousands of firewalls.

The technical support is good.

The initial setup is straightforward. The deployment took a couple of days.

For the deployment, we needed to create the server for deploying the FortiAnalyzer image and create the policy rules. We also had to complete the basic configuration of FortiAnalyzer. Following that, we configured all the resources and logs within FortiAnalyzer to collect and correlate the logs, which are then used to generate reports.

We used a consultant for the implementation.

We pay for an annual license, but we have the ability to determine the payment schedule with our distributor.

The cost of the license is high.

I would give Fortinet FortiAnalyzer a rating of six out of ten. I am not satisfied with the solution as it falls short of a proper SIEM. Therefore, we would prefer to allocate more funds towards a SIEM in order to effectively collect logs.

I use the solution in my company to analyze logs and generate reports.

The most valuable features of the solution are report generation and traffic logs. The online traffic report in Fortinet FortiAnalyzer is very good. There are different types of reports that one can generate with the tool.

From my point of view, I think everything is okay with the product.

I need some improvements in the support team since it is an area where there are certain shortcomings.

I have been using Fortinet FortiAnalyzer for six months.

Stability-wise, I rate the solution a ten out of ten.

Scalability-wise, I rate the solution a ten out of ten.

The IT team in our company uses the product for report generation. There are around 200 users in our organization, including our core IT team.

My company gets the product updated with the help of Fortinet's support team. My organization downloads the tool's firmware and updates the solution. The tool offers an easy setup phase.

I am a little bit disappointed with the support offered by Fortinet. Sometimes, the support team does not offer timely support or respond to our company's queries. Every time, the support team asks for logs and configuration from my company. Dealing with the support team is a very tedious task. I rate the technical support a seven out of ten.

Neutral

When it came to monitoring and reporting purposes, I used to only use FortiGate's inbuilt features for logs and traffic monitoring. It was only after a while that my company started to use Fortinet FortiAnalyzer.

I rate the product's initial setup phase a ten out of ten, where one means it was a difficult process, and ten means it was an easy phase.

The solution can be deployed in a day.

The product's prices are a bit higher than the other solutions available in the market, but I would say that the tool's quality and support are areas that are good.

Regarding the support, if a customer wants to support or any technical help with the area of configuration, I think the support team must in a timely manner help the customers and understand their problems.

I rate the tool a nine out of ten.

I use the solution in my company for log management and to comply with requirements associated with endpoint protection and FortiGate, as well as with all the other solutions from Fortinet.

The most valuable features of the solution are the reports and the playbooks.

I feel that Fortinet FortiAnalyzer is a little bit heavy, making it an area where improvements are required.

I have been using Fortinet FortiAnalyzer for three years. I am an end user of the solution.

Stability-wise, I rate the solution an eight out of ten.

Scalability-wise, I rate the solution an eight out of ten.

Two people in my company use the product.

I use the solution in my company every day.

I rate the technical support a nine out of ten.

I have experience with some other solutions in the past. My company has not switched from the solution we use currently because we don't have an alternative product. My company does want to use an SIEM solution, and we purchased Fortinet FortiAnalyzer since it offered a bit of SIEM functionalities.

My company took care of the tool's initial setup phase for our internal projects.

The solution is deployed on an on-premises model.

The solution can be deployed in two days.

An implementer took care of the product's implementation process.

I have seen a return on investment from the use of the product. I rate the tool's ROI a nine out of ten.

I rate the product's price a six on a scale of one to ten, where one is cheap, and ten is expensive.

The log management capability has benefited our organization, and it is important because we need to write and send proactive information that playbooks can cater to, and the product also prevents my company's systems from being attacked.

I recommend the product to others since it is easy to work with and it works very well.

I don't know much about the artificial integration capabilities of the product, but the solution works to detect and analyze threats.

I rate the overall tool an eight out of ten.

Our use case for Fortinet FortiAnalyzer is analyzing traffic. We use it to investigate complaints about account access, check if something is blocked or working, and understand what's happening inside them.

The solution provides visibility into traffic. We can view everything from one platform.

Fortinet FortiAnalyzer needs to improve its pricing flexibility. 

I have been using the product for a couple of months. 

I rate the tool's stability a seven out of ten. We have experienced downtime and glitches while using it. These were during the deployment stages, and the vendor helped to fix them. 

I rate Fortinet FortiAnalyzer's scalability a nine out of ten. My company has 100 users. 

I used Palo Alto Panorama before Fortinet FortiAnalyzer. I think Palo Alto Panorama is better. It offers more functionality. We typically need separate solutions for different needs with Fortinet FortiAnalyzer, but Palo Alto Panorama bundles everything into one package. Whether deploying and managing firewalls, analyzing traffic, or managing users, Palo Alto Panorama consolidates it into a single dashboard.

Fortinet FortiAnalyzer's deployment is easy. 

The tool's deployment was done by a third party. 

I rate Fortinet FortiAnalyzer's pricing as five out of ten. 

We recently switched to the product and are in the stages of a learning curve. I rate the overall product a five out of ten.