Fortinet FortiAnalyzer Reviews

Fortinet FortiAnalyzer is a solution that focuses specifically on analyzing and monitoring the performance and security of Fortinet security products. By utilizing this solution in conjunction with Fortinet products such as FortiSwitch, FortiGate, and FortiClient, the user is able to centralize all logging services and analysis in one place, allowing for easy correlation, playbook automation, and comprehensive visibility within the Fortinet services. However, the limitations of the solution are highlighted by the speaker, who wishes for expanded compatibility with other non-Fortinet products such as servers.

One of the greatest advantages of Fortinet FortiAnalyzer is its ability to integrate with a variety of software and solutions, providing comprehensive visibility into the network. The solution's strength lies in its capability to work with Fortinet's own products, such as the FortiAP access point, which allows for deep monitoring, automation, correlation, and incident management. However, this functionality is not present when utilizing other products, such as those from Cisco, limiting the visibility and benefits that can be gained.

The solution could improve by allowing the ability to search logs in integrated solutions.

If a new iteration of Fortinet FortiAnalyzer were to be released, and the option arose to incorporate a feature that would simplify my work processes, I would wish for the integration of various log sources. This includes fetching logs through APIs, as well as from non-Fortinet switches and firewalls. This feature would allow me to seamlessly access logs from various sources and ultimately enhance the overall functionality of the software.

I have been using Fortinet FortiAnalyzer for approximately two years.

The solution is stable.

Fortinet FortiAnalyzer is highly scalable. You can easily adjust its capabilities to meet your evolving needs. Unlike other solutions I've used in the past, this one does not present any licensing restrictions. I had a requirement for increased terabytes per day and I smoothly upgraded my license through a simple process. I was provided with a trial license for the interim period and then my previous license was updated accordingly. The upgrade resulted in the desired terabytes per day and I was thoroughly satisfied with the experience.

At my company, there are four individuals who are utilizing this solution. These individuals consist of two network engineers, one security engineer, and myself serving as an administrator.

I have not needed to use the support. It's a very simple and straightforward solution.

The initial setup of Fortinet FortiAnalyzer is straightforward. The process does not take more than 15 minutes.

The critical step is the virtual machine (VM) startup, which is dependent on the virtualization aspect, not the FortiAnalyzer itself. It took me no more than 10 minutes to complete this process when I was utilizing a high-performance hyper-converged infrastructure. Currently, deploying a VM with one terabyte should take less than 60 seconds.

The company's choice to utilize Fortinet FortiAnalyzer was based on the overall security strategy and compatibility with existing solutions. It was deemed the best fit as it provided a centralized point of visibility for all of their security solution, including Fortinet FortiGate firewall, FortiClient, Forti EMS, and FortiAP. The company conducted a thorough evaluation of various solutions in the market but found that none of them could fully integrate and manage all their solutions as effectively as Fortinet FortiAnalyzer.

I advise others that are thinking about using Fortinet FortiAnalyzer to only do so if they already have some Fortinet solutions. This is the best use of Fortinet FortiAnalyzer if they already had some Fortinet solutions.

I rate Fortinet FortiAnalyzer a nine out of ten.

The primary use case for our clients revolves around robust reporting capabilities, addressing key aspects such as understanding diverse utilizations and the performance of network links. They specifically sought insights into bandwidth usage and detailed reporting at the application level. Additionally, an essential requirement was efficient log management. This is crucial because FortiGate has limitations on retaining logs for an extended duration, and our clients needed a solution, such as FortiAnalyzer, to effectively manage and analyze logs over an extended period.

The most valuable is its robust and comprehensive reporting functionality, providing a thorough overview of various metrics. Additionally, its ability to centrally capture logs from multiple devices proves indispensable for our SOC. This centralized log management facilitates automation processes, and we also greatly appreciate the effectiveness of its analytics features.

I believe that its technical support is the only aspect that requires significant improvement. With the current trend toward AI advancements, there's an opportunity for improved AI analytics. This could empower us to better leverage technology to detect attacks in a more effective manner.

I have been working with it for more than five years.

It offers excellent stability capabilities. I would rate it nine out of ten.

It offers a capacity of up to two thousand gigabytes of logs daily, showcasing considerable scalability. I believe it is a scalable solution that can easily accommodate increasing needs without compromising performance. Our clients fall into the enterprise category. I would rate it eight out of ten.

The support services are often outsourced to specific regions, resulting in varying levels of technical expertise. While regions like America, the USA, Europe, and certain countries in Australia benefit from reasonable and proficient engineers, other locations may experience subpar tech support. Consequently, issue resolution can be time-consuming, leading customers to sometimes address problems independently. Particularly in terms of time efficiency, there is a need for improvement to expedite the support process. I would rate it six out of ten.

Neutral

The initial setup was straightforward. I would rate it eight out of ten.

The deployment process is straightforward and efficient, requiring minimal time and effort. It takes approximately thirty minutes and it's quite user-friendly.

The pricing is reasonable. The cost structure is primarily based on factors such as the number of logs, log sizes, and the daily log storage capacity, with a minimum requirement of two gigabytes per day. The maximum storage capacity can extend up to eight thousand gigabytes of logs per day.

I would strongly recommend utilizing it. It's an excellent product with abundant features, offered at a very reasonable price point. Overall, I would rate it eight out of ten.

Our organization uses Fortinet FortiAnalyzer for logging purposes, including looking and digging deeper into the logs. The second use of the solution is for reporting, especially when we need some bandwidth utilization report with specific applications being used. We even use the solution's alerting functionality, especially during scenarios when our interface goes down.

The solution's most important feature is how it allows us in our organization to monitor the traffic. The log analyzer is the most important and best feature of the solution, in my view.

Our organization desired a feature in the solution, but it was unavailable. Our organization wants the solution to be able to provide us access to a centralized dashboard that displays a log view for all firewalls under Fortinet FortiAnalyzer. We also wanted to be able to monitor the utilization of our internet proactively through the dashboard. Since such a facility is unavailable, we approached the technical team, who informed us that this task is not within their purview. The solution's failure to offer a centralized dashboard with certain essential capabilities is an area where the solution can improve. It would be highly beneficial if the solution offered a centralized dashboard to its users.

I have been using Fortinet FortiAnalyzer for two and a half years. Since we use Fortinet FortiAnalyzer 6.2.0 in our company, I would say that we are not working on the latest version of the solution. Also, we are customers of Fortinet FortiAnalyzer.

Stability-wise, I rate the solution a ten out of ten since, in our company, we have never experienced the solution crashing or having any other issues. In short, the solution works fine.

Scalability-wise, I rate the solution an eight out of ten. Approximately five administrators and some others to whom I have given read-only access use the solution.

Since I am quite satisfied with the technical support of the solution, I rate it a nine out of ten.

Positive

The initial setup process was quite good because the solution was user-friendly, and anyone could access and track the solution. Even though I rate this solution an initial setup somewhere between seven to eight out of ten, to be more specific, I rate it an eight. Also, in our company, we have deployed the solution on the cloud.

In our organization, we would say that the solution is worth its money. The solution comes into the picture when there is some drastic failure in our environment, and we need it while trying to find out what went wrong. So, the solution can give an in-depth analysis of such problems.

I won't say the solution is too costly since it is available at a fair price.

I would recommend the solution to those seeking a detailed view of what is going on in their environment. Also, I wish that a centralized dashboard is made available in Fortinet FortiAnalyzer so that a company does not have to look for a better alternative elsewhere since a centralized dashboard would suffice their requirements. Overall, I rate the solution an eight out of ten.

I primarily use the solution to analyze issues with internet connections and traffic.

The initial setup is pretty straightforward. 

The FortiView is very useful. 

FortiSoc is a good feature. 

The interface has been fine.

It's stable. 

The solution can scale.

Support has been helpful overall. 

Overall, the solution works well. I don't have any issues with it. 

We'd like to figure out the best way to configure it. 

It doesn't easily integrate with other solutions. However, we don't integrate it with anything at the moment. We don't even integrate it with Fortigate.

I've been using the solution for three or four years. 

The solution is stable and reliable. There are no bugs or glitches. It doesn't crash or freeze. 

We can scale the solution, at least, according to our configuration.

About 200 people are using it in my company. 

We will likely expand usage in the future. 

Technical support has been good. They are helpful and responsive. 

We did not use any other product previously. 

The initial setup process is simple. For me, it is not so complex. I have a good understanding of the process. We've been recently raining on the setup of the system often. The last session we did was two months ago. Every year, we look at the system with our specialist.

The implementation takes about two days. 

We have one administrator that handles maintenance. 

I handled the initial setup myself with the help of a specialist. We do implementations and training. However, now and going forward, we will be independent of the specialist.  

The pricing is fine. I cannot speak to the exact cost of the solution. There may be a feature or two that would cost more. However, we do not use any at the moment that adds to the price. 

I'm an end-user. 

This is a good solution for monitoring and does offer a firewall as well.

I'd rate the solution nine out of ten. 

We have some customers that have more than just two branches, and we use FortiManager to manage the network and have FortiAnalyzer in case we have an attack or need more information to understand when something happens. If you have some sort of loss, it's very difficult to identify what is happening without this solution's help.

The solution helps prevent attacks, and in the event of an attack, it can act as a forensic device, which is very useful. We find it helpful for diagnostic purposes. 

It helps, when you have several smaller firewalls, to manage the monitoring. 

The solution is scalable. 

It is very stable and reliable. 

It can be a difficult solution to sell. 

The solution is expensive.

The customer needs to have extensive knowledge in order to use the solution properly.

I've used the solution for a few months. We started using it last year around August. It's been around seven months or so. 

The solution is stable and reliable. I'd rate it nine out of ten. There are no bugs or glitches. It doesn't crash or freeze. 

We have different customers and are managing the network. We might have 500 people using the solution and maybe eight to ten customers utilizing the solution. 

The solution is expensive. However, the issue is the cost. It will be expensive to scale. That said, if you want to expand, you can. I'd rate the scalability nine out of ten. 

We did not previously use a different solution.

We have seven people available to handle the deployment and maintenance of the product. They are engineers.

The solution can be a bit expensive. I cannot speak to the exact costs. There are no hidden fees attached to the service. 

We are a Fortinet partner. 

I'd recommend the solution to others. I would rate the product eight out of ten.

While I do not use it often, I find it can be difficult to identify when we have an issue to identify what happened. It would be helpful if there was some sort of business intelligence tool attached to it. Or, perhaps it is due to the fact that we may lack a certain level of training in this area. 

I have been using the solution in my company since after we set up and configured the tool, we managed the migration. Sometimes, I have to take care of my customers. My customers are using the product well.

The product can be used as a full-time solution and as a reasonable antivirus product. With the firewall, it protects the systems from ransomware attacks.

The product's high price is an area of concern where improvements are required.

I have been using Fortinet FortiAnalyzer for five to ten years. I use the solution's latest version.

It is a stable solution. Stability-wise, I rate the solution an eight out of ten.

If I consider my company's customers, some are government organizations.

I get support for the product from the solution's website. I also get local support from a solution company that deals with our organization's support team. The product's support team is very good and knowledgeable. I rate the technical support a nine out of ten.

Positive

For installation, I approached a technology company in Vietnam that provides the required team support.

The solution is deployed on the cloud, but it isn't easy to operate in Vietnam since money is collected every year.

The solution's deployment is difficult since you need knowledge about networks, rules, policies or else you may get confused when you collect information from your customers.

The tool offers protection to my network. The costs related to the licensing part of the solution for each year keep increasing every year. In other countries, the product may seem cheap, but in Vietnam, the costs are high. There is not enough money for businesses to pay for the tool.

For cybersecurity, my company normally uses the asset list and applies it to some applications like an antivirus or IDS system.

One of the product's tasks is to provide a firewall to check the effects of a customer's network from outside.

The automation of reports that is possible with the product is good, especially because Fortinet has a lot of products for the customers in the market, including those like the government, banking, and other small businesses. Many people in Vietnam use Bitbucket since they don't have much money. With the setup of the firewall, the traffic gets controlled. When you start the firewall very high, I believe the 30 percent time taken to assess risks is very high. The product becomes slow, and it may have an impact on the server.

The solution has impacted our company's operational costs by reducing them by 30 percent.

The performance offered by the product is high only when the network traffic is normal.

It is one of the best firewall products.

I rate the overall tool an eight out of ten.

We use Fortinet FortiAnalyzer for logs and reports. We have a SOC subscription to monitor the end users' login activity and traffic.

Fortinet FortiAnalyzer is deployed by us in both on-premises and cloud environments.

Fortinet FortiAnalyzer provides more visibility into the logs.

The traffic log information we receive from Fortinet FortiAnalyzer is valuable.

Fortinet FortiAnalyzer needs to have more out-of-the-box connectors for integration with other solutions.

I have been using Fortinet FortiAnalyzer for three months.

Fortinet FortiAnalyzer is stable as long as we keep it up to date. 

Fortinet FortiAnalyzer is scalable.

The technical support is great. We receive support within 24 hours of opening a ticket.

Positive

The initial deployment of Fortinet FortiAnalyzer is straightforward. There are two network interfaces involved: the Internet interface and the LAN interface. The LAN interface must be configured on the same subnet as the other Fortinet products to enable visibility of the network connector from the Fortinet console. Upon successful configuration, an authorization message will be received, allowing us to proceed with adding the devices to the FortiAnalyzer device manager and initiating log data collection. The deployment process is well-documented, requiring minimal personnel, and can be completed within five hours.

The number of licenses required directly corresponds with the number of devices connected.

I would rate Fortinet FortiAnalyzer a nine out of ten.

FortiAnalyzer enhances network security visibility with its comprehensive logging and analysis capabilities, making it a valuable tool for organizations seeking to improve their security posture. I highly recommend it.

Fortinet FortiAnalyzer is utilized to gather logs from all Fortinet products and generate reports.

The most valuable feature is the capability to gather logs and generate reports. Without this solution, the firewalls exhibit limited proficiency in displaying logs.

The integration with other vendors for log collection could be enhanced.

The licensing cost has room for improvement.

I have been using Fortinet FortiAnalyzer for over three years.

I rate FortiAnalyzer's stability a nine out of ten. We have had instances of data loss or source loss.

For our needs, FortiAnalyzer is scalable because we are not dealing with thousands of firewalls.

The technical support is good.

The initial setup is straightforward. The deployment took a couple of days.

For the deployment, we needed to create the server for deploying the FortiAnalyzer image and create the policy rules. We also had to complete the basic configuration of FortiAnalyzer. Following that, we configured all the resources and logs within FortiAnalyzer to collect and correlate the logs, which are then used to generate reports.

We used a consultant for the implementation.

We pay for an annual license, but we have the ability to determine the payment schedule with our distributor.

The cost of the license is high.

I would give Fortinet FortiAnalyzer a rating of six out of ten. I am not satisfied with the solution as it falls short of a proper SIEM. Therefore, we would prefer to allocate more funds towards a SIEM in order to effectively collect logs.