Fortinet FortiAnalyzer Reviews

We take all the logs from FortiGate. 

We have it deployed on-premises, and we are definitely using its latest version because we are creating a new virtual machine.

Special notifications about compromised phones are valuable because we have some guest networks, and sometimes, people are connecting phones that are connected to compromised websites. We want to be informed about it. We sometimes have some cases where we want to analyze the connection from inside to outside ports. So, it helps with a lot of things. It depends on our needs.

The interface or GUI does not work properly on Microsoft Edge. The behavior or the view is different on Microsoft Edge versus on Chrome or Firefox. When some buttons do not work, I am forced to switch to Firefox.

There could be better analysis from the client's perspective. If you have FortiClient EMS, you should be able to analyze users more than the connections.

We started using Fortinet FortiAnalyzer this year. It was bought by our main company in the Netherlands.

It is now stable, but our previous instance was unstable. We had problems with connectivity. It was strange because it is a virtual machine, and it was on the same hypervisor or host, but only Fortinet FortiAnalyzer had connectivity problems. The connection was dropped, and it was not always possible to log in. We moved it to a different environment. We have now moved it to a Hyper-V cluster on a different site in Poland, and it is now stable.

It is scalable. We could change the size. It was easy.

We have mainly two people working with Fortinet FortiAnalyzer. My colleague and I from the Netherlands work on it. All IT departments also can access it. In total, we have five or six users, but mainly, two of us work on it.

I use their technical support when I have problems. They solve my problems, but sometimes, they take time because it is difficult to understand each other. I prefer a phone call over the email or ticket system because we can share more information in a short time. I would rate them a nine out of ten. They sometimes do not have a fast solution, but they always resolve an issue in the end.

Positive

I did not work on any similar product previously.

It was easy to deploy. It took one hour.

We deployed it ourselves. We know the product. We know how to register devices and how to join devices. It was easy. We used our knowledge.

I do not know the price of Fortinet FortiAnalyzer. I did not pay for it, but I know the price of other Fortinet products. They are not cheap. I am from Poland. We have Zloty, not Euro, so for us, everything is expensive. 

I had also tried to buy it in the past, but it was too expensive.

If you have FortiGate and FortiClient EMS, FortiAnalyzer is a natural choice. You can have notifications and alerts. Some things are automatically done by FortiAnalyzer. From a security perspective, it is a very good product.

Overall, we are satisfied with it. I would rate Fortinet FortiAnalyzer an eight out of ten.

We are an IT company. One of our clients utilizes FortiGate, FortiAnalyzer, and FortiManager. Thus, this is the sole customer in our portfolio using Fortinet FortiAnalyzer. Among our other clients, some exclusively employ FortiGate. Our responsibility encompasses network management for these clients.

What I like the most is the monitoring system. For example, it can track who is accessing through VPNs. The monitoring features are quite impressive, including maps, source IP, country codes, and geolocation – all of which are really cool. Additionally, the logging functionality is also excellent.

The UI can be more user-friendly for new users.

I have been using Fortinet FortiAnalyzer for seven years.

Fortinet FortiAnalyzer is highly stable. In the seven years of usage, we have never needed to reinstall it or perform troubleshooting. We have not had to make any support calls to Fortinet either. We successfully performed upgrades from version five to six and from six to seven, all of which went smoothly.

Fortinet FortiAnalyzer is scalable.

The technical support is excellent. I have never encountered any problems with FortiAnalyzer, but the issues we faced with FortiGate, which I was unable to resolve on my own, were promptly resolved by their team.

Positive

The initial setup is straightforward. We can choose to install either a single node or a cluster. We run it in a virtual environment on firmware, and the process of installing the RPA takes around 15 minutes. Afterward, some configuration is required, including the installation of certificates and similar tasks. Thus, the entire process usually takes approximately one to two hours.

Once the installation is complete, we need to connect all the FortiGate Firewalls to the FortiAnalyzer. This step also involves configuring them securely. When I deploy this solution for a customer, it typically takes me about four to eight hours to complete the installation and configuration. 

The price is not expensive when compared to other solutions like Palo Alto.

In addition to the licensing, we pay for a support contract.

I would rate Fortinet FortiAnalyzer eight out of ten.

Fortinet FortiAnalyzer is only valuable for organizations that utilize ten or more FortiGates.

I recommend Fortinet FortiAnalyzer to others.

We primarily use the solution as a firewall and security gateway.

It is easy to configure.

The end-user finds it very easy to understand. 

It's stable and reliable.

The solution is scalable.

The initial setup is easy, and the deployment is fast. 

Technical support is generally helpful. 

I'm not sure if any features need improvement. 

They could improve the user interface a bit. The GUI could be easier to understand.

I've used the solution for four years. 

The solution is very stable. I'd rate the solution ten out of ten in terms of reliability. There are no bugs or glitches. It doesn't crash or freeze. 

It's a very scalable solution. I'd rate the ability to extend ten out of ten. It's excellent. 

We work with mostly small and medium companies. 

I haven't been directly involved with support. However, I have an understanding that they are very good. I haven't heard of any complaints. 

Positive

I'm also familiar with Check Point. I prefer Fortinet products. 

The initial setup is straightforward. I'd rate the ease of setup eight out of ten. It is quite simple. 

Deployment only takes about one week. We can handle the customer's various policies and configurations. 

It only takes one person to deploy and maintain the solution. It's easy to manage the product. The customer can self-learn the solution and manage it once it is launched. 

It is a fairly affordable solution. I'd rate the solution three or four out of ten with ten being the most expensive. It's cheap It's not costly.  

We mostly resell the solution to big and small customers. 

We're using the latest version of the solution. 

I'd recommend the solution to others. I'd recommend Fortigate products to users in general. 

I would rate the solution ten out of ten. 

We use the solution for log analysis.

The analyzer is the most valuable feature.

The deployment is complex and has room for improvement.

I have been using the solution for five years.

The solution is stable.

The initial setup is complex. The deployment took a few hours.

The implementation was completed with an integrator.

We pay for an annual license.

I give the solution a six out of ten.

I do not recommend the solution.

It's a lock storage correlation device. You can connect locks from different devices. Not just from Fortinet, but you can send locks from other devices to FortiAnalyzer. Basically, it is a centralized repository.

Fortinet FortiAnalyzer has a lock correlation feature. It simplifies the troubleshooting process for its customers. So now, instead of logging into every firewall, they can log into Fortinet FortiAnalyzer and check the locks. They can also check whether there are any issues with the network.

This is a difficult question for me to answer. I want the tool to have a sophisticated and customizable dashboard similar to the one in the SIEM solution. However, I'm not sure if that is in the pipeline. Basically, I would say that it's not a pure SIEM solution where your customer can have a layer on a view of dashboards or advanced dashboards.

I work with Fortinet and Palo Alto. I am also a partner of Fortinet. Even though I have been working with Fortinet for more than five or six years now, Fortinet EDR is something very new for me and us in general. We have been working on firewalls, FortiAnalyzer, FortiManager, FortiMail, FortiADC, and FortiWeb. EDR, SDMA, and ZTNA are new to us. Speaking about Fortinet FortiAnalyzer, I have been working on it for more than six years now.

The stability of Fortinet FortiAnalyzer is okay. Although some customers have encountered issues, others have had a pretty okay experience and are doing pretty well with the solution.

I would say that more than ten of our clients are working on this solution. I would say that it is kind of scalable since it comes in different form factors. Owing to the different form factors and sizing of the solution, you can add and get increased capacity. This can help a person to add more firewalls and devices.

I would say that Fortinet's tech support is really good.

Neutral

I can say that the setup is a mixture of both options. I wouldn't say it is difficult. I would rather say that the setup process is okay or moderate. Also, the straightforwardness and complexity of the setup process will depend on your environment.

The deployment of Fortinet FortiAnalyzer is not complex, but integrating it with firewalls can take some time, depending on the number of firewalls. So, the deployment of the entire solution can take approximately one week to complete.

I'm not familiar with the cost point, because I am more of a technical person and I do not do pre-sales or sales.

I downloaded reports for CrowdStrike Falcon and FortiEDR from peerspot.com to see how they are in terms of performance.

Based on current trends, people are shifting towards FortiGate devices for their attractive value proposition and exceptional performance. FortiGate is the go-to choice for firewalls. And for us, along with FortiGate, I'll even go with FortiManager and FortiAnalyzer. I rate this solution a seven out of ten.

My clients mainly use Fortinet FortiAnalyzer for the log and automation.

This solution can be deployed on-premise and on the cloud.

The most valuable features of Fortinet FortiAnalyzer are the GUI and there is automation that can be done with playbooks and mini-books.

Fortinet FortiAnalyzer can improve by introducing integration with other Fortinet solutions with automation with one interface would be helpful.

I have been using Fortinet FortiAnalyzer for approximately four years.

The stability of Fortinet FortiAnalyzer is good.

I rate the stability of Fortinet FortiAnalyzer a ten out of ten.

The solution is scalable.

This solution is suitable for all sized companies.

I rate the scalability of Fortinet FortiAnalyzer a nine out of ten.

My clients had a mixed experience with the support from Fortinet FortiAnalyzer. Some had good experiences and others had poor experiences.

I rate the support of Fortinet FortiAnalyzer a ten out of ten.

Neutral

My customers have tried Palo Alto Panorama and we only had positive feedback from Fortinet FortiAnalyzer.

The initial setup of Fortinet FortiAnalyzer is simple.

The price of Fortinet FortiAnalyzer is expensive.

I rate the price of Fortinet FortiAnalyzer a ten out of ten.

I rate Fortinet FortiAnalyzer a ten out of ten.

FortiAnalyzer is a log analytics tool. Our company has around 600 to 700 people.

FortiAnalyzer helps us discover what's happening on the network.

They could always improve the interface and the user experience.

I have used FortiAnalyzer for four or five years.

I rate FortiAnalyzer eight out of 10 for stability.

Scalability is irrelevant to me because we have a small setup. One analyzer is enough for me.

Setting up FortiAnalyzer isn't complex and takes two or three hours. They have a prebuilt OVA we can deploy using Ansible. Next, we configure FortiGate to send the logs to the FortiAnalyzer. You can also download premade reports on the portal.

You pay an annual license based on the volume of logs per day.

I rate FortiAnalyzer seven out of 10.

Most importantly, it is for the administration of Forti fabric devices and reporting of Forti fabric, and being able to generate reports. It's for logging. All 40 fabric devices are able to send logs to FortiAnalyzer. Basically, the use cases are for administration, reporting, and logging.

Logging is the best feature. 

I like how everything is integrated with the FortiGate devices, FortiAuthenticator, and other fabric devices. You're able to see all the login details for the administration of FortiGate. It offers great user connectivity using that Fortinet embodiment of the user. It gives you all those login information details.

It's easy to set up.

The solution is stable.

It can scale well. 

It's very user-friendly.

The fact that it only works with FortiGate devices is quite unfair. We would like to do the reporting, logging, and administration of all the public devices and all the IoT devices. We wish to add the switches, and routers from different vendors, so it's not a vendor-specific diagnostic solution.

I've been using the solution for four years now. 

The product is 100% stable. I haven't found any issues with FortiAnalyzer. It's reliable.

Depending on the licenses you procure, the number of devices, and the storage space that you have, to be able to attain those logs and reports, the solution can scale. 

Support is great. Usually, when you call on them, they are right on time, and they'll be able to assign an engineer for remote session support.

Positive

Setting the solution up is pretty easy. It's just a matter of integrating with the Fortinet public devices. FortiGate will start sending logs and then reports to FortiAnalyzer.

Once it is set up, the solution is easy to maintain.

I'm not sure about the exact licensing costs.

I'm working with the latest version of the solution. 

We've done on-premises and cloud deployments. 

Usually, clients who don't have SIEM or Nag solutions find FortiAnalyzer quite effective as it's going to give them identification of the user activity reports on different IO devices and the usage of devices. It gives you visibility of your entire infrastructure.

I'd recommend the solution. It's very user-friendly.

I'd rate the solution eight out of ten.